Dobrý den,
prosím o kontrolu logu, zdá má cenu PC čistit nebo rovnou reinstalovat. Popup okna s reklamami v prohlížeči, pomalé pc, hdd dosti vytížen.
Děkuji
Logfile of random's system information tool 1.16 (written by random/random)
Run by Patrik at 2017-06-09 23:44:56
Microsoft Windows 10 Pro
System drive C: has 555 GB (58%) free of 953 GB
Total RAM: 8168 MB (51% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:45:03, on 09.06.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Users\Patrik\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Patrik\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe
C:\Program Files\trend micro\Patrik_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Patrik\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [BingSvc] C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Patrik\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Patrik\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe /RestartByRestartManager:FE597090-E1D2-47a4-B12B-DE01593CB0AB (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe /RestartByRestartManager:FE597090-E1D2-47a4-B12B-DE01593CB0AB (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: @%systemroot%\system32\AppVClient.exe,-102 (AppVClient) - Unknown owner - C:\WINDOWS\system32\AppVClient.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%systemroot%\system32\AgentService.exe,-102 (UevAgentService) - Unknown owner - C:\WINDOWS\system32\AgentService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14447 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
C:\WINDOWS\SysWow64\perfhost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_000008e4
C:\WINDOWS\system32\TieringEngineService.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 838decd2-6413-46f5-9141-77da0374e78f 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\taskhostw.exe
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Users\Patrik\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
C:\Users\Patrik\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
"C:\Users\Patrik\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe"
C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 "--database=C:\Users\Patrik\AppData\Local\Spotify\User Data\Crashpad" "--metrics-dir=C:\Users\Patrik\AppData\Local\Spotify\User Data" --url=https://crashdump.spotify.com:443 --annotation=channel= --annotation=platform=win32 --annotation=product=spotify --annotation=version=1.0.55.487 --initial-client-data=0x448,0x44c,0x450,0x444,0x454,0x625e8214,0x625e8224,0x625e8234
"C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
"C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --no-sandbox --disable-d3d11 --lang=en-US --log-file="C:\Users\Patrik\AppData\Roaming\Spotify\debug.log" --log-severity=disable --product-version=Spotify/1.0.55.487 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,19,20,23,41,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x1380 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7653 --gpu-driver-date=12-29-2016 --lang=en-US --log-file="C:\Users\Patrik\AppData\Roaming\Spotify\debug.log" --log-severity=disable --product-version=Spotify/1.0.55.487 --service-request-channel-token=4030624BF3F4F0B33AB5E5D339CB6254 --mojo-platform-channel-handle=1824 /prefetch:2
"C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --disable-pinch --no-sandbox --primordial-pipe-token=3C4346FA1C292CB80F9054DF8B5A1FFC --lang=en-US --lang=en-US --log-file="C:\Users\Patrik\AppData\Roaming\Spotify\debug.log" --log-severity=disable --product-version=Spotify/1.0.55.487 --disable-spell-checking --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=3C4346FA1C292CB80F9054DF8B5A1FFC --renderer-client-id=3 --mojo-platform-channel-handle=2608 /prefetch:1
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\Windows\System32\InstallAgent.exe -Embedding
C:\Windows\System32\InstallAgentUserBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\FirewallControlPanel.dll,ShowNotificationDialog /hint /ETOnly 0 /OnProfiles 6 /OtherAllowed 2 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "C:\users\patrik\appdata\roaming\spotify\spotify.exe"
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe" -tab:*lastview
"C:\WINDOWS\system32\cmd.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\sfc.exe
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1051_none_7f2bf7ea21d201b2\TiWorker.exe -Embedding
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Patrik\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=58.0.3029.110 --initial-client-data=0x1a0,0x1a4,0x1a8,0x19c,0x1ac,0x7fff0cca2968,0x7fff0cca2980,0x7fff0cca2990
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=11344 --on-initialized-event-handle=572 --parent-handle=576 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=916 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,19,20,23,41,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x1380 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7653 --gpu-driver-date=12-29-2016 --service-request-channel-token=63B92A17D6CFC6CC2EEAFE340A580114 --mojo-platform-channel-handle=1408 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=916 --primordial-pipe-token=5F5ECF198626AD39538123329990F54B --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=5F5ECF198626AD39538123329990F54B --renderer-client-id=4 --mojo-platform-channel-handle=2864 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=916 --primordial-pipe-token=CB1F90BE5054B74FADA5AFEF16EB52D4 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=CB1F90BE5054B74FADA5AFEF16EB52D4 --renderer-client-id=5 --mojo-platform-channel-handle=2904 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=916 --primordial-pipe-token=D0D0B5A87CDDBD69E42F2F9578B7A688 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=D0D0B5A87CDDBD69E42F2F9578B7A688 --renderer-client-id=6 --mojo-platform-channel-handle=2916 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=916 --primordial-pipe-token=803E9A4C06079862EE96D1B24FA6B9E6 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=803E9A4C06079862EE96D1B24FA6B9E6 --renderer-client-id=7 --mojo-platform-channel-handle=2928 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=916 --primordial-pipe-token=9EFA59D639EF78585A2631B30868489C --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=9EFA59D639EF78585A2631B30868489C --renderer-client-id=8 --mojo-platform-channel-handle=2936 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=916 --primordial-pipe-token=D869CD39E3C0F0B941F15E649DA3FBEE --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=D869CD39E3C0F0B941F15E649DA3FBEE --renderer-client-id=11 --mojo-platform-channel-handle=6344 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=916 --primordial-pipe-token=E5BCAECBE119485328FCDA60D4719896 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=E5BCAECBE119485328FCDA60D4719896 --renderer-client-id=16 --mojo-platform-channel-handle=2496 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=916 --primordial-pipe-token=E8460434F57081DF0B6C741CB9BF27E7 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=E8460434F57081DF0B6C741CB9BF27E7 --renderer-client-id=17 --mojo-platform-channel-handle=864 /prefetch:1
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 636 640 648 8192 644
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\Patrik\Downloads\RSITx64.exe"
====== Scheduled tasks folder ======
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\Patrik\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{65B13BB1-8616-4BE7-8C4B-311F8B95D22F} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - C:\Windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunCampaignManager - %windir%\System32\UNP\UNPCampaignManager.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemovalTools\MRT_HB - C:\Windows\system32\MRT.exe /EHB /Q
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon - C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration - C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files\Microsoft Office\root\Office16\msoia.exe scan upload mininterval:2880
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files\Microsoft Office\root\Office16\msoia.exe scan upload
C:\WINDOWS\system32\tasks\ASUS\ASUS Product Register Service - C:\Program Files (x86)\ASUS\APRP\aprp.exe
C:\WINDOWS\system32\tasks\Apple\AppleSoftwareUpdate - C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task
=========Mozilla firefox=========
ProfilePath - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\addons.json
Seznam lištička - extension - {ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\extensions.json
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Diagnostics - extension - diagnostics@mozilla.org - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\features\{d3cfe7f9-acd2-4ca0-980c-c7b276e396c8}\diagnostics@mozilla.org.xpi
Send HSTS Priming Requests - extension - hsts-priming@mozilla.org - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\features\{d3cfe7f9-acd2-4ca0-980c-c7b276e396c8}\hsts-priming@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\features\{d3cfe7f9-acd2-4ca0-980c-c7b276e396c8}\aushelper@mozilla.org.xpi
SHA-1 deprecation staged rollout - extension - disableSHA1rollout@mozilla.org - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\features\{d3cfe7f9-acd2-4ca0-980c-c7b276e396c8}\disableSHA1rollout@mozilla.org.xpi
Seznam lištička - extension - {ea614400-e918-4741-9a97-7a972ff7c30b} - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Avira Browser Safety - webextension - abs@avira.com - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\extensions\abs@avira.com.xpi
C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\pluginreg.dat
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
Plugin - Google Update - 1.3.33.5 - C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
Plugin - NVIDIA 3D VISION - 7.17.13.7653 - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
Plugin - NVIDIA 3D Vision - 7.17.13.7653 - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
Plugin - Microsoft Office 2016 - 16.0.7830.1013 - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
Plugin - Java(TM) Platform SE 8 U73 - 11.73.2.2 - C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.730.2 - 11.73.2.2 - C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npdeployJava1.dll
Plugin - iTunes Application Detector - 1.0.1.1 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
Plugin - Unity Player - 5.3.4.47953 - C:\Users\Patrik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
Plugin - Roblox Launcher Plugin - 1.2.8.25 - C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\NPRobloxProxy.dll
=========Google Chrome=========
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension akaelkiagnbfcccfnmbimdbplecgbikh 0 Replace Favicon 0.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bgjpfhpjcgdppjbgnpnjllokbmcdllig 0 Seznam Lištička - Email 1.4.2
Extension blmojkbhnkkphngknkmgccmlenfaelkd 1 Seznam Lištička - Slovník 1.4.6
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension flliilndjeohchalpbbcdekjklbdgfkk 1 Avira Browser Safety 2.4.2.1650
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension lifbcibllhkdhoafpjfnlhfpfgnpldfl 1 Skype 9.0.0.7200
Extension mbpabmjecillbmlhmkbibekmbnidhopk 1 Background Changer 0.6
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nhjgdbihpkphlammdaeicdemggagfbdo 1 Iomods 2.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension olfeabkoenfaoljndfecamgilllcpiak 0 Seznam Lištička - Rychlá volba 1.9.1
Extension papbadoldddalgcjcicnikcfenodpghp 0 Search People 0.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5817.313.0.5
Homepage:
default_search_provider.search_url:
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl]
"Path"=
======Registry dump ======
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalene PC, popup okna v chrome...
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Zpomalene PC, popup okna v chrome...
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-05-26 149704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-19 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-06-06 2101440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-19 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28 193136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-07-25 2403104]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-06-01 176952]
"Malwarebytes TrayApp"=C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2017-01-20 2780112]
"Wondershare Helper Compact.exe"=C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Patrik\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-04-08 1518808]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-06-08 3042592]
"BingSvc"=C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2016-01-22 144008]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2016-04-22 67384]
"cz.seznam.software.autoupdate"=C:\Users\Patrik\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Patrik\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2016-04-22 110392]
"iCloudPhotos"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [2016-04-22 356664]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2016-04-22 67896]
"Spotify Web Helper"=C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-05-25 1560176]
"Spotify"=C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe [2017-05-25 7009904]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-04-11 27793880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-12-29 61896]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2017-04-27 912768]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2016-10-08 2137744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"EnableCursorSuppression"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-06-09 23:44:56 ----D---- C:\rsit
2017-06-09 23:44:56 ----D---- C:\Program Files\trend micro
2017-06-09 19:09:07 ----HD---- C:\$WINDOWS.~BT
2017-06-06 03:50:25 ----AD---- C:\Program Files\Common Files\DESIGNER
2017-05-10 22:41:04 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-05-10 22:41:04 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-05-10 22:41:04 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2017-05-10 22:41:04 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2017-05-10 22:41:03 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-05-10 22:41:03 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-05-10 22:41:02 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2017-05-10 22:41:02 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-05-10 22:41:02 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-05-10 22:40:58 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2017-05-10 22:40:58 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2017-05-10 22:40:56 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-05-10 22:40:56 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-05-10 22:40:49 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-05-10 22:40:49 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-05-10 22:40:49 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-05-10 22:40:49 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-05-10 22:40:47 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-05-10 22:40:44 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-05-10 22:40:43 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-05-10 22:40:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-05-10 22:40:42 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2017-05-10 22:40:40 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-05-10 22:40:40 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\adsnt.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-05-10 22:40:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-05-10 22:40:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-05-10 22:40:31 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-05-10 22:40:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-10 22:40:28 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-05-10 22:40:28 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-05-10 22:40:28 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-05-10 22:40:27 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2017-05-10 22:40:27 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-05-10 22:40:26 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-05-10 22:40:24 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-05-10 22:40:23 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-05-10 22:40:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-05-10 22:40:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-05-10 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-05-10 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-05-10 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-05-10 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-05-10 22:40:17 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-05-10 22:40:17 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-05-10 22:40:17 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-05-10 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-05-10 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-05-10 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-05-10 22:40:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 22:40:12 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-05-10 22:40:12 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-05-10 22:40:12 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-05-10 22:40:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-05-10 22:40:11 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-05-10 22:40:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-05-10 22:40:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-05-10 22:40:06 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-05-10 22:40:02 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-05-10 22:40:02 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-05-10 22:39:59 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-05-10 22:39:59 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-05-10 22:39:59 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-05-10 22:39:59 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-05-10 22:39:58 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-05-10 22:39:58 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-05-10 22:39:57 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-05-10 22:39:57 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2017-05-10 22:39:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-05-10 22:39:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2017-05-10 22:39:55 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2017-05-10 22:39:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-05-10 22:39:53 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-05-10 22:39:51 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-05-10 22:39:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-05-10 22:39:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2017-05-10 22:39:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-05-10 22:39:45 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-05-10 22:39:45 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-05-10 22:39:45 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-05-10 22:39:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-05-10 22:39:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-05-10 22:39:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-05-10 22:39:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-05-10 22:39:43 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2017-05-10 22:39:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-05-10 22:39:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-05-10 22:39:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-05-10 22:39:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-05-10 22:39:39 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-05-10 22:39:39 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2017-05-10 22:39:38 ----A---- C:\WINDOWS\SYSWOW64\BthTelemetry.dll
2017-05-10 22:39:38 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-05-10 22:39:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-05-10 22:39:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-05-10 22:39:37 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-05-10 22:39:37 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-05-10 22:39:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-05-10 22:39:36 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-05-10 22:39:36 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2017-05-10 22:31:43 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-05-10 22:31:43 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-10 22:31:41 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-10 22:31:41 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-10 22:31:41 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-10 22:31:41 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 22:31:40 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-10 22:31:40 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-10 22:31:40 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-10 22:31:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-10 22:31:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-05-10 22:31:38 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-10 22:31:36 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2017-05-10 22:31:08 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 22:30:55 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-05-10 22:30:54 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-05-10 22:30:54 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-10 22:30:52 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-10 22:30:52 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-10 22:30:51 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-10 22:30:50 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-05-10 22:30:47 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-05-10 22:30:47 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-10 22:30:47 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-10 22:30:47 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-10 22:30:45 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-10 22:30:45 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-10 22:30:44 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-05-10 22:30:43 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-10 22:30:42 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-05-10 22:30:42 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\vds.exe
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-10 22:30:39 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-10 22:30:39 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-10 22:30:39 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 22:30:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-10 22:30:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-10 22:30:38 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-10 22:30:37 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-05-10 22:30:36 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-10 22:30:36 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-05-10 22:30:35 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-10 22:30:35 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 22:30:34 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-10 22:30:33 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 22:30:33 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-05-10 22:30:33 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-10 22:30:32 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-10 22:30:32 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-05-10 22:30:32 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-10 22:30:31 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-10 22:30:30 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-05-10 22:30:30 ----A---- C:\WINDOWS\system32\input.dll
2017-05-10 22:30:29 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-10 22:30:29 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-10 22:30:28 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 22:30:28 ----A---- C:\WINDOWS\system32\rdpshell.exe
2017-05-10 22:30:28 ----A---- C:\WINDOWS\system32\rdpinit.exe
2017-05-10 22:30:28 ----A---- C:\WINDOWS\system32\rdpclip.exe
2017-05-10 22:30:27 ----A---- C:\WINDOWS\system32\wksprt.exe
2017-05-10 22:30:27 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-10 22:30:27 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-10 22:30:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-10 22:30:26 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-10 22:30:26 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 22:30:26 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-10 22:30:25 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-10 22:30:25 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-10 22:30:24 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-10 22:30:24 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-10 22:30:23 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-10 22:30:23 ----A---- C:\WINDOWS\system32\shell32.dll
2017-05-10 22:30:22 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 22:30:22 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-10 22:30:21 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-10 22:30:21 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 22:30:21 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 22:30:20 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-10 22:30:20 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-10 22:30:20 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 22:30:19 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-10 22:30:19 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-10 22:30:19 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-10 22:30:18 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-10 22:30:18 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-05-10 22:30:18 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-10 22:30:18 ----A---- C:\WINDOWS\system32\fvecpl.dll
2017-05-10 22:30:17 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-05-10 22:30:17 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-05-10 22:30:15 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-10 22:30:15 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 22:30:14 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-10 22:30:13 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-10 22:30:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 22:30:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-05-10 22:30:13 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-05-10 22:30:09 ----A---- C:\WINDOWS\system32\spwizeng.dll
2017-05-10 22:30:09 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-10 22:30:08 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-10 22:30:08 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-10 22:30:07 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 22:30:04 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-10 22:30:04 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-10 22:30:03 ----A---- C:\WINDOWS\system32\services.exe
2017-05-10 22:30:02 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 22:30:01 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-10 22:30:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-10 22:30:00 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-10 22:29:59 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-10 22:29:57 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-10 22:29:57 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-10 22:29:57 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-10 22:29:56 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-10 22:29:55 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-10 22:29:53 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-10 22:29:53 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-10 22:29:53 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-10 22:29:52 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-05-10 22:29:52 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-05-10 22:29:52 ----A---- C:\WINDOWS\system32\pwcreator.exe
2017-05-10 22:29:50 ----A---- C:\WINDOWS\system32\localspl.dll
2017-05-10 22:29:49 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-10 22:29:48 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 22:29:48 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-10 22:29:46 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-10 22:29:46 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\cscui.dll
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-05-10 22:29:43 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-10 22:29:43 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-05-10 22:29:43 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-10 22:29:42 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-10 22:29:42 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-10 22:29:35 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-10 22:29:35 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-10 22:29:33 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-05-10 22:29:33 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-10 22:29:32 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-10 22:29:32 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfps.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-10 22:29:29 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-05-10 22:29:29 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-10 22:29:29 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-10 22:29:28 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-05-10 22:29:28 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-10 22:29:28 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-10 22:29:28 ----A---- C:\WINDOWS\system32\mf.dll
2017-05-10 22:29:27 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-10 22:29:26 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-10 22:29:23 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-10 22:29:23 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-05-10 22:29:23 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-05-10 22:29:23 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-10 22:29:21 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-05-10 22:29:21 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-05-10 22:29:21 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-05-10 22:29:21 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-05-10 22:29:20 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-10 22:29:19 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-10 22:29:16 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-05-10 22:29:15 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-10 22:29:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 22:29:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-05-10 22:29:14 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-10 22:29:12 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-10 22:29:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 22:29:08 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-10 22:29:05 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-10 22:29:04 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-05-10 22:28:51 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-10 22:28:48 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-10 22:28:47 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-05-10 22:28:47 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-05-10 22:28:47 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-05-10 22:28:46 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-10 22:28:43 ----A---- C:\WINDOWS\system32\resutils.dll
2017-05-10 22:28:41 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-05-10 22:28:40 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-10 22:28:39 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-10 22:28:39 ----A---- C:\WINDOWS\explorer.exe
2017-05-10 22:28:38 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 22:28:38 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-10 22:28:37 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-10 22:28:36 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-05-10 22:28:36 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-05-10 22:28:36 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 22:28:35 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-10 22:28:35 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-10 22:28:33 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-10 22:28:33 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-10 22:28:33 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-10 22:28:33 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-10 22:28:31 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-10 22:28:31 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-10 22:28:31 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-10 22:28:30 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 22:28:30 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-05-10 22:28:30 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-10 22:28:30 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-05-10 22:28:29 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-10 22:28:29 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-05-10 22:28:26 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-05-10 22:28:20 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-10 22:28:11 ----A---- C:\WINDOWS\system32\cryptui.dll
2017-05-10 22:28:11 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-10 22:28:08 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-10 22:28:08 ----A---- C:\WINDOWS\system32\catsrvps.dll
2017-05-10 22:28:07 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-10 22:28:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-10 22:28:07 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-10 22:28:06 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-10 22:28:06 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-10 22:28:05 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-10 22:28:04 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-10 22:28:03 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-10 22:27:59 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2017-05-10 22:27:58 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-10 22:27:53 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-10 22:27:53 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-10 22:27:53 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-10 22:27:52 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-10 22:27:44 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-05-10 22:27:40 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-10 22:27:39 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-10 22:27:39 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-10 22:27:39 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-10 22:27:39 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-10 22:27:33 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-05-10 22:26:57 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-10 22:26:57 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
====== List of files/folders modified in the last 1 month ======
2017-06-09 23:45:03 ----D---- C:\WINDOWS\Prefetch
2017-06-09 23:44:56 ----RD---- C:\Program Files
2017-06-09 23:44:53 ----D---- C:\WINDOWS\Temp
2017-06-09 23:40:27 ----D---- C:\WINDOWS\AppReadiness
2017-06-09 23:40:26 ----HD---- C:\Program Files\WindowsApps
2017-06-09 23:36:39 ----D---- C:\WINDOWS\system32\config
2017-06-09 23:36:38 ----D---- C:\Program Files (x86)\Avira
2017-06-09 23:32:58 ----D---- C:\Users\Patrik\AppData\Roaming\Seznam.cz
2017-06-09 23:31:46 ----D---- C:\Users\Patrik\AppData\Roaming\Spotify
2017-06-09 23:31:43 ----D---- C:\Users\Patrik\AppData\Roaming\Skype
2017-06-09 23:28:05 ----D---- C:\Program Files (x86)\Steam
2017-06-09 23:27:52 ----D---- C:\WINDOWS\system32\sru
2017-06-09 23:25:42 ----D---- C:\ProgramData\NVIDIA
2017-06-09 23:25:40 ----D---- C:\WINDOWS\system32\SleepStudy
2017-06-09 19:12:38 ----D---- C:\WINDOWS\system32\appraiser
2017-06-09 19:12:29 ----D---- C:\WINDOWS\CbsTemp
2017-06-09 19:12:20 ----D---- C:\WINDOWS\system32\catroot2
2017-06-09 19:12:18 ----SHD---- C:\System Volume Information
2017-06-09 19:10:07 ----DC---- C:\WINDOWS\Panther
2017-06-09 19:09:06 ----D---- C:\WINDOWS\Logs
2017-06-09 19:06:28 ----D---- C:\WINDOWS\WinSxS
2017-06-09 18:43:30 ----D---- C:\WINDOWS\INF
2017-06-06 18:06:49 ----RD---- C:\WINDOWS\Microsoft.NET
2017-06-06 17:31:59 ----D---- C:\Users\Patrik\AppData\Roaming\TS3Client
2017-06-06 03:51:34 ----SHDC---- C:\WINDOWS\Installer
2017-06-06 03:51:04 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-06-06 03:50:25 ----D---- C:\Program Files\Common Files
2017-06-06 03:50:25 ----AD---- C:\Program Files\Common Files\microsoft shared
2017-06-06 03:47:11 ----AD---- C:\Program Files\Microsoft Office
2017-05-23 19:15:40 ----RD---- C:\Users
2017-05-23 17:14:54 ----D---- C:\WINDOWS\system32\MRT
2017-05-23 17:08:44 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-15 22:29:06 ----D---- C:\WINDOWS\rescache
2017-05-14 13:26:38 ----D---- C:\WINDOWS\system32\DriverStore
2017-05-13 17:43:17 ----D---- C:\WINDOWS\System32
2017-05-13 17:43:17 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-13 17:39:17 ----SHD---- C:\Boot
2017-05-13 17:33:04 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-05-13 17:33:04 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-05-13 17:33:04 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-05-13 17:33:04 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-05-13 17:33:03 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-05-13 17:33:03 ----D---- C:\WINDOWS\SysWOW64
2017-05-13 17:32:48 ----D---- C:\WINDOWS\system32\wbem
2017-05-13 17:32:48 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-05-13 17:32:48 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-05-13 17:32:46 ----SD---- C:\WINDOWS\system32\F12
2017-05-13 17:32:46 ----D---- C:\WINDOWS\system32\oobe
2017-05-13 17:32:46 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-05-13 17:32:46 ----D---- C:\WINDOWS\system32\drivers
2017-05-13 17:32:45 ----D---- C:\WINDOWS\system32\cs-CZ
2017-05-13 17:32:30 ----D---- C:\WINDOWS\ShellExperiences
2017-05-13 17:32:30 ----D---- C:\WINDOWS\Provisioning
2017-05-13 17:32:30 ----D---- C:\WINDOWS\PolicyDefinitions
2017-05-13 17:32:24 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-05-13 17:32:23 ----D---- C:\Windows
2017-05-13 17:32:23 ----D---- C:\Program Files\Windows Photo Viewer
2017-05-13 17:32:23 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-05-13 17:32:23 ----D---- C:\Program Files (x86)\Windows Defender
2017-05-13 17:32:22 ----RD---- C:\Program Files\Windows Defender
2017-05-10 17:41:52 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2017-03-02 163976]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2017-03-02 44488]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2017-03-02 161824]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2017-03-02 88488]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
R3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-17 157024]
R3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-17 141152]
R3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2017-06-09 251832]
R3 NVHDA;@oem8.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-01-04 221640]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_b67dc924fff8de6d\nvlddmkm.sys [2017-01-04 14199224]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-07-25 20256]
R3 nvvad_WaveExtensible;@oem5.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-07-16 589824]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-04-28 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-17 179040]
S3 Netaapl;@oem11.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\System32\drivers\netaapl64.sys [2015-11-05 23040]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 Ser2pl;@oem21.inf,%Serial.SVCDESC%;Prolific Serial port WDF driver; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [2017-04-05 210752]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\WINDOWS\system32\drivers\tsusbhub.sys [2016-07-17 123392]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S4 UevAgentDriver;@%systemroot%\system32\drivers\UevAgentDriver.sys,-101; C:\WINDOWS\system32\drivers\UevAgentDriver.sys [2016-07-17 40288]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2017-04-27 488920]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2017-04-27 488920]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPUserSvc_4a1d0;CDPUserSvc_4a1d0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-05-28 4122816]
R2 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-06-01 651576]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-01-20 4355024]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-12-29 458176]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-07-25 1720608]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-07-25 18956064]
R2 OneSyncSvc_4a1d0;Hostitel synchronizace_4a1d0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
R2 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
R3 PimIndexMaintenanceSvc_4a1d0;Data kontaktů_4a1d0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2017-04-27 1119712]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2017-04-27 1520680]
S2 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-12-14 822624]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\syswow64\EasyAntiCheat.exe [2016-01-25 241936]
S2 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S2 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2016-01-22 194032]
S2 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S2 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-01-30 172488]
S2 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S2 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-03-14 317400]
S2 UevAgentService;@%systemroot%\system32\AgentService.exe,-102; C:\WINDOWS\system32\AgentService.exe [2016-07-17 1227264]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MessagingService_4a1d0;Služba zasílání zpráv_4a1d0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-05-28 257216]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
S4 ASGT;ASGT; C:\Windows\SysWOW64\ASGT.exe [2012-01-17 55296]
S4 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-12-29 372272]
S4 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2016-03-28 1362464]
-----------------EOF-----------------
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-05-26 149704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-19 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-06-06 2101440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-19 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28 193136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-07-25 2403104]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-06-01 176952]
"Malwarebytes TrayApp"=C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2017-01-20 2780112]
"Wondershare Helper Compact.exe"=C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Patrik\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-04-08 1518808]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-06-08 3042592]
"BingSvc"=C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2016-01-22 144008]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2016-04-22 67384]
"cz.seznam.software.autoupdate"=C:\Users\Patrik\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Patrik\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2016-04-22 110392]
"iCloudPhotos"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [2016-04-22 356664]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2016-04-22 67896]
"Spotify Web Helper"=C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-05-25 1560176]
"Spotify"=C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe [2017-05-25 7009904]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-04-11 27793880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-12-29 61896]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2017-04-27 912768]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2016-10-08 2137744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"EnableCursorSuppression"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-06-09 23:44:56 ----D---- C:\rsit
2017-06-09 23:44:56 ----D---- C:\Program Files\trend micro
2017-06-09 19:09:07 ----HD---- C:\$WINDOWS.~BT
2017-06-06 03:50:25 ----AD---- C:\Program Files\Common Files\DESIGNER
2017-05-10 22:41:04 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-05-10 22:41:04 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-05-10 22:41:04 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2017-05-10 22:41:04 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2017-05-10 22:41:03 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-05-10 22:41:03 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-05-10 22:41:02 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2017-05-10 22:41:02 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-05-10 22:41:02 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-05-10 22:40:58 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2017-05-10 22:40:58 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2017-05-10 22:40:56 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-05-10 22:40:56 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-05-10 22:40:49 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-05-10 22:40:49 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-05-10 22:40:49 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-05-10 22:40:49 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-05-10 22:40:47 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-05-10 22:40:44 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-05-10 22:40:43 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-05-10 22:40:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-05-10 22:40:42 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2017-05-10 22:40:40 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-05-10 22:40:40 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-05-10 22:40:33 ----A---- C:\WINDOWS\SYSWOW64\adsnt.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-05-10 22:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-05-10 22:40:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-05-10 22:40:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-05-10 22:40:31 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-05-10 22:40:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-10 22:40:28 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-05-10 22:40:28 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-05-10 22:40:28 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-05-10 22:40:27 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2017-05-10 22:40:27 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-05-10 22:40:26 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-05-10 22:40:25 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-05-10 22:40:24 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-05-10 22:40:23 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-05-10 22:40:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-05-10 22:40:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-05-10 22:40:21 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-05-10 22:40:20 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-05-10 22:40:19 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-05-10 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-05-10 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-05-10 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-05-10 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-05-10 22:40:17 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-05-10 22:40:17 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-05-10 22:40:17 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-05-10 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-05-10 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-05-10 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-05-10 22:40:14 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-05-10 22:40:13 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-05-10 22:40:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 22:40:12 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-05-10 22:40:12 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-05-10 22:40:12 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-05-10 22:40:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-05-10 22:40:11 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-05-10 22:40:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-05-10 22:40:09 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-05-10 22:40:08 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-05-10 22:40:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-05-10 22:40:06 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-05-10 22:40:04 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-05-10 22:40:03 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-05-10 22:40:02 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-05-10 22:40:02 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-05-10 22:40:01 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-05-10 22:39:59 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-05-10 22:39:59 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-05-10 22:39:59 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-05-10 22:39:59 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-05-10 22:39:58 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-05-10 22:39:58 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-05-10 22:39:57 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-05-10 22:39:57 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2017-05-10 22:39:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-05-10 22:39:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2017-05-10 22:39:55 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2017-05-10 22:39:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-05-10 22:39:53 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-05-10 22:39:52 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-05-10 22:39:51 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-05-10 22:39:47 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-05-10 22:39:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-05-10 22:39:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2017-05-10 22:39:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-05-10 22:39:45 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-05-10 22:39:45 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-05-10 22:39:45 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-05-10 22:39:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-05-10 22:39:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-05-10 22:39:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-05-10 22:39:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-05-10 22:39:43 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-05-10 22:39:42 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2017-05-10 22:39:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-05-10 22:39:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-05-10 22:39:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-05-10 22:39:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-05-10 22:39:40 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-05-10 22:39:39 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-05-10 22:39:39 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2017-05-10 22:39:38 ----A---- C:\WINDOWS\SYSWOW64\BthTelemetry.dll
2017-05-10 22:39:38 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-05-10 22:39:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-05-10 22:39:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-05-10 22:39:37 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-05-10 22:39:37 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-05-10 22:39:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-05-10 22:39:36 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-05-10 22:39:36 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-05-10 22:39:35 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2017-05-10 22:31:43 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-05-10 22:31:43 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-05-10 22:31:42 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-10 22:31:41 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-10 22:31:41 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-10 22:31:41 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-10 22:31:41 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 22:31:40 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-10 22:31:40 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-10 22:31:40 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-10 22:31:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-10 22:31:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-05-10 22:31:38 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-10 22:31:36 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2017-05-10 22:31:08 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 22:30:55 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-05-10 22:30:54 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-05-10 22:30:54 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-10 22:30:52 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-10 22:30:52 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-10 22:30:51 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-10 22:30:50 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 22:30:49 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-05-10 22:30:48 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-05-10 22:30:47 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-05-10 22:30:47 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-10 22:30:47 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-10 22:30:47 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-10 22:30:45 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-10 22:30:45 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-10 22:30:44 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-05-10 22:30:43 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-10 22:30:42 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-05-10 22:30:42 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 22:30:41 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\vds.exe
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-05-10 22:30:40 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-10 22:30:39 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-10 22:30:39 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-10 22:30:39 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 22:30:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-10 22:30:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-10 22:30:38 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-10 22:30:37 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-05-10 22:30:36 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-10 22:30:36 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-05-10 22:30:35 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-10 22:30:35 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 22:30:34 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-10 22:30:33 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 22:30:33 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-05-10 22:30:33 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-10 22:30:32 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-10 22:30:32 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-05-10 22:30:32 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-10 22:30:31 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-10 22:30:30 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-05-10 22:30:30 ----A---- C:\WINDOWS\system32\input.dll
2017-05-10 22:30:29 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-10 22:30:29 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-10 22:30:28 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 22:30:28 ----A---- C:\WINDOWS\system32\rdpshell.exe
2017-05-10 22:30:28 ----A---- C:\WINDOWS\system32\rdpinit.exe
2017-05-10 22:30:28 ----A---- C:\WINDOWS\system32\rdpclip.exe
2017-05-10 22:30:27 ----A---- C:\WINDOWS\system32\wksprt.exe
2017-05-10 22:30:27 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-10 22:30:27 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-10 22:30:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-10 22:30:26 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-10 22:30:26 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 22:30:26 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-10 22:30:25 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-10 22:30:25 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-10 22:30:24 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-10 22:30:24 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-10 22:30:23 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-10 22:30:23 ----A---- C:\WINDOWS\system32\shell32.dll
2017-05-10 22:30:22 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 22:30:22 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-10 22:30:21 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-10 22:30:21 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 22:30:21 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 22:30:20 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-10 22:30:20 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-10 22:30:20 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 22:30:19 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-10 22:30:19 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-10 22:30:19 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-10 22:30:18 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-10 22:30:18 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-05-10 22:30:18 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-10 22:30:18 ----A---- C:\WINDOWS\system32\fvecpl.dll
2017-05-10 22:30:17 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-05-10 22:30:17 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-05-10 22:30:15 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-10 22:30:15 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 22:30:14 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-10 22:30:13 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-10 22:30:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 22:30:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-05-10 22:30:13 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-05-10 22:30:09 ----A---- C:\WINDOWS\system32\spwizeng.dll
2017-05-10 22:30:09 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-10 22:30:08 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-10 22:30:08 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-10 22:30:07 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 22:30:04 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-10 22:30:04 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-10 22:30:03 ----A---- C:\WINDOWS\system32\services.exe
2017-05-10 22:30:02 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 22:30:01 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-10 22:30:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-10 22:30:00 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-10 22:29:59 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-10 22:29:58 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-10 22:29:57 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-10 22:29:57 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-10 22:29:57 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-10 22:29:56 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-10 22:29:55 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-10 22:29:54 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-10 22:29:53 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-10 22:29:53 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-10 22:29:53 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-10 22:29:52 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-05-10 22:29:52 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-05-10 22:29:52 ----A---- C:\WINDOWS\system32\pwcreator.exe
2017-05-10 22:29:50 ----A---- C:\WINDOWS\system32\localspl.dll
2017-05-10 22:29:49 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-10 22:29:48 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 22:29:48 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-10 22:29:46 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-10 22:29:46 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\cscui.dll
2017-05-10 22:29:45 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-05-10 22:29:43 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-10 22:29:43 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-05-10 22:29:43 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-10 22:29:42 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-10 22:29:42 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-10 22:29:35 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-10 22:29:35 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-10 22:29:33 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-05-10 22:29:33 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-10 22:29:32 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-10 22:29:32 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfps.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-10 22:29:30 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-10 22:29:29 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-05-10 22:29:29 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-10 22:29:29 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-10 22:29:28 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-05-10 22:29:28 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-10 22:29:28 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-10 22:29:28 ----A---- C:\WINDOWS\system32\mf.dll
2017-05-10 22:29:27 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-10 22:29:26 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-10 22:29:23 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-10 22:29:23 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-05-10 22:29:23 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-05-10 22:29:23 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-10 22:29:21 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-05-10 22:29:21 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-05-10 22:29:21 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-05-10 22:29:21 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-05-10 22:29:20 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-10 22:29:19 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-10 22:29:16 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-05-10 22:29:15 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-10 22:29:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 22:29:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-05-10 22:29:14 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-10 22:29:12 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-10 22:29:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-05-10 22:29:09 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 22:29:08 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 22:29:07 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-10 22:29:05 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-10 22:29:04 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-05-10 22:28:51 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-10 22:28:48 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-10 22:28:47 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-05-10 22:28:47 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-05-10 22:28:47 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-05-10 22:28:46 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-10 22:28:43 ----A---- C:\WINDOWS\system32\resutils.dll
2017-05-10 22:28:41 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-05-10 22:28:40 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-10 22:28:39 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-10 22:28:39 ----A---- C:\WINDOWS\explorer.exe
2017-05-10 22:28:38 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 22:28:38 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-10 22:28:37 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-10 22:28:36 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-05-10 22:28:36 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-05-10 22:28:36 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 22:28:35 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-10 22:28:35 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-10 22:28:33 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-10 22:28:33 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-10 22:28:33 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-10 22:28:33 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-10 22:28:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-10 22:28:31 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-10 22:28:31 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-10 22:28:31 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-10 22:28:30 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 22:28:30 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-05-10 22:28:30 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-10 22:28:30 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-05-10 22:28:29 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-10 22:28:29 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-05-10 22:28:26 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-05-10 22:28:20 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-10 22:28:11 ----A---- C:\WINDOWS\system32\cryptui.dll
2017-05-10 22:28:11 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 22:28:10 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-10 22:28:08 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-10 22:28:08 ----A---- C:\WINDOWS\system32\catsrvps.dll
2017-05-10 22:28:07 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-10 22:28:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-10 22:28:07 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-10 22:28:06 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-10 22:28:06 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-10 22:28:05 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-10 22:28:04 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-10 22:28:03 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-10 22:27:59 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2017-05-10 22:27:58 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-10 22:27:53 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-10 22:27:53 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-10 22:27:53 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-10 22:27:52 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-10 22:27:46 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-10 22:27:44 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-05-10 22:27:43 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-05-10 22:27:40 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-10 22:27:39 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-10 22:27:39 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-10 22:27:39 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-10 22:27:39 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-10 22:27:38 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-10 22:27:33 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-05-10 22:26:57 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-10 22:26:57 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
====== List of files/folders modified in the last 1 month ======
2017-06-09 23:45:03 ----D---- C:\WINDOWS\Prefetch
2017-06-09 23:44:56 ----RD---- C:\Program Files
2017-06-09 23:44:53 ----D---- C:\WINDOWS\Temp
2017-06-09 23:40:27 ----D---- C:\WINDOWS\AppReadiness
2017-06-09 23:40:26 ----HD---- C:\Program Files\WindowsApps
2017-06-09 23:36:39 ----D---- C:\WINDOWS\system32\config
2017-06-09 23:36:38 ----D---- C:\Program Files (x86)\Avira
2017-06-09 23:32:58 ----D---- C:\Users\Patrik\AppData\Roaming\Seznam.cz
2017-06-09 23:31:46 ----D---- C:\Users\Patrik\AppData\Roaming\Spotify
2017-06-09 23:31:43 ----D---- C:\Users\Patrik\AppData\Roaming\Skype
2017-06-09 23:28:05 ----D---- C:\Program Files (x86)\Steam
2017-06-09 23:27:52 ----D---- C:\WINDOWS\system32\sru
2017-06-09 23:25:42 ----D---- C:\ProgramData\NVIDIA
2017-06-09 23:25:40 ----D---- C:\WINDOWS\system32\SleepStudy
2017-06-09 19:12:38 ----D---- C:\WINDOWS\system32\appraiser
2017-06-09 19:12:29 ----D---- C:\WINDOWS\CbsTemp
2017-06-09 19:12:20 ----D---- C:\WINDOWS\system32\catroot2
2017-06-09 19:12:18 ----SHD---- C:\System Volume Information
2017-06-09 19:10:07 ----DC---- C:\WINDOWS\Panther
2017-06-09 19:09:06 ----D---- C:\WINDOWS\Logs
2017-06-09 19:06:28 ----D---- C:\WINDOWS\WinSxS
2017-06-09 18:43:30 ----D---- C:\WINDOWS\INF
2017-06-06 18:06:49 ----RD---- C:\WINDOWS\Microsoft.NET
2017-06-06 17:31:59 ----D---- C:\Users\Patrik\AppData\Roaming\TS3Client
2017-06-06 03:51:34 ----SHDC---- C:\WINDOWS\Installer
2017-06-06 03:51:04 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-06-06 03:50:25 ----D---- C:\Program Files\Common Files
2017-06-06 03:50:25 ----AD---- C:\Program Files\Common Files\microsoft shared
2017-06-06 03:47:11 ----AD---- C:\Program Files\Microsoft Office
2017-05-23 19:15:40 ----RD---- C:\Users
2017-05-23 17:14:54 ----D---- C:\WINDOWS\system32\MRT
2017-05-23 17:08:44 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-15 22:29:06 ----D---- C:\WINDOWS\rescache
2017-05-14 13:26:38 ----D---- C:\WINDOWS\system32\DriverStore
2017-05-13 17:43:17 ----D---- C:\WINDOWS\System32
2017-05-13 17:43:17 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-13 17:39:17 ----SHD---- C:\Boot
2017-05-13 17:33:04 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-05-13 17:33:04 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-05-13 17:33:04 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-05-13 17:33:04 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-05-13 17:33:03 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-05-13 17:33:03 ----D---- C:\WINDOWS\SysWOW64
2017-05-13 17:32:48 ----D---- C:\WINDOWS\system32\wbem
2017-05-13 17:32:48 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-05-13 17:32:48 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-05-13 17:32:46 ----SD---- C:\WINDOWS\system32\F12
2017-05-13 17:32:46 ----D---- C:\WINDOWS\system32\oobe
2017-05-13 17:32:46 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-05-13 17:32:46 ----D---- C:\WINDOWS\system32\drivers
2017-05-13 17:32:45 ----D---- C:\WINDOWS\system32\cs-CZ
2017-05-13 17:32:30 ----D---- C:\WINDOWS\ShellExperiences
2017-05-13 17:32:30 ----D---- C:\WINDOWS\Provisioning
2017-05-13 17:32:30 ----D---- C:\WINDOWS\PolicyDefinitions
2017-05-13 17:32:24 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-05-13 17:32:23 ----D---- C:\Windows
2017-05-13 17:32:23 ----D---- C:\Program Files\Windows Photo Viewer
2017-05-13 17:32:23 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-05-13 17:32:23 ----D---- C:\Program Files (x86)\Windows Defender
2017-05-13 17:32:22 ----RD---- C:\Program Files\Windows Defender
2017-05-10 17:41:52 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2017-03-02 163976]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2017-03-02 44488]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2017-03-02 161824]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2017-03-02 88488]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
R3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-17 157024]
R3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-17 141152]
R3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2017-06-09 251832]
R3 NVHDA;@oem8.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-01-04 221640]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_b67dc924fff8de6d\nvlddmkm.sys [2017-01-04 14199224]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-07-25 20256]
R3 nvvad_WaveExtensible;@oem5.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-07-16 589824]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-04-28 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-17 179040]
S3 Netaapl;@oem11.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\System32\drivers\netaapl64.sys [2015-11-05 23040]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 Ser2pl;@oem21.inf,%Serial.SVCDESC%;Prolific Serial port WDF driver; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [2017-04-05 210752]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\WINDOWS\system32\drivers\tsusbhub.sys [2016-07-17 123392]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S4 UevAgentDriver;@%systemroot%\system32\drivers\UevAgentDriver.sys,-101; C:\WINDOWS\system32\drivers\UevAgentDriver.sys [2016-07-17 40288]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2017-04-27 488920]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2017-04-27 488920]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPUserSvc_4a1d0;CDPUserSvc_4a1d0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-05-28 4122816]
R2 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-06-01 651576]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-01-20 4355024]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-12-29 458176]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-07-25 1720608]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-07-25 18956064]
R2 OneSyncSvc_4a1d0;Hostitel synchronizace_4a1d0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
R2 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
R3 PimIndexMaintenanceSvc_4a1d0;Data kontaktů_4a1d0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2017-04-27 1119712]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2017-04-27 1520680]
S2 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-12-14 822624]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\syswow64\EasyAntiCheat.exe [2016-01-25 241936]
S2 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S2 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2016-01-22 194032]
S2 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S2 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-01-30 172488]
S2 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S2 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-03-14 317400]
S2 UevAgentService;@%systemroot%\system32\AgentService.exe,-102; C:\WINDOWS\system32\AgentService.exe [2016-07-17 1227264]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MessagingService_4a1d0;Služba zasílání zpráv_4a1d0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-05-28 257216]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
S4 ASGT;ASGT; C:\Windows\SysWOW64\ASGT.exe [2012-01-17 55296]
S4 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-12-29 372272]
S4 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2016-03-28 1362464]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalene PC, popup okna v chrome...
Zdravím!
Zkusíme to vyčistit. Spusťte tuto utilitu:
Zkusíme to vyčistit. Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalene PC, popup okna v chrome...
Dekuji, a zde je log.
Okna v chromu ale stale vyskakuji. Odkazuje me to na program reimage, tváří se to jako podpora pro produkty windows ?
# AdwCleaner v6.047 - Log vytvořen 10/06/2017 v 12:15:36
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-10.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Patrik - DESKTOP-5PS84ML
# Spuštěno z : C:\Users\Patrik\Desktop\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
[-] Soubor smazán: C:\END
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\ReimageRealTimeProtector
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\reimagerealtimeprotector
***** [ Prohlížeče ] *****
[-] [C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: akaelkiagnbfcccfnmbimdbplecgbikh
[-] [C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: papbadoldddalgcjcicnikcfenodpghp
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1294 Bajty] - [10/06/2017 12:15:36]
C:\AdwCleaner\AdwCleaner[S0].txt - [1958 Bajty] - [10/06/2017 12:14:03]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1440 Bajty] ##########
Okna v chromu ale stale vyskakuji. Odkazuje me to na program reimage, tváří se to jako podpora pro produkty windows ?
# AdwCleaner v6.047 - Log vytvořen 10/06/2017 v 12:15:36
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-10.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Patrik - DESKTOP-5PS84ML
# Spuštěno z : C:\Users\Patrik\Desktop\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
[-] Soubor smazán: C:\END
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\ReimageRealTimeProtector
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\reimagerealtimeprotector
***** [ Prohlížeče ] *****
[-] [C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: akaelkiagnbfcccfnmbimdbplecgbikh
[-] [C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: papbadoldddalgcjcicnikcfenodpghp
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1294 Bajty] - [10/06/2017 12:15:36]
C:\AdwCleaner\AdwCleaner[S0].txt - [1958 Bajty] - [10/06/2017 12:14:03]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1440 Bajty] ##########
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalene PC, popup okna v chrome...
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalene PC, popup okna v chrome...
Moc se omlouvám, ale netuším jak přesvědčit aviru aby mi pořád neodstraňovala. Poradíte mi jak ji můžu vypnout ?
Díky moc
Díky moc
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalene PC, popup okna v chrome...
Aviru rozklikněte a na ovládacím panelu vypněte rezidentní štít.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalene PC, popup okna v chrome...
Děkuji za pomoc, omlouvám se za neznalost. Přikládám log
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-06-2017
Ran by Patrik (administrator) on DESKTOP-5PS84ML (11-06-2017 21:06:14)
Running from C:\Users\Patrik\Desktop
Loaded Profiles: Patrik & (Available Profiles: Patrik)
Platform: Windows 10 Pro Version 1703 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(© 2015 Microsoft Corporation) C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avcenter.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(forum.viry.cz) C:\Users\Patrik\Desktop\FRST-OlderVersion\FRSTLauncher (1).exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61896 2016-12-29] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [912768 2017-04-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [BingSvc] => C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-01-22] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [Spotify Web Helper] => C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-06-10] (Spotify Ltd)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [Spotify] => C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe [6949488 2017-06-10] (Spotify Ltd)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27793880 2017-04-11] (Skype Technologies S.A.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [BingSvc] => C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-01-22] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [Spotify Web Helper] => C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-06-10] (Spotify Ltd)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [Spotify] => C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe [6949488 2017-06-10] (Spotify Ltd)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27793880 2017-04-11] (Skype Technologies S.A.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a2a8916e-9d1a-4bbf-b172-0f7ec18d1f42}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://windows.microsoft.com/cs-cz/hotmail/home?ocid=iehp
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://windows.microsoft.com/cs-cz/hotmail/home?ocid=iehp
SearchScopes: HKU\S-1-5-21-4140957025-1088647250-3290698323-1001 -> {57999D54-9BA4-41C5-B3BB-9CE50B52082D} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541 -> {57999D54-9BA4-41C5-B3BB-9CE50B52082D} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-05-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-19] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-06-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-19] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default [2017-06-11]
FF Extension: (Avira Browser Safety) - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\Extensions\abs@avira.com.xpi [2017-04-30]
FF Extension: (No Name) - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-26] (Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-19] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-06-06] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001: @nsroblox.roblox.com/launcher -> C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001: @nsroblox.roblox.com/launcher64 -> C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-11] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541: @nsroblox.roblox.com/launcher -> C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541: @nsroblox.roblox.com/launcher64 -> C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-11] (Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt ... oogle.com/"
CHR Profile: C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default [2017-06-11]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-03-19]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-02-23]
CHR Extension: (Avira Browser Safety) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-06-09]
CHR Extension: (Skype) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-06-11]
CHR Extension: (Background Changer) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbpabmjecillbmlhmkbibekmbnidhopk [2016-08-01]
CHR Extension: (Iomods) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo [2016-05-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-12]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-10]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1119712 2017-04-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [488920 2017-04-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [488920 2017-04-27] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1520680 2017-04-27] (Avira Operations GmbH & Co. KG)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S4 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
S4 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [372272 2016-12-29] (Avira Operations GmbH & Co. KG)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-03-28] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [4122816 2017-05-28] (Microsoft Corporation)
S2 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [241936 2016-01-25] (EasyAntiCheat Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-03] (NVIDIA Corporation)
S2 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [161824 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [163976 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-03-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-03-02] (Avira Operations GmbH & Co. KG)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_f9309145156afb40\nvlddmkm.sys [14456912 2017-05-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-05-03] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [37344 2017-04-29] (Wellbia.com Co., Ltd.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-11 21:06 - 2017-06-11 21:06 - 00022012 _____ C:\Users\Patrik\Desktop\FRST.txt
2017-06-11 21:05 - 2017-06-11 21:06 - 00000000 ____D C:\FRST
2017-06-11 21:05 - 2017-06-11 21:05 - 00000000 ____D C:\Users\Patrik\Desktop\FRST-OlderVersion
2017-06-11 21:04 - 2017-06-11 21:04 - 00112640 _____ (forum.viry.cz) C:\Users\Patrik\Downloads\FRSTLauncher (1).exe
2017-06-11 21:03 - 2017-06-11 21:03 - 00112640 _____ (forum.viry.cz) C:\Users\Patrik\Downloads\FRSTLauncher.exe.6i6shtq.partial
2017-06-11 21:02 - 2017-06-11 21:02 - 00112640 _____ (forum.viry.cz) C:\Users\Patrik\Downloads\Nepotvrzeno 60446.crdownload
2017-06-10 23:01 - 2017-06-10 23:01 - 00112640 _____ (forum.viry.cz) C:\Users\Patrik\Downloads\Nepotvrzeno 896498.crdownload
2017-06-10 22:58 - 2017-06-11 21:05 - 02438656 _____ (Farbar) C:\Users\Patrik\Desktop\FRST64.exe
2017-06-10 22:57 - 2017-06-10 22:57 - 02437120 _____ (Farbar) C:\Users\Patrik\Downloads\FRST64.exe
2017-06-10 14:26 - 2017-04-28 03:38 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-06-10 14:26 - 2017-04-28 03:19 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-06-10 14:26 - 2017-04-28 03:19 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-06-10 14:26 - 2017-04-28 03:18 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-06-10 14:26 - 2017-04-28 03:16 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-06-10 14:26 - 2017-04-28 03:12 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-10 14:26 - 2017-04-28 03:12 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-06-10 14:26 - 2017-04-28 03:11 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-06-10 14:26 - 2017-04-28 03:09 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-06-10 14:26 - 2017-04-28 03:08 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-10 14:26 - 2017-04-28 03:08 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-06-10 14:26 - 2017-04-28 03:08 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-06-10 14:26 - 2017-04-28 03:08 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-06-10 14:26 - 2017-04-28 03:07 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-06-10 14:26 - 2017-04-28 03:07 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-06-10 14:26 - 2017-04-28 03:06 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-10 14:26 - 2017-04-28 03:06 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-06-10 14:26 - 2017-04-28 03:05 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-06-10 14:26 - 2017-04-28 03:04 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-06-10 14:26 - 2017-04-28 03:03 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-06-10 14:26 - 2017-04-28 03:00 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-10 14:26 - 2017-04-28 02:59 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-06-10 14:26 - 2017-04-28 02:59 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-06-10 14:26 - 2017-04-28 02:59 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-06-10 14:26 - 2017-04-28 02:59 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-06-10 14:26 - 2017-04-28 02:59 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-06-10 14:26 - 2017-04-28 02:58 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-06-10 14:26 - 2017-04-28 02:58 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-06-10 14:26 - 2017-04-28 02:57 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-06-10 14:26 - 2017-04-28 02:56 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-06-10 14:26 - 2017-04-28 02:55 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-10 14:26 - 2017-04-28 02:55 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-06-10 14:26 - 2017-04-28 02:53 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-06-10 14:26 - 2017-04-28 02:52 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-06-10 14:26 - 2017-04-28 02:52 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-06-10 14:26 - 2017-04-28 02:52 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-06-10 14:26 - 2017-04-28 02:51 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-06-10 14:26 - 2017-04-28 02:49 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-06-10 14:26 - 2017-04-28 02:49 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-06-10 14:26 - 2017-04-28 02:46 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-06-10 14:26 - 2017-04-28 02:46 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-06-10 14:26 - 2017-04-28 02:46 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-06-10 14:26 - 2017-04-28 02:45 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-06-10 14:26 - 2017-04-28 02:44 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-06-10 14:26 - 2017-04-28 02:44 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-06-10 14:26 - 2017-04-28 02:42 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-06-10 14:26 - 2017-04-28 02:42 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-06-10 14:26 - 2017-04-28 02:42 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-06-10 14:26 - 2017-04-28 02:42 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-06-10 14:26 - 2017-04-28 02:41 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-06-10 14:26 - 2017-04-28 02:40 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-06-10 14:26 - 2017-04-28 02:40 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-06-10 14:26 - 2017-04-28 02:40 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-06-10 14:26 - 2017-04-28 02:40 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-06-10 14:26 - 2017-04-28 02:40 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-06-10 14:26 - 2017-04-28 02:40 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-06-10 14:26 - 2017-04-28 02:39 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-06-10 14:26 - 2017-04-28 02:39 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-06-10 14:26 - 2017-04-28 02:39 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-06-10 14:26 - 2017-04-28 02:38 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-06-10 14:26 - 2017-04-28 02:38 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-06-10 14:26 - 2017-04-28 02:37 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-06-10 14:26 - 2017-04-28 02:37 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-06-10 14:26 - 2017-04-28 02:34 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-06-10 14:26 - 2017-04-28 02:33 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-06-10 14:26 - 2017-04-28 02:26 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-06-10 14:26 - 2017-04-28 02:15 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-06-10 14:26 - 2017-04-28 02:15 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-06-10 14:26 - 2017-04-28 02:14 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-06-10 14:26 - 2017-04-28 02:11 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-06-10 14:26 - 2017-04-28 02:11 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-06-10 14:26 - 2017-04-28 02:11 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-06-10 14:26 - 2017-04-28 02:09 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-06-10 14:26 - 2017-04-28 02:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-06-10 14:26 - 2017-04-28 02:08 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-06-10 14:26 - 2017-04-28 02:08 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-06-10 14:26 - 2017-04-28 02:08 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-06-10 14:26 - 2017-04-28 02:07 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-06-10 14:26 - 2017-04-28 02:06 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-06-10 14:26 - 2017-04-28 02:06 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-06-10 14:26 - 2017-04-28 02:06 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-06-10 14:26 - 2017-04-28 02:06 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-06-10 14:26 - 2017-04-28 02:05 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-06-10 14:26 - 2017-04-28 02:05 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-06-10 14:26 - 2017-04-28 02:04 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-10 14:26 - 2017-04-28 02:04 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-06-10 14:26 - 2017-04-28 02:04 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-06-10 14:26 - 2017-04-28 02:04 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-06-10 14:26 - 2017-04-28 02:03 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-06-10 14:26 - 2017-04-28 02:03 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-06-10 14:26 - 2017-04-28 02:03 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-06-10 14:26 - 2017-04-28 02:03 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-06-10 14:26 - 2017-04-28 02:03 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-06-10 14:26 - 2017-04-28 02:02 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-06-10 14:26 - 2017-04-28 02:01 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-06-10 14:26 - 2017-04-28 02:01 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-06-10 14:26 - 2017-04-28 02:00 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-06-10 14:26 - 2017-04-28 01:59 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-10 14:26 - 2017-04-28 01:59 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-06-10 14:26 - 2017-04-28 01:59 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-06-10 14:26 - 2017-04-28 01:59 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-06-10 14:26 - 2017-04-28 01:59 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-06-10 14:26 - 2017-04-28 01:58 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-10 14:26 - 2017-04-28 01:58 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-06-10 14:26 - 2017-04-28 01:57 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-06-10 14:26 - 2017-04-28 01:57 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-06-10 14:26 - 2017-04-28 01:57 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-10 14:26 - 2017-04-28 01:57 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-06-10 14:26 - 2017-04-28 01:54 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-06-10 14:26 - 2017-04-28 01:54 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-06-10 14:26 - 2017-04-28 01:54 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-06-10 14:26 - 2017-04-28 01:54 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-06-10 14:26 - 2017-04-28 01:52 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-06-10 14:26 - 2017-04-19 09:07 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-06-10 14:26 - 2017-04-19 09:06 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-06-10 14:26 - 2017-04-19 09:04 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-06-10 14:26 - 2017-04-19 09:02 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-06-10 14:26 - 2017-04-19 08:19 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-10 14:26 - 2017-04-19 08:18 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-06-10 14:26 - 2017-04-19 08:16 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-06-10 14:26 - 2017-04-19 08:15 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-06-10 14:26 - 2017-04-19 08:14 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-06-10 14:26 - 2017-04-19 08:13 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-06-10 14:26 - 2017-04-19 08:13 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-06-10 14:26 - 2017-04-19 08:12 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-10 14:26 - 2017-04-19 08:12 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-06-10 14:26 - 2017-04-19 08:12 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-06-10 14:26 - 2017-04-19 08:11 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-06-10 14:26 - 2017-04-19 08:11 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-06-10 14:26 - 2017-04-19 08:10 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-06-10 14:26 - 2017-04-19 08:10 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-06-10 14:26 - 2017-04-19 08:10 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-06-10 14:26 - 2017-04-19 08:08 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-10 14:26 - 2017-04-19 08:08 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-06-10 14:26 - 2017-04-19 08:07 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-06-10 14:26 - 2017-04-19 08:07 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-06-10 14:26 - 2017-04-19 08:06 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-06-10 14:26 - 2017-04-19 08:04 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-06-10 14:26 - 2017-04-19 08:04 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-10 14:26 - 2017-04-19 08:02 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-06-10 14:26 - 2017-04-19 08:01 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-06-10 14:26 - 2017-04-19 07:59 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-06-10 14:26 - 2017-04-19 07:59 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-06-10 14:26 - 2017-04-19 07:58 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-06-10 14:26 - 2017-04-19 07:37 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-06-10 14:26 - 2017-04-19 07:36 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-06-10 14:26 - 2017-04-19 07:35 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-06-10 14:26 - 2017-04-19 07:34 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-06-10 14:26 - 2017-04-19 07:34 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-06-10 14:26 - 2017-04-19 07:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-06-10 14:26 - 2017-04-19 07:32 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-06-10 14:26 - 2017-04-19 07:30 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-06-10 14:26 - 2017-04-19 07:29 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-06-10 14:26 - 2017-04-14 02:35 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-06-10 14:26 - 2017-04-14 02:35 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-06-10 14:26 - 2017-04-14 02:35 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-06-10 14:26 - 2017-04-14 02:33 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-06-10 14:26 - 2017-04-14 02:32 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-06-10 14:26 - 2017-04-14 02:30 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-06-10 14:26 - 2017-04-14 02:25 - 01854880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-06-10 14:26 - 2017-04-14 02:25 - 01452960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-06-10 14:26 - 2017-04-14 01:43 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-06-10 14:26 - 2017-04-14 01:43 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-06-10 14:26 - 2017-04-14 01:41 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-06-10 14:26 - 2017-04-14 01:41 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-06-10 14:26 - 2017-04-14 01:40 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-06-10 14:26 - 2017-04-14 01:39 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-06-10 14:26 - 2017-04-14 01:39 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-06-10 14:26 - 2017-04-14 01:39 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-06-10 14:26 - 2017-04-14 01:39 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-06-10 14:26 - 2017-04-14 01:39 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-06-10 14:26 - 2017-04-14 01:38 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-06-10 14:26 - 2017-04-14 01:38 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-06-10 14:26 - 2017-04-14 01:37 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-06-10 14:26 - 2017-04-14 01:37 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-06-10 14:26 - 2017-04-14 01:37 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-06-10 14:26 - 2017-04-14 01:37 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-06-10 14:26 - 2017-04-14 01:36 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-06-10 14:26 - 2017-04-14 01:36 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-06-10 14:26 - 2017-04-14 01:35 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-06-10 14:26 - 2017-04-14 01:35 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-06-10 14:26 - 2017-04-14 01:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-06-10 14:26 - 2017-04-14 01:34 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-06-10 14:26 - 2017-04-14 01:34 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-06-10 14:26 - 2017-04-14 01:33 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-06-10 14:26 - 2017-04-14 01:33 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-06-10 14:26 - 2017-04-14 01:31 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-06-10 14:26 - 2017-04-14 01:31 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-06-10 14:26 - 2017-04-14 01:28 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-06-10 14:26 - 2017-04-14 01:26 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-06-10 14:26 - 2017-04-14 01:25 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-06-10 14:26 - 2017-04-14 01:24 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-06-10 14:26 - 2017-04-14 01:21 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-06-10 14:26 - 2017-04-14 01:21 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-06-10 14:26 - 2017-04-14 01:18 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-06-10 14:26 - 2017-04-14 01:18 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-06-10 14:26 - 2017-04-14 01:15 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-06-10 14:26 - 2017-04-14 01:15 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-06-10 14:26 - 2017-04-14 01:13 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-06-10 14:26 - 2017-04-14 01:13 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-06-10 14:26 - 2017-04-14 01:08 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-06-10 14:26 - 2017-04-14 01:06 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-06-10 14:26 - 2017-04-14 01:04 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-06-10 14:26 - 2017-04-14 01:01 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-06-10 14:26 - 2017-04-01 03:05 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-10 14:26 - 2017-04-01 03:04 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-06-10 14:26 - 2017-04-01 03:04 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-06-10 14:26 - 2017-04-01 03:04 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-10 14:26 - 2017-04-01 02:57 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-06-10 14:26 - 2017-04-01 02:57 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-06-10 14:26 - 2017-04-01 02:52 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-06-10 14:26 - 2017-04-01 02:51 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-06-10 14:26 - 2017-04-01 02:29 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-06-10 14:26 - 2017-04-01 02:28 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-06-10 14:26 - 2017-04-01 02:11 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-06-10 14:26 - 2017-04-01 02:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-06-10 14:26 - 2017-04-01 02:05 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-10 14:26 - 2017-04-01 02:04 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-06-10 14:26 - 2017-04-01 02:04 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-10 14:26 - 2017-04-01 02:02 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-06-10 14:26 - 2017-04-01 02:01 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-06-10 14:26 - 2017-04-01 01:58 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-06-10 14:26 - 2017-04-01 01:58 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-06-10 14:26 - 2017-04-01 01:56 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-06-10 14:26 - 2017-04-01 01:55 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-06-10 14:26 - 2017-04-01 01:55 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-06-10 14:26 - 2017-04-01 01:52 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-06-10 14:26 - 2017-04-01 01:52 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-06-10 14:26 - 2017-04-01 01:50 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-06-10 14:26 - 2017-04-01 01:50 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-06-10 14:26 - 2017-04-01 01:45 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-06-10 14:26 - 2017-04-01 01:44 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-06-10 14:26 - 2017-03-31 23:00 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-06-10 12:15 - 2017-06-10 12:15 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\6CF42988.sys
2017-06-10 12:12 - 2017-06-10 12:15 - 00000000 ____D C:\AdwCleaner
2017-06-10 12:11 - 2017-06-10 12:10 - 04110280 _____ C:\Users\Patrik\Desktop\adwcleaner_6.047.exe
2017-06-10 12:10 - 2017-06-10 12:10 - 04110280 _____ C:\Users\Patrik\Downloads\adwcleaner_6.047.exe
2017-06-10 10:41 - 2017-06-10 10:41 - 00000000 ____D C:\Users\Patrik\AppData\Local\DBG
2017-06-10 10:38 - 2017-06-10 10:38 - 00000000 ____D C:\Windows.old
2017-06-10 10:37 - 2017-06-10 10:37 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-06-10 10:37 - 2017-06-10 09:42 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-06-10 10:34 - 2017-06-10 10:34 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-06-10 10:31 - 2017-06-10 10:31 - 00000020 ___SH C:\Users\Patrik\ntuser.ini
2017-06-10 10:12 - 2017-06-10 10:14 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-06-10 10:12 - 2017-06-10 10:14 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-06-10 10:05 - 2017-06-11 14:36 - 00004214 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{65B13BB1-8616-4BE7-8C4B-311F8B95D22F}
2017-06-10 10:05 - 2017-06-10 17:28 - 01756348 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-10 10:05 - 2017-06-10 17:24 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-10 10:05 - 2017-06-10 10:44 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-06-10 10:05 - 2017-06-10 10:38 - 00003292 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-06-10 10:05 - 2017-06-10 10:05 - 00003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-06-10 10:05 - 2017-06-10 10:05 - 00003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00003174 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-06-10 10:05 - 2017-06-10 10:05 - 00002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002968 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-06-10 10:05 - 2017-06-10 10:05 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2017-06-10 10:05 - 2017-06-10 10:05 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2017-06-10 09:55 - 2017-06-10 09:55 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-06-10 09:53 - 2017-06-10 09:53 - 00000000 ____D C:\ProgramData\USOShared
2017-06-10 09:48 - 2017-06-10 09:56 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-06-10 09:46 - 2017-06-10 17:20 - 00000000 ____D C:\Users\Patrik
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Šablony
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Soubory cookie
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Poslední
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Okolní tiskárny
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Okolní síť
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Nabídka Start
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Dokumenty
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Documents\Obrázky
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Documents\Hudba
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Documents\Filmy
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Data aplikací
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\AppData\Local\Data aplikací
2017-06-10 09:45 - 2017-05-01 22:51 - 06437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 02479552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 00548800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-06-10 09:45 - 2017-04-25 23:11 - 07944687 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-06-10 09:45 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-06-10 09:44 - 2017-06-11 12:25 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-10 09:44 - 2017-06-10 09:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-06-10 09:44 - 2017-06-10 09:49 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-06-10 09:44 - 2017-06-10 09:49 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-06-10 09:44 - 2017-05-01 22:52 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-06-10 09:42 - 2017-06-11 21:02 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-10 09:42 - 2017-06-10 17:25 - 00252360 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-10 08:47 - 2017-06-10 08:47 - 00111634 _____ C:\Users\Patrik\Documents\cc_20170610_084728.reg
2017-06-10 06:35 - 2017-06-10 06:35 - 00000000 ____D C:\Users\Patrik\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable
2017-06-10 06:35 - 2017-06-10 06:35 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Hard Disk Sentinel
2017-06-10 06:34 - 2017-06-10 06:34 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\WinRAR
2017-06-10 06:31 - 2017-06-10 09:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-06-10 06:31 - 2017-06-10 06:31 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-06-10 06:31 - 2017-06-10 06:31 - 00000000 ____D C:\Program Files\CCleaner
2017-06-10 06:29 - 2017-06-10 06:30 - 09551280 _____ (Piriform Ltd) C:\Users\Patrik\Downloads\ccsetup530.exe
2017-06-10 06:28 - 2017-06-10 06:29 - 00000000 ____D C:\Users\Patrik\AppData\Local\NVIDIA
2017-06-10 06:28 - 2017-05-03 22:16 - 01893312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-06-10 06:28 - 2017-05-03 22:16 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-06-10 06:28 - 2017-05-03 22:16 - 01477056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-06-10 06:28 - 2017-05-03 22:16 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-06-10 06:28 - 2017-05-03 22:16 - 00121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-06-10 06:27 - 2017-05-03 21:28 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-06-10 00:02 - 2017-06-10 00:02 - 00000000 ____D C:\Users\Patrik\AppData\LocalLow\Adobe
2017-06-09 23:58 - 2017-06-09 23:58 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-06-09 23:58 - 2017-06-09 23:58 - 00002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-06-09 23:56 - 2017-06-09 23:56 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-06-09 23:55 - 2017-06-10 09:56 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-06-09 23:55 - 2017-06-10 09:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-06-09 23:55 - 2017-06-10 00:04 - 00000000 ____D C:\ProgramData\Adobe
2017-06-09 23:55 - 2017-06-10 00:03 - 00000000 ____D C:\Users\Patrik\AppData\Local\Adobe
2017-06-09 23:55 - 2017-06-09 23:55 - 02377944 _____ C:\Users\Patrik\Downloads\winrar-x64-540cz.exe
2017-06-09 23:55 - 2017-06-09 23:55 - 00000000 ____D C:\Program Files\WinRAR
2017-06-09 23:44 - 2017-06-09 23:45 - 00000000 ____D C:\rsit
2017-06-09 23:44 - 2017-06-09 23:45 - 00000000 ____D C:\Program Files\trend micro
2017-06-09 23:44 - 2017-06-09 23:44 - 01329152 _____ C:\Users\Patrik\Downloads\RSITx64.exe
2017-06-09 23:42 - 2017-06-09 23:45 - 51503116 _____ C:\Users\Patrik\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable.rar
2017-06-09 23:33 - 2017-06-09 23:34 - 00000000 ____D C:\Users\Patrik\Downloads\produkey-x64
2017-06-09 23:32 - 2017-06-09 23:32 - 00080011 _____ C:\Users\Patrik\Downloads\produkey-x64.zip
2017-06-09 23:32 - 2017-06-09 23:32 - 00001753 _____ C:\Users\Patrik\Downloads\produkey_czech.zip
2017-06-09 19:09 - 2017-06-10 10:32 - 00000000 ___DC C:\WINDOWS\Panther
2017-06-06 03:50 - 2017-06-06 03:50 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-05-31 20:48 - 2017-05-31 20:48 - 00000075 _____ C:\Users\Patrik\Desktop\My Items.url
2017-05-19 18:05 - 2017-05-19 18:05 - 35397528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 28632152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 00969624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 00920664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 00618584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 00507984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 01996696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438205.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 01609232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 01598360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438205.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 01062808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 00999832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 00829848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 00659864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 00226712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-05-19 18:03 - 2017-05-19 18:03 - 00054680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-05-19 18:02 - 2017-05-19 18:02 - 40210512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-05-19 18:02 - 2017-05-19 18:02 - 35290192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-05-19 18:02 - 2017-05-19 18:02 - 03800984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-05-19 18:02 - 2017-05-19 18:02 - 03256408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 11161992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 10648512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 09102480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 08891160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00791792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00703880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00633040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00626384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00591672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 11129704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 09335520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 04136736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 03647864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 01298696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 01013344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-05-19 14:22 - 2017-05-19 14:22 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-05-19 14:22 - 2017-05-19 14:22 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-05-19 14:22 - 2017-05-19 14:22 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-05-12 17:03 - 2017-05-12 17:04 - 13699806 _____ C:\Users\Patrik\Downloads\OSCAR-Editor-X7.rar
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-11 15:15 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-06-11 03:56 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-06-10 18:46 - 2016-01-22 17:47 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Skype
2017-06-10 17:44 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-10 17:41 - 2016-01-22 17:14 - 00000000 ____D C:\Program Files (x86)\Steam
2017-06-10 17:40 - 2016-01-22 17:20 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-10 17:40 - 2016-01-22 17:20 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-06-10 17:39 - 2017-03-04 15:20 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Spotify
2017-06-10 17:39 - 2017-02-07 21:38 - 00000000 ___RD C:\Users\Patrik\iCloudDrive
2017-06-10 17:38 - 2016-01-22 17:02 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-10 17:28 - 2017-03-20 06:39 - 00749980 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-10 17:28 - 2017-03-20 06:39 - 00153190 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-10 17:24 - 2017-02-08 18:44 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-06-10 17:23 - 2017-03-18 13:40 - 01835008 _____ C:\WINDOWS\system32\config\BBI
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-06-10 17:22 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-06-10 14:47 - 2017-03-04 15:21 - 00000000 ____D C:\Users\Patrik\AppData\Local\Spotify
2017-06-10 14:29 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-10 12:15 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-06-10 11:43 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-10 10:49 - 2016-01-22 17:02 - 00000000 ____D C:\Users\Patrik\AppData\Local\Packages
2017-06-10 10:41 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-06-10 10:38 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-06-10 10:38 - 2016-01-22 17:04 - 00002439 _____ C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-10 10:38 - 2016-01-22 17:04 - 00000000 ___RD C:\Users\Patrik\OneDrive
2017-06-10 10:34 - 2016-01-22 17:28 - 00000000 ____D C:\Users\Patrik\AppData\Local\NVIDIA Corporation
2017-06-10 10:33 - 2016-09-09 17:41 - 00000000 ____D C:\Users\Patrik\AppData\Local\ConnectedDevicesPlatform
2017-06-10 10:32 - 2016-05-21 14:11 - 00002336 _____ C:\Users\Patrik\Desktop\Google Chrome.lnk
2017-06-10 10:15 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows NT
2017-06-10 10:14 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-06-10 10:14 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-06-10 10:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-06-10 10:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\HoloShell
2017-06-10 10:05 - 2016-09-09 17:13 - 00023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-06-10 10:04 - 2017-03-18 23:03 - 00000000 __RSD C:\WINDOWS\Media
2017-06-10 10:04 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-06-10 10:02 - 2017-02-07 21:39 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iCloud
2017-06-10 09:56 - 2017-04-25 20:05 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-10 09:56 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-06-10 09:56 - 2017-02-08 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-06-10 09:56 - 2017-02-08 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-06-10 09:56 - 2016-10-15 16:36 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2017-06-10 09:56 - 2016-10-06 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Collage Maker
2017-06-10 09:56 - 2016-10-04 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2017-06-10 09:56 - 2016-06-10 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2017-06-10 09:56 - 2016-06-10 22:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-06-10 09:56 - 2016-05-13 21:55 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2017-06-10 09:56 - 2016-04-16 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-06-10 09:56 - 2016-03-19 20:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-06-10 09:56 - 2016-03-16 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2017-06-10 09:56 - 2016-03-16 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-06-10 09:56 - 2016-02-26 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Mouse
2017-06-10 09:56 - 2016-02-05 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships
2017-06-10 09:56 - 2016-01-22 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2017-06-10 09:56 - 2016-01-22 17:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-06-10 09:56 - 2016-01-22 17:19 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-06-10 09:56 - 2016-01-22 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-06-10 09:53 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-06-10 09:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-06-10 09:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-10 09:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-06-10 09:50 - 2016-10-15 16:35 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2017-06-10 09:49 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-06-10 09:49 - 2017-03-09 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-06-10 09:49 - 2017-02-23 22:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-06-10 09:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-06-10 09:45 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-06-10 09:16 - 2016-01-22 16:54 - 00008192 __RSH C:\BOOTSECT.BAK
2017-06-10 09:12 - 2017-03-20 07:14 - 00000000 ___HD C:\$WINDOWS.~BT
2017-06-10 08:45 - 2016-08-02 20:30 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\TS3Client
2017-06-10 08:43 - 2017-02-08 18:38 - 00000000 ____D C:\Users\Patrik\AppData\Local\CrashDumps
2017-06-10 06:33 - 2016-10-30 18:56 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Seznam.cz
2017-06-10 06:32 - 2016-10-30 18:57 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2017-06-10 00:02 - 2016-01-22 17:02 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Adobe
2017-06-09 23:53 - 2016-01-22 17:20 - 00000000 ____D C:\Users\Patrik\AppData\Local\Google
2017-06-09 23:53 - 2016-01-22 17:20 - 00000000 ____D C:\Program Files (x86)\Google
2017-06-09 23:36 - 2016-04-16 16:02 - 00000000 ____D C:\Program Files (x86)\Avira
2017-06-06 03:47 - 2016-03-22 00:01 - 00000000 ____D C:\Program Files\Microsoft Office
2017-05-31 20:41 - 2016-01-22 17:07 - 00000000 ____D C:\Users\Patrik\AppData\Local\ElevatedDiagnostics
2017-05-23 17:14 - 2016-01-23 22:11 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 17:08 - 2016-01-23 22:11 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories =======
2016-07-31 14:44 - 2016-07-31 14:44 - 0000016 _____ () C:\ProgramData\mntemp
Some files in TEMP:
====================
2016-02-06 00:10 - 2016-02-06 00:10 - 0000512 _____ () C:\Users\Dave\AppData\Local\Temp\3d51890c7b88e4feeeed777176b46429.dll
2016-04-29 10:30 - 2016-04-29 10:30 - 0000000 ____D () C:\Users\Dave\AppData\Local\Temp\avgnt.exe
2016-02-06 00:10 - 2016-02-06 00:10 - 0000056 _____ () C:\Users\Dave\AppData\Local\Temp\e91037ada5acc9f2aabc839a93a9f793.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-06-10 09:42
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:930.58 GB) (Free:563.48 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Available physical RAM: 5511.88 MB
Total physical RAM: 8168.26 MB
Percentage of memory in use: 32%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 4EE14EE0)
Partition 1: (Active) - (Size=930.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Patrik\Desktop" je 2920 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-06-2017
Ran by Patrik (administrator) on DESKTOP-5PS84ML (11-06-2017 21:06:14)
Running from C:\Users\Patrik\Desktop
Loaded Profiles: Patrik & (Available Profiles: Patrik)
Platform: Windows 10 Pro Version 1703 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(© 2015 Microsoft Corporation) C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avcenter.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(forum.viry.cz) C:\Users\Patrik\Desktop\FRST-OlderVersion\FRSTLauncher (1).exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61896 2016-12-29] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [912768 2017-04-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [BingSvc] => C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-01-22] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [Spotify Web Helper] => C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-06-10] (Spotify Ltd)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [Spotify] => C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe [6949488 2017-06-10] (Spotify Ltd)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27793880 2017-04-11] (Skype Technologies S.A.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [BingSvc] => C:\Users\Patrik\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-01-22] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [Spotify Web Helper] => C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-06-10] (Spotify Ltd)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [Spotify] => C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe [6949488 2017-06-10] (Spotify Ltd)
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27793880 2017-04-11] (Skype Technologies S.A.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a2a8916e-9d1a-4bbf-b172-0f7ec18d1f42}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://windows.microsoft.com/cs-cz/hotmail/home?ocid=iehp
HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://windows.microsoft.com/cs-cz/hotmail/home?ocid=iehp
SearchScopes: HKU\S-1-5-21-4140957025-1088647250-3290698323-1001 -> {57999D54-9BA4-41C5-B3BB-9CE50B52082D} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541 -> {57999D54-9BA4-41C5-B3BB-9CE50B52082D} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-05-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-19] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-06-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-19] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-26] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default [2017-06-11]
FF Extension: (Avira Browser Safety) - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\Extensions\abs@avira.com.xpi [2017-04-30]
FF Extension: (No Name) - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-26] (Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-19] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-06-06] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001: @nsroblox.roblox.com/launcher -> C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001: @nsroblox.roblox.com/launcher64 -> C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-11] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541: @nsroblox.roblox.com/launcher -> C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541: @nsroblox.roblox.com/launcher64 -> C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-4140957025-1088647250-3290698323-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06102017174649541: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-11] (Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt ... oogle.com/"
CHR Profile: C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default [2017-06-11]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-03-19]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-02-23]
CHR Extension: (Avira Browser Safety) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-06-09]
CHR Extension: (Skype) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-06-11]
CHR Extension: (Background Changer) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbpabmjecillbmlhmkbibekmbnidhopk [2016-08-01]
CHR Extension: (Iomods) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo [2016-05-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-12]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-10]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1119712 2017-04-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [488920 2017-04-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [488920 2017-04-27] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1520680 2017-04-27] (Avira Operations GmbH & Co. KG)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S4 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
S4 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [372272 2016-12-29] (Avira Operations GmbH & Co. KG)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-03-28] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [4122816 2017-05-28] (Microsoft Corporation)
S2 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [241936 2016-01-25] (EasyAntiCheat Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-03] (NVIDIA Corporation)
S2 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [161824 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [163976 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-03-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-03-02] (Avira Operations GmbH & Co. KG)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_f9309145156afb40\nvlddmkm.sys [14456912 2017-05-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-05-03] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [37344 2017-04-29] (Wellbia.com Co., Ltd.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-11 21:06 - 2017-06-11 21:06 - 00022012 _____ C:\Users\Patrik\Desktop\FRST.txt
2017-06-11 21:05 - 2017-06-11 21:06 - 00000000 ____D C:\FRST
2017-06-11 21:05 - 2017-06-11 21:05 - 00000000 ____D C:\Users\Patrik\Desktop\FRST-OlderVersion
2017-06-11 21:04 - 2017-06-11 21:04 - 00112640 _____ (forum.viry.cz) C:\Users\Patrik\Downloads\FRSTLauncher (1).exe
2017-06-11 21:03 - 2017-06-11 21:03 - 00112640 _____ (forum.viry.cz) C:\Users\Patrik\Downloads\FRSTLauncher.exe.6i6shtq.partial
2017-06-11 21:02 - 2017-06-11 21:02 - 00112640 _____ (forum.viry.cz) C:\Users\Patrik\Downloads\Nepotvrzeno 60446.crdownload
2017-06-10 23:01 - 2017-06-10 23:01 - 00112640 _____ (forum.viry.cz) C:\Users\Patrik\Downloads\Nepotvrzeno 896498.crdownload
2017-06-10 22:58 - 2017-06-11 21:05 - 02438656 _____ (Farbar) C:\Users\Patrik\Desktop\FRST64.exe
2017-06-10 22:57 - 2017-06-10 22:57 - 02437120 _____ (Farbar) C:\Users\Patrik\Downloads\FRST64.exe
2017-06-10 14:26 - 2017-04-28 03:38 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-06-10 14:26 - 2017-04-28 03:19 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-06-10 14:26 - 2017-04-28 03:19 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-06-10 14:26 - 2017-04-28 03:18 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-06-10 14:26 - 2017-04-28 03:16 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-06-10 14:26 - 2017-04-28 03:12 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-10 14:26 - 2017-04-28 03:12 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-06-10 14:26 - 2017-04-28 03:11 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-06-10 14:26 - 2017-04-28 03:09 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-06-10 14:26 - 2017-04-28 03:08 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-10 14:26 - 2017-04-28 03:08 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-06-10 14:26 - 2017-04-28 03:08 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-06-10 14:26 - 2017-04-28 03:08 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-06-10 14:26 - 2017-04-28 03:07 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-06-10 14:26 - 2017-04-28 03:07 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-06-10 14:26 - 2017-04-28 03:06 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-10 14:26 - 2017-04-28 03:06 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-06-10 14:26 - 2017-04-28 03:05 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-06-10 14:26 - 2017-04-28 03:04 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-06-10 14:26 - 2017-04-28 03:03 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-06-10 14:26 - 2017-04-28 03:00 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-10 14:26 - 2017-04-28 02:59 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-06-10 14:26 - 2017-04-28 02:59 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-06-10 14:26 - 2017-04-28 02:59 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-06-10 14:26 - 2017-04-28 02:59 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-06-10 14:26 - 2017-04-28 02:59 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-06-10 14:26 - 2017-04-28 02:58 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-06-10 14:26 - 2017-04-28 02:58 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-06-10 14:26 - 2017-04-28 02:57 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-06-10 14:26 - 2017-04-28 02:56 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-06-10 14:26 - 2017-04-28 02:55 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-10 14:26 - 2017-04-28 02:55 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-06-10 14:26 - 2017-04-28 02:53 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-06-10 14:26 - 2017-04-28 02:52 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-06-10 14:26 - 2017-04-28 02:52 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-06-10 14:26 - 2017-04-28 02:52 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-06-10 14:26 - 2017-04-28 02:51 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-06-10 14:26 - 2017-04-28 02:49 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-06-10 14:26 - 2017-04-28 02:49 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-06-10 14:26 - 2017-04-28 02:46 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-06-10 14:26 - 2017-04-28 02:46 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-06-10 14:26 - 2017-04-28 02:46 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-06-10 14:26 - 2017-04-28 02:45 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-06-10 14:26 - 2017-04-28 02:44 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-06-10 14:26 - 2017-04-28 02:44 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-06-10 14:26 - 2017-04-28 02:42 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-06-10 14:26 - 2017-04-28 02:42 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-06-10 14:26 - 2017-04-28 02:42 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-06-10 14:26 - 2017-04-28 02:42 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-06-10 14:26 - 2017-04-28 02:41 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-06-10 14:26 - 2017-04-28 02:40 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-06-10 14:26 - 2017-04-28 02:40 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-06-10 14:26 - 2017-04-28 02:40 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-06-10 14:26 - 2017-04-28 02:40 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-06-10 14:26 - 2017-04-28 02:40 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-06-10 14:26 - 2017-04-28 02:40 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-06-10 14:26 - 2017-04-28 02:39 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-06-10 14:26 - 2017-04-28 02:39 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-06-10 14:26 - 2017-04-28 02:39 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-06-10 14:26 - 2017-04-28 02:38 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-06-10 14:26 - 2017-04-28 02:38 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-06-10 14:26 - 2017-04-28 02:37 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-06-10 14:26 - 2017-04-28 02:37 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-06-10 14:26 - 2017-04-28 02:34 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-06-10 14:26 - 2017-04-28 02:33 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-06-10 14:26 - 2017-04-28 02:26 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-06-10 14:26 - 2017-04-28 02:15 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-06-10 14:26 - 2017-04-28 02:15 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-06-10 14:26 - 2017-04-28 02:14 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-06-10 14:26 - 2017-04-28 02:11 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-06-10 14:26 - 2017-04-28 02:11 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-06-10 14:26 - 2017-04-28 02:11 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-06-10 14:26 - 2017-04-28 02:09 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-06-10 14:26 - 2017-04-28 02:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-06-10 14:26 - 2017-04-28 02:08 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-06-10 14:26 - 2017-04-28 02:08 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-06-10 14:26 - 2017-04-28 02:08 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-06-10 14:26 - 2017-04-28 02:07 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-06-10 14:26 - 2017-04-28 02:06 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-06-10 14:26 - 2017-04-28 02:06 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-06-10 14:26 - 2017-04-28 02:06 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-06-10 14:26 - 2017-04-28 02:06 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-06-10 14:26 - 2017-04-28 02:05 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-06-10 14:26 - 2017-04-28 02:05 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-06-10 14:26 - 2017-04-28 02:04 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-10 14:26 - 2017-04-28 02:04 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-06-10 14:26 - 2017-04-28 02:04 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-06-10 14:26 - 2017-04-28 02:04 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-06-10 14:26 - 2017-04-28 02:03 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-06-10 14:26 - 2017-04-28 02:03 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-06-10 14:26 - 2017-04-28 02:03 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-06-10 14:26 - 2017-04-28 02:03 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-06-10 14:26 - 2017-04-28 02:03 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-06-10 14:26 - 2017-04-28 02:02 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-06-10 14:26 - 2017-04-28 02:01 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-06-10 14:26 - 2017-04-28 02:01 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-06-10 14:26 - 2017-04-28 02:00 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-06-10 14:26 - 2017-04-28 01:59 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-10 14:26 - 2017-04-28 01:59 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-06-10 14:26 - 2017-04-28 01:59 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-06-10 14:26 - 2017-04-28 01:59 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-06-10 14:26 - 2017-04-28 01:59 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-06-10 14:26 - 2017-04-28 01:58 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-10 14:26 - 2017-04-28 01:58 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-06-10 14:26 - 2017-04-28 01:57 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-06-10 14:26 - 2017-04-28 01:57 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-06-10 14:26 - 2017-04-28 01:57 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-10 14:26 - 2017-04-28 01:57 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-06-10 14:26 - 2017-04-28 01:54 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-06-10 14:26 - 2017-04-28 01:54 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-06-10 14:26 - 2017-04-28 01:54 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-06-10 14:26 - 2017-04-28 01:54 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-06-10 14:26 - 2017-04-28 01:52 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-06-10 14:26 - 2017-04-19 09:07 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-06-10 14:26 - 2017-04-19 09:06 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-06-10 14:26 - 2017-04-19 09:04 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-06-10 14:26 - 2017-04-19 09:02 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-06-10 14:26 - 2017-04-19 08:19 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-10 14:26 - 2017-04-19 08:18 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-06-10 14:26 - 2017-04-19 08:16 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-06-10 14:26 - 2017-04-19 08:15 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-06-10 14:26 - 2017-04-19 08:14 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-06-10 14:26 - 2017-04-19 08:13 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-06-10 14:26 - 2017-04-19 08:13 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-06-10 14:26 - 2017-04-19 08:12 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-10 14:26 - 2017-04-19 08:12 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-06-10 14:26 - 2017-04-19 08:12 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-06-10 14:26 - 2017-04-19 08:11 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-06-10 14:26 - 2017-04-19 08:11 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-06-10 14:26 - 2017-04-19 08:10 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-06-10 14:26 - 2017-04-19 08:10 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-06-10 14:26 - 2017-04-19 08:10 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-06-10 14:26 - 2017-04-19 08:08 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-10 14:26 - 2017-04-19 08:08 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-06-10 14:26 - 2017-04-19 08:07 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-06-10 14:26 - 2017-04-19 08:07 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-06-10 14:26 - 2017-04-19 08:06 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-06-10 14:26 - 2017-04-19 08:04 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-06-10 14:26 - 2017-04-19 08:04 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-10 14:26 - 2017-04-19 08:02 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-06-10 14:26 - 2017-04-19 08:01 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-06-10 14:26 - 2017-04-19 07:59 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-06-10 14:26 - 2017-04-19 07:59 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-06-10 14:26 - 2017-04-19 07:58 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-06-10 14:26 - 2017-04-19 07:37 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-06-10 14:26 - 2017-04-19 07:36 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-06-10 14:26 - 2017-04-19 07:35 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-06-10 14:26 - 2017-04-19 07:34 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-06-10 14:26 - 2017-04-19 07:34 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-06-10 14:26 - 2017-04-19 07:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-06-10 14:26 - 2017-04-19 07:32 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-06-10 14:26 - 2017-04-19 07:30 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-06-10 14:26 - 2017-04-19 07:29 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-06-10 14:26 - 2017-04-14 02:35 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-06-10 14:26 - 2017-04-14 02:35 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-06-10 14:26 - 2017-04-14 02:35 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-06-10 14:26 - 2017-04-14 02:33 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-06-10 14:26 - 2017-04-14 02:32 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-06-10 14:26 - 2017-04-14 02:30 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-06-10 14:26 - 2017-04-14 02:25 - 01854880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-06-10 14:26 - 2017-04-14 02:25 - 01452960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-06-10 14:26 - 2017-04-14 01:43 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-06-10 14:26 - 2017-04-14 01:43 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-06-10 14:26 - 2017-04-14 01:41 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-06-10 14:26 - 2017-04-14 01:41 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-06-10 14:26 - 2017-04-14 01:40 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-06-10 14:26 - 2017-04-14 01:39 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-06-10 14:26 - 2017-04-14 01:39 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-06-10 14:26 - 2017-04-14 01:39 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-06-10 14:26 - 2017-04-14 01:39 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-06-10 14:26 - 2017-04-14 01:39 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-06-10 14:26 - 2017-04-14 01:38 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-06-10 14:26 - 2017-04-14 01:38 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-06-10 14:26 - 2017-04-14 01:37 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-06-10 14:26 - 2017-04-14 01:37 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-06-10 14:26 - 2017-04-14 01:37 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-06-10 14:26 - 2017-04-14 01:37 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-06-10 14:26 - 2017-04-14 01:36 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-06-10 14:26 - 2017-04-14 01:36 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-06-10 14:26 - 2017-04-14 01:35 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-06-10 14:26 - 2017-04-14 01:35 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-06-10 14:26 - 2017-04-14 01:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-06-10 14:26 - 2017-04-14 01:34 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-06-10 14:26 - 2017-04-14 01:34 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-06-10 14:26 - 2017-04-14 01:33 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-06-10 14:26 - 2017-04-14 01:33 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-06-10 14:26 - 2017-04-14 01:31 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-06-10 14:26 - 2017-04-14 01:31 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-06-10 14:26 - 2017-04-14 01:29 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-06-10 14:26 - 2017-04-14 01:28 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-06-10 14:26 - 2017-04-14 01:26 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-06-10 14:26 - 2017-04-14 01:25 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-06-10 14:26 - 2017-04-14 01:24 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-06-10 14:26 - 2017-04-14 01:21 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-06-10 14:26 - 2017-04-14 01:21 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-06-10 14:26 - 2017-04-14 01:18 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-06-10 14:26 - 2017-04-14 01:18 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-06-10 14:26 - 2017-04-14 01:15 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-06-10 14:26 - 2017-04-14 01:15 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-06-10 14:26 - 2017-04-14 01:13 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-06-10 14:26 - 2017-04-14 01:13 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-06-10 14:26 - 2017-04-14 01:08 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-06-10 14:26 - 2017-04-14 01:06 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-06-10 14:26 - 2017-04-14 01:04 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-06-10 14:26 - 2017-04-14 01:01 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-06-10 14:26 - 2017-04-01 03:05 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-10 14:26 - 2017-04-01 03:04 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-06-10 14:26 - 2017-04-01 03:04 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-06-10 14:26 - 2017-04-01 03:04 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-10 14:26 - 2017-04-01 02:57 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-06-10 14:26 - 2017-04-01 02:57 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-06-10 14:26 - 2017-04-01 02:52 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-06-10 14:26 - 2017-04-01 02:51 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-06-10 14:26 - 2017-04-01 02:29 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-06-10 14:26 - 2017-04-01 02:28 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-06-10 14:26 - 2017-04-01 02:11 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-06-10 14:26 - 2017-04-01 02:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-06-10 14:26 - 2017-04-01 02:05 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-10 14:26 - 2017-04-01 02:04 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-06-10 14:26 - 2017-04-01 02:04 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-10 14:26 - 2017-04-01 02:02 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-06-10 14:26 - 2017-04-01 02:01 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-06-10 14:26 - 2017-04-01 01:58 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-06-10 14:26 - 2017-04-01 01:58 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-06-10 14:26 - 2017-04-01 01:56 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-06-10 14:26 - 2017-04-01 01:55 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-06-10 14:26 - 2017-04-01 01:55 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-06-10 14:26 - 2017-04-01 01:52 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-06-10 14:26 - 2017-04-01 01:52 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-06-10 14:26 - 2017-04-01 01:50 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-06-10 14:26 - 2017-04-01 01:50 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-06-10 14:26 - 2017-04-01 01:45 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-06-10 14:26 - 2017-04-01 01:44 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-06-10 14:26 - 2017-03-31 23:00 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-06-10 12:15 - 2017-06-10 12:15 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\6CF42988.sys
2017-06-10 12:12 - 2017-06-10 12:15 - 00000000 ____D C:\AdwCleaner
2017-06-10 12:11 - 2017-06-10 12:10 - 04110280 _____ C:\Users\Patrik\Desktop\adwcleaner_6.047.exe
2017-06-10 12:10 - 2017-06-10 12:10 - 04110280 _____ C:\Users\Patrik\Downloads\adwcleaner_6.047.exe
2017-06-10 10:41 - 2017-06-10 10:41 - 00000000 ____D C:\Users\Patrik\AppData\Local\DBG
2017-06-10 10:38 - 2017-06-10 10:38 - 00000000 ____D C:\Windows.old
2017-06-10 10:37 - 2017-06-10 10:37 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-06-10 10:37 - 2017-06-10 09:42 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-06-10 10:34 - 2017-06-10 10:34 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-06-10 10:31 - 2017-06-10 10:31 - 00000020 ___SH C:\Users\Patrik\ntuser.ini
2017-06-10 10:12 - 2017-06-10 10:14 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-06-10 10:12 - 2017-06-10 10:14 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-06-10 10:05 - 2017-06-11 14:36 - 00004214 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{65B13BB1-8616-4BE7-8C4B-311F8B95D22F}
2017-06-10 10:05 - 2017-06-10 17:28 - 01756348 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-10 10:05 - 2017-06-10 17:24 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-10 10:05 - 2017-06-10 10:44 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-06-10 10:05 - 2017-06-10 10:38 - 00003292 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-06-10 10:05 - 2017-06-10 10:05 - 00003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-06-10 10:05 - 2017-06-10 10:05 - 00003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00003174 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-06-10 10:05 - 2017-06-10 10:05 - 00002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002968 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-10 10:05 - 2017-06-10 10:05 - 00002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-06-10 10:05 - 2017-06-10 10:05 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2017-06-10 10:05 - 2017-06-10 10:05 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2017-06-10 09:55 - 2017-06-10 09:55 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-06-10 09:53 - 2017-06-10 09:53 - 00000000 ____D C:\ProgramData\USOShared
2017-06-10 09:48 - 2017-06-10 09:56 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-06-10 09:46 - 2017-06-10 17:20 - 00000000 ____D C:\Users\Patrik
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Šablony
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Soubory cookie
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Poslední
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Okolní tiskárny
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Okolní síť
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Nabídka Start
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Dokumenty
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Documents\Obrázky
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Documents\Hudba
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Documents\Filmy
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\Data aplikací
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-06-10 09:46 - 2017-06-10 09:46 - 00000000 _SHDL C:\Users\Patrik\AppData\Local\Data aplikací
2017-06-10 09:45 - 2017-05-01 22:51 - 06437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 02479552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 00548800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-06-10 09:45 - 2017-05-01 22:51 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-06-10 09:45 - 2017-04-25 23:11 - 07944687 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-06-10 09:45 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-06-10 09:44 - 2017-06-11 12:25 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-10 09:44 - 2017-06-10 09:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-06-10 09:44 - 2017-06-10 09:49 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-06-10 09:44 - 2017-06-10 09:49 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-06-10 09:44 - 2017-05-01 22:52 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-06-10 09:42 - 2017-06-11 21:02 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-10 09:42 - 2017-06-10 17:25 - 00252360 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-10 08:47 - 2017-06-10 08:47 - 00111634 _____ C:\Users\Patrik\Documents\cc_20170610_084728.reg
2017-06-10 06:35 - 2017-06-10 06:35 - 00000000 ____D C:\Users\Patrik\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable
2017-06-10 06:35 - 2017-06-10 06:35 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Hard Disk Sentinel
2017-06-10 06:34 - 2017-06-10 06:34 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\WinRAR
2017-06-10 06:31 - 2017-06-10 09:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-06-10 06:31 - 2017-06-10 06:31 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-06-10 06:31 - 2017-06-10 06:31 - 00000000 ____D C:\Program Files\CCleaner
2017-06-10 06:29 - 2017-06-10 06:30 - 09551280 _____ (Piriform Ltd) C:\Users\Patrik\Downloads\ccsetup530.exe
2017-06-10 06:28 - 2017-06-10 06:29 - 00000000 ____D C:\Users\Patrik\AppData\Local\NVIDIA
2017-06-10 06:28 - 2017-05-03 22:16 - 01893312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-06-10 06:28 - 2017-05-03 22:16 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-06-10 06:28 - 2017-05-03 22:16 - 01477056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-06-10 06:28 - 2017-05-03 22:16 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-06-10 06:28 - 2017-05-03 22:16 - 00121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-06-10 06:27 - 2017-05-03 21:28 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-06-10 00:02 - 2017-06-10 00:02 - 00000000 ____D C:\Users\Patrik\AppData\LocalLow\Adobe
2017-06-09 23:58 - 2017-06-09 23:58 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-06-09 23:58 - 2017-06-09 23:58 - 00002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-06-09 23:56 - 2017-06-09 23:56 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-06-09 23:55 - 2017-06-10 09:56 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-06-09 23:55 - 2017-06-10 09:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-06-09 23:55 - 2017-06-10 00:04 - 00000000 ____D C:\ProgramData\Adobe
2017-06-09 23:55 - 2017-06-10 00:03 - 00000000 ____D C:\Users\Patrik\AppData\Local\Adobe
2017-06-09 23:55 - 2017-06-09 23:55 - 02377944 _____ C:\Users\Patrik\Downloads\winrar-x64-540cz.exe
2017-06-09 23:55 - 2017-06-09 23:55 - 00000000 ____D C:\Program Files\WinRAR
2017-06-09 23:44 - 2017-06-09 23:45 - 00000000 ____D C:\rsit
2017-06-09 23:44 - 2017-06-09 23:45 - 00000000 ____D C:\Program Files\trend micro
2017-06-09 23:44 - 2017-06-09 23:44 - 01329152 _____ C:\Users\Patrik\Downloads\RSITx64.exe
2017-06-09 23:42 - 2017-06-09 23:45 - 51503116 _____ C:\Users\Patrik\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable.rar
2017-06-09 23:33 - 2017-06-09 23:34 - 00000000 ____D C:\Users\Patrik\Downloads\produkey-x64
2017-06-09 23:32 - 2017-06-09 23:32 - 00080011 _____ C:\Users\Patrik\Downloads\produkey-x64.zip
2017-06-09 23:32 - 2017-06-09 23:32 - 00001753 _____ C:\Users\Patrik\Downloads\produkey_czech.zip
2017-06-09 19:09 - 2017-06-10 10:32 - 00000000 ___DC C:\WINDOWS\Panther
2017-06-06 03:50 - 2017-06-06 03:50 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-05-31 20:48 - 2017-05-31 20:48 - 00000075 _____ C:\Users\Patrik\Desktop\My Items.url
2017-05-19 18:05 - 2017-05-19 18:05 - 35397528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 28632152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 00969624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 00920664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 00618584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-19 18:04 - 2017-05-19 18:04 - 00507984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 01996696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438205.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 01609232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 01598360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438205.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 01062808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 00999832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 00829848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 00659864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-05-19 18:03 - 2017-05-19 18:03 - 00226712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-05-19 18:03 - 2017-05-19 18:03 - 00054680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-05-19 18:02 - 2017-05-19 18:02 - 40210512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-05-19 18:02 - 2017-05-19 18:02 - 35290192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-05-19 18:02 - 2017-05-19 18:02 - 03800984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-05-19 18:02 - 2017-05-19 18:02 - 03256408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 11161992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 10648512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 09102480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 08891160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00791792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00703880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00633040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00626384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-05-19 17:48 - 2017-05-19 17:48 - 00591672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 11129704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 09335520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 04136736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 03647864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 01298696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-19 17:47 - 2017-05-19 17:47 - 01013344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-05-19 14:22 - 2017-05-19 14:22 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-05-19 14:22 - 2017-05-19 14:22 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-05-19 14:22 - 2017-05-19 14:22 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-05-12 17:03 - 2017-05-12 17:04 - 13699806 _____ C:\Users\Patrik\Downloads\OSCAR-Editor-X7.rar
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-11 15:15 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-06-11 03:56 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-06-10 18:46 - 2016-01-22 17:47 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Skype
2017-06-10 17:44 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-10 17:41 - 2016-01-22 17:14 - 00000000 ____D C:\Program Files (x86)\Steam
2017-06-10 17:40 - 2016-01-22 17:20 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-10 17:40 - 2016-01-22 17:20 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-06-10 17:39 - 2017-03-04 15:20 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Spotify
2017-06-10 17:39 - 2017-02-07 21:38 - 00000000 ___RD C:\Users\Patrik\iCloudDrive
2017-06-10 17:38 - 2016-01-22 17:02 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-10 17:28 - 2017-03-20 06:39 - 00749980 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-10 17:28 - 2017-03-20 06:39 - 00153190 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-10 17:24 - 2017-02-08 18:44 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-06-10 17:23 - 2017-03-18 13:40 - 01835008 _____ C:\WINDOWS\system32\config\BBI
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-06-10 17:22 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-06-10 17:22 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-06-10 14:47 - 2017-03-04 15:21 - 00000000 ____D C:\Users\Patrik\AppData\Local\Spotify
2017-06-10 14:29 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-10 12:15 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-06-10 11:43 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-10 10:49 - 2016-01-22 17:02 - 00000000 ____D C:\Users\Patrik\AppData\Local\Packages
2017-06-10 10:41 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-06-10 10:38 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-06-10 10:38 - 2016-01-22 17:04 - 00002439 _____ C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-10 10:38 - 2016-01-22 17:04 - 00000000 ___RD C:\Users\Patrik\OneDrive
2017-06-10 10:34 - 2016-01-22 17:28 - 00000000 ____D C:\Users\Patrik\AppData\Local\NVIDIA Corporation
2017-06-10 10:33 - 2016-09-09 17:41 - 00000000 ____D C:\Users\Patrik\AppData\Local\ConnectedDevicesPlatform
2017-06-10 10:32 - 2016-05-21 14:11 - 00002336 _____ C:\Users\Patrik\Desktop\Google Chrome.lnk
2017-06-10 10:15 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows NT
2017-06-10 10:14 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-06-10 10:14 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-06-10 10:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-06-10 10:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\HoloShell
2017-06-10 10:05 - 2016-09-09 17:13 - 00023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-06-10 10:04 - 2017-03-18 23:03 - 00000000 __RSD C:\WINDOWS\Media
2017-06-10 10:04 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-06-10 10:02 - 2017-02-07 21:39 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iCloud
2017-06-10 09:56 - 2017-04-25 20:05 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-10 09:56 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-06-10 09:56 - 2017-02-08 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-06-10 09:56 - 2017-02-08 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-06-10 09:56 - 2016-10-15 16:36 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2017-06-10 09:56 - 2016-10-06 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Collage Maker
2017-06-10 09:56 - 2016-10-04 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2017-06-10 09:56 - 2016-06-10 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2017-06-10 09:56 - 2016-06-10 22:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-06-10 09:56 - 2016-05-13 21:55 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2017-06-10 09:56 - 2016-04-16 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-06-10 09:56 - 2016-03-19 20:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-06-10 09:56 - 2016-03-16 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2017-06-10 09:56 - 2016-03-16 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-06-10 09:56 - 2016-02-26 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Mouse
2017-06-10 09:56 - 2016-02-05 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships
2017-06-10 09:56 - 2016-01-22 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2017-06-10 09:56 - 2016-01-22 17:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-06-10 09:56 - 2016-01-22 17:19 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-06-10 09:56 - 2016-01-22 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-06-10 09:53 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-06-10 09:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-06-10 09:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-10 09:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-06-10 09:50 - 2016-10-15 16:35 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2017-06-10 09:49 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-06-10 09:49 - 2017-03-09 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-06-10 09:49 - 2017-02-23 22:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-06-10 09:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-06-10 09:45 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-06-10 09:16 - 2016-01-22 16:54 - 00008192 __RSH C:\BOOTSECT.BAK
2017-06-10 09:12 - 2017-03-20 07:14 - 00000000 ___HD C:\$WINDOWS.~BT
2017-06-10 08:45 - 2016-08-02 20:30 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\TS3Client
2017-06-10 08:43 - 2017-02-08 18:38 - 00000000 ____D C:\Users\Patrik\AppData\Local\CrashDumps
2017-06-10 06:33 - 2016-10-30 18:56 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Seznam.cz
2017-06-10 06:32 - 2016-10-30 18:57 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2017-06-10 00:02 - 2016-01-22 17:02 - 00000000 ____D C:\Users\Patrik\AppData\Roaming\Adobe
2017-06-09 23:53 - 2016-01-22 17:20 - 00000000 ____D C:\Users\Patrik\AppData\Local\Google
2017-06-09 23:53 - 2016-01-22 17:20 - 00000000 ____D C:\Program Files (x86)\Google
2017-06-09 23:36 - 2016-04-16 16:02 - 00000000 ____D C:\Program Files (x86)\Avira
2017-06-06 03:47 - 2016-03-22 00:01 - 00000000 ____D C:\Program Files\Microsoft Office
2017-05-31 20:41 - 2016-01-22 17:07 - 00000000 ____D C:\Users\Patrik\AppData\Local\ElevatedDiagnostics
2017-05-23 17:14 - 2016-01-23 22:11 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 17:08 - 2016-01-23 22:11 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories =======
2016-07-31 14:44 - 2016-07-31 14:44 - 0000016 _____ () C:\ProgramData\mntemp
Some files in TEMP:
====================
2016-02-06 00:10 - 2016-02-06 00:10 - 0000512 _____ () C:\Users\Dave\AppData\Local\Temp\3d51890c7b88e4feeeed777176b46429.dll
2016-04-29 10:30 - 2016-04-29 10:30 - 0000000 ____D () C:\Users\Dave\AppData\Local\Temp\avgnt.exe
2016-02-06 00:10 - 2016-02-06 00:10 - 0000056 _____ () C:\Users\Dave\AppData\Local\Temp\e91037ada5acc9f2aabc839a93a9f793.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-06-10 09:42
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:930.58 GB) (Free:563.48 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Available physical RAM: 5511.88 MB
Total physical RAM: 8168.26 MB
Percentage of memory in use: 32%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 4EE14EE0)
Partition 1: (Active) - (Size=930.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Patrik\Desktop" je 2920 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
- Přílohy
-
- Addition.rar
- (10.22 KiB) Staženo 88 x
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalene PC, popup okna v chrome...
Nic se neděje, pokud víme, poradíme. 
Otevřte poznámkový blok a zkopírujte do něj:
Z logu:
Otevřte poznámkový blok a zkopírujte do něj:Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
C:\Program Files\Bonjour
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Dave\AppData\Local\Temp
EmptyTemp:
End
Z logu:
To je příliš mnoho a může to způsobovat zpomalení startu systému. Vytvořte v C:\Users\Patrik novou složku, do níž přesuňte všechna data z plochy (kromě zástupců). Na plochu si pak dejte zástupce té složky pro snazší přístup.Velikost slozky "C:\Users\Patrik\Desktop" je 2920 MB.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalene PC, popup okna v chrome...
Děkuji za rady, log přikládám a bordel plochy jsem přesunul jinam.
Fix result of Farbar Recovery Scan Tool (x64) Version: 11-06-2017
Ran by Patrik (11-06-2017 22:51:15) Run:1
Running from C:\Users\Patrik\Desktop
Loaded Profiles: Patrik & (Available Profiles: Patrik)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
C:\Program Files\Bonjour
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Dave\AppData\Local\Temp
EmptyTemp:
End
*****************
C:\Program Files\Bonjour => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Users\Dave\AppData\Local\Temp => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6473950 B
Java, Flash, Steam htmlcache => 105500221 B
Windows/system/drivers => 2899537 B
Edge => 4683697 B
Chrome => 33580452 B
Firefox => 8766165 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4082 B
NetworkService => 0 B
Patrik => 10187779 B
RecycleBin => 86196003 B
EmptyTemp: => 252.1 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 22:51:24 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 11-06-2017
Ran by Patrik (11-06-2017 22:51:15) Run:1
Running from C:\Users\Patrik\Desktop
Loaded Profiles: Patrik & (Available Profiles: Patrik)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
C:\Program Files\Bonjour
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Dave\AppData\Local\Temp
EmptyTemp:
End
*****************
C:\Program Files\Bonjour => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Users\Dave\AppData\Local\Temp => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6473950 B
Java, Flash, Steam htmlcache => 105500221 B
Windows/system/drivers => 2899537 B
Edge => 4683697 B
Chrome => 33580452 B
Firefox => 8766165 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4082 B
NetworkService => 0 B
Patrik => 10187779 B
RecycleBin => 86196003 B
EmptyTemp: => 252.1 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 22:51:24 ====
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalene PC, popup okna v chrome...
Smazáno. Ještě vyčistěte prohlížeče těmito utilitami:
1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
a
2. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
a
2. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalene PC, popup okna v chrome...
Přidávám zoek log
Zoek.exe v5.0.0.1 Updated 27-09-2015
Tool run by Patrik on 12.06.2017 at 19:11:41,32.
Microsoft Windows 10 Pro 10.0.15063 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\Patrik\Desktop\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
C:\zoek-results2017-06-12-170615.log 9167 bytes
==== Reset Hosts File ======================
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Added to C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
ProfilePath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default
- Undetermined - %ProfilePath%\extensions\abs@avira.com.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
==== Firefox Plugins ======================
Profilepath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default
D24D187FF3004EB238C2B4F84A86DCDE - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL - Microsoft Office 2016
E9A6E11CF4AC0B99088AE29604B712F0 - C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\NPRobloxProxy.dll - Roblox Launcher Plugin
B57F80C30FC58BF34F96DCDA59FFABEA - C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\NPRobloxProxy64.dll - Roblox Launcher Plugin
==== Chromium Look ======================
Google Chrome Version: 31.0.1650.59
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - No path found[]
Skype - Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Chrome Media Router - Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... 02&pc=UE04"
{57999D54-9BA4-41C5-B3BB-9CE50B52082D} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_12454"
==== Reset Google Chrome ======================
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dave\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Patrik\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dave\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Patrik\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Dave\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot
C:\Users\Patrik\AppData\Local\Seznam.cz\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=2509 folders=280 310344661 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Patrik\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted
==== EOF on 12.06.2017 at 19:53:11,86 ======================
Zoek.exe v5.0.0.1 Updated 27-09-2015
Tool run by Patrik on 12.06.2017 at 19:11:41,32.
Microsoft Windows 10 Pro 10.0.15063 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\Patrik\Desktop\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
C:\zoek-results2017-06-12-170615.log 9167 bytes
==== Reset Hosts File ======================
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Added to C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
ProfilePath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default
- Undetermined - %ProfilePath%\extensions\abs@avira.com.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
==== Firefox Plugins ======================
Profilepath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\HBSEwysE.default
D24D187FF3004EB238C2B4F84A86DCDE - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL - Microsoft Office 2016
E9A6E11CF4AC0B99088AE29604B712F0 - C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\NPRobloxProxy.dll - Roblox Launcher Plugin
B57F80C30FC58BF34F96DCDA59FFABEA - C:\Users\Patrik\AppData\Local\Roblox\Versions\version-2cc7e2256bc843db\NPRobloxProxy64.dll - Roblox Launcher Plugin
==== Chromium Look ======================
Google Chrome Version: 31.0.1650.59
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - No path found[]
Skype - Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Chrome Media Router - Patrik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... 02&pc=UE04"
{57999D54-9BA4-41C5-B3BB-9CE50B52082D} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_12454"
==== Reset Google Chrome ======================
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dave\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Patrik\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dave\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Patrik\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Dave\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot
C:\Users\Patrik\AppData\Local\Seznam.cz\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=2509 folders=280 310344661 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Patrik\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted
"C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted
==== EOF on 12.06.2017 at 19:53:11,86 ======================
Re: Zpomalene PC, popup okna v chrome...
a tady ten druhy
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows 10 Pro x64
Ran by Patrik (Administrator) on 12.06.2017 at 20:15:17,13
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 12.06.2017 at 20:18:15,85
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows 10 Pro x64
Ran by Patrik (Administrator) on 12.06.2017 at 20:15:17,13
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 12.06.2017 at 20:18:15,85
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalene PC, popup okna v chrome...
OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalene PC, popup okna v chrome...
Myslím že dobrý, víc z toho už asi vytáhnout nejde
Díky Vám moc, jste zlaťák. Snad se můžu zase někdy obrátit pokud by bylo potřeba ... ?
Díky Vám moc, jste zlaťák. Snad se můžu zase někdy obrátit pokud by bylo potřeba ... ?
Přispějete na provoz fóra?