V pořádku?
Napsal: 21 čer 2017 19:54
Dobrý den,
ESET dnes našel nějaký vir a údajně ho odstranil. Ale jednou se mi již stalo, že také našel, údajně odstranil. Ale nějaký vir sken neodhalil, hlásil "žádné nalezené hrozby". Ovšem vir v počítači byl a nakonec se musel celý přeinstalovat. Tak se raději zeptám, zdali je vše v pořádku?
RSIT
__________
Logfile of random's system information tool 1.16 (written by random/random)
Run by Admin at 2017-06-21 20:48:25
Microsoft Windows 10 Home
System drive C: has 855 GB (90%) free of 953 GB
Total RAM: 3583 MB (45% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:48:34, on 21.06.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\ESET\ESET Security\egui.exe
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x86__kzf8qxf38zg5c\SkypeHost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Windows\System32\smartscreen.exe
C:\Users\Admin\Downloads\RSIT.exe
C:\Program Files\trend micro\Admin_RSIT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Cm108Sound] RunDll32 cm108.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [WindowsDefender] "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files\Bloody6\Bloody6\Bloody6.exe" Minimum
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Discord] C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
--
End of file - 6632 bytes
======Scheduled tasks folder======
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\Adobe Uninstaller - C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --sapCode=PHSP --productVersion=18.1 --productPlatform=win32 --appletID=AppsPanel_BL --appletVersion=1.0 --appMode=Uninstall
C:\WINDOWS\system32\tasks\AdobeAAMUpdater-1.0-DESKTOP-S98KBU3-Admin - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{25CDC885-CE70-4DAE-B484-8489B8B26CAE} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - %systemroot%\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunCampaignManager - %windir%\System32\UNP\UNPCampaignManager.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Google Chrome=========
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 2 Adobe Acrobat 15.1.0.6
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky Google 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.11.2
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.3
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5917.424.0.6
Homepage:
default_search_provider.search_url:
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-11-05 748744]
"Cm108Sound"=RunDll32 cm108.cpl,CMICtrlWnd []
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2017-05-22 6153128]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-04-28 483840]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-06-21 1555664]
"Bloody2"=C:\Program Files\Bloody6\Bloody6\Bloody6.exe [2017-03-24 19407360]
"Steam"=C:\Program Files\Steam\steam.exe [2017-06-08 3042592]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2017-06-07 27742168]
"Spotify Web Helper"=C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-06-07 1560176]
"Discord"=C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe [2017-01-04 64290304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\59.0.3071.109\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2017-06-21 20:48:25 ----D---- C:\rsit
2017-06-21 20:48:25 ----D---- C:\Program Files\trend micro
2017-06-21 19:27:58 ----D---- C:\ProgramData\ESET
2017-06-21 19:27:58 ----D---- C:\Program Files\ESET
2017-06-21 19:23:36 ----SHD---- C:\Config.Msi
2017-06-21 15:18:26 ----D---- C:\Users\Admin\AppData\Roaming\Ubisoft
2017-06-21 15:10:54 ----D---- C:\ProgramData\Ubisoft
2017-06-21 15:01:00 ----D---- C:\Program Files\Ubisoft
2017-06-21 15:00:53 ----D---- C:\Users\Admin\AppData\Roaming\InstallShield
2017-06-17 12:48:02 ----AD---- C:\Program Files\Common Files\Skype
2017-06-16 19:49:17 ----D---- C:\Users\Admin\AppData\Roaming\discord
2017-06-15 00:58:35 ----SD---- C:\WINDOWS\UpdateAssistantV2
2017-06-14 14:06:11 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-06-14 14:06:10 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-06-14 14:06:10 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-06-14 14:06:10 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-06-14 14:06:09 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-06-14 14:06:09 ----A---- C:\WINDOWS\system32\tquery.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\ExSMime.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2017-06-14 14:06:07 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-06-14 14:06:07 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-06-14 14:05:56 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-14 14:05:55 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-06-14 14:05:54 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-06-14 14:05:54 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-06-14 14:05:53 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-06-14 14:05:52 ----A---- C:\WINDOWS\system32\OOBEUpdater.exe
2017-06-14 14:05:52 ----A---- C:\WINDOWS\system32\localspl.dll
2017-06-14 14:05:51 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-06-14 14:05:50 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-06-14 14:05:47 ----A---- C:\WINDOWS\system32\shell32.dll
2017-06-14 14:05:47 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-06-14 14:05:46 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-06-14 14:05:44 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\netcorehc.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-06-14 14:05:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-06-14 14:05:42 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-06-14 14:05:42 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\cloudAP.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\HelpPane.exe
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\tcpipcfg.dll
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-06-14 14:05:39 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-06-14 14:05:39 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\dcntel.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\atmlib.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\aepic.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\tzres.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\ImplatSetup.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\HNetCfgClient.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\efscore.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\edputil.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\certutil.exe
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\AuthBrokerUI.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\invagent.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\devinv.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-06-14 14:05:34 ----A---- C:\WINDOWS\system32\fdProxy.dll
2017-06-06 16:54:52 ----D---- C:\Users\Admin\AppData\Roaming\Tunngle
2017-06-06 16:54:49 ----A---- C:\WINDOWS\system32\drivers\tap0901t.sys
2017-06-06 16:54:43 ----D---- C:\ProgramData\Tunngle
2017-06-06 16:54:43 ----AD---- C:\Program Files\Tunngle
2017-06-06 16:09:14 ----D---- C:\Mr DJ
2017-06-06 15:26:30 ----D---- C:\Program Files\Mr DJ
2017-06-06 15:25:07 ----HD---- C:\WINDOWS\msdownld.tmp
2017-06-06 15:24:49 ----D---- C:\WINDOWS\system32\directx
2017-06-06 14:04:45 ----AD---- C:\Program Files\LogMeIn Hamachi
2017-06-06 14:01:05 ----D---- C:\ProgramData\LogMeIn
2017-06-06 13:25:15 ----D---- C:\Users\Admin\AppData\Roaming\uTorrent
2017-05-27 22:18:32 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2017-05-27 22:18:32 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2017-05-27 22:18:31 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2017-05-27 22:18:31 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2017-05-27 22:18:31 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2017-05-27 22:18:30 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2017-05-27 22:18:30 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2017-05-27 22:18:29 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2017-05-27 22:18:29 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2017-05-27 22:18:29 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2017-05-27 22:18:28 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2017-05-27 22:18:28 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2017-05-27 22:18:27 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2017-05-27 22:18:27 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2017-05-27 22:18:27 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2017-05-27 22:18:25 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2017-05-27 22:18:25 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2017-05-27 22:18:25 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2017-05-27 22:18:23 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2017-05-27 22:18:23 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2017-05-27 22:18:23 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2017-05-27 22:18:21 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2017-05-27 22:18:20 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2017-05-27 22:18:18 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2017-05-27 22:18:18 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2017-05-27 22:18:18 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2017-05-27 22:18:16 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2017-05-27 22:18:16 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2017-05-27 22:18:15 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2017-05-27 22:18:15 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2017-05-27 22:18:14 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2017-05-27 22:18:14 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2017-05-27 22:18:13 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2017-05-27 22:18:13 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2017-05-27 22:18:13 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2017-05-27 22:18:11 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2017-05-27 22:18:11 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2017-05-27 22:18:10 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2017-05-27 22:18:10 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2017-05-27 22:18:10 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2017-05-27 22:18:09 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2017-05-27 22:18:08 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2017-05-27 22:18:08 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2017-05-27 22:18:07 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2017-05-27 22:18:07 ----A---- C:\WINDOWS\system32\d3dx10.dll
2017-05-27 22:18:06 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2017-05-27 22:18:06 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2017-05-27 22:18:05 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2017-05-27 22:18:04 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2017-05-27 22:18:04 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2017-05-27 22:18:03 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2017-05-27 22:18:03 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2017-05-27 22:18:02 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2017-05-27 22:17:54 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2017-05-27 22:17:53 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2017-05-27 22:17:53 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2017-05-27 22:17:53 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2017-05-27 22:17:52 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2017-05-27 22:17:51 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2017-05-27 22:17:51 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2017-05-27 22:17:50 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2017-05-27 22:17:50 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2017-05-25 15:39:41 ----D---- C:\Users\Admin\AppData\Roaming\BrawlhallaAir
2017-05-22 20:46:48 ----AD---- C:\Program Files\Johanka z Arku
2017-05-22 16:12:40 ----AH---- C:\WINDOWS\system32\drivers\Hamdrv.sys
2017-05-20 21:20:20 ----D---- C:\Users\Admin\AppData\Roaming\Spotify
2017-05-18 14:35:53 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2017-05-12 12:22:13 ----D---- C:\WINDOWS\system32\UNP
2017-05-12 12:22:13 ----AD---- C:\Program Files\UNP
2017-05-11 10:57:04 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-11 10:57:03 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-11 10:57:02 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-11 10:57:00 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-11 10:56:58 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-11 10:56:57 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-11 10:56:55 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-11 10:56:54 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-11 10:56:54 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-11 10:56:53 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-11 10:56:53 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-11 10:56:48 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-11 10:56:43 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-11 10:56:42 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-11 10:56:41 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-11 10:56:34 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-11 10:56:33 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-11 10:56:31 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-11 10:56:30 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-11 10:56:28 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-11 10:56:27 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-11 10:56:22 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-11 10:56:20 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-11 10:56:20 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-11 10:56:19 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-11 10:56:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-11 10:56:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-11 10:56:13 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-11 10:56:12 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-11 10:56:12 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-11 10:56:12 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-05-11 10:56:10 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-11 10:56:00 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-11 10:56:00 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-11 10:56:00 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-11 10:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-11 10:55:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-11 10:55:56 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-11 10:55:55 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-11 10:55:53 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-11 10:55:51 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-11 10:55:51 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-11 10:55:51 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-11 10:55:48 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-11 10:55:48 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-11 10:55:47 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-11 10:55:47 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-11 10:55:44 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2017-05-11 10:55:40 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-11 10:55:40 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-11 10:55:39 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-11 10:55:38 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-11 10:55:36 ----A---- C:\WINDOWS\system32\olepro32.dll
2017-05-11 10:55:36 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-11 10:55:36 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-11 10:55:35 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-11 10:55:33 ----A---- C:\WINDOWS\explorer.exe
2017-05-11 10:55:32 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-11 10:55:31 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-11 10:55:30 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-11 10:55:28 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-11 10:55:27 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-11 10:55:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-11 10:55:25 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-11 10:55:22 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-11 10:55:21 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-11 10:55:21 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-11 10:55:21 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-11 10:55:20 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-11 10:55:18 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-11 10:55:18 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-11 10:55:17 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-11 10:55:15 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-11 10:55:15 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-11 10:55:15 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\services.exe
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-11 10:55:13 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-11 10:55:13 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-11 10:55:13 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-11 10:55:12 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-11 10:55:12 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-11 10:55:11 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-11 10:55:09 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-05-11 10:55:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-11 10:55:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-11 10:55:06 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-11 10:55:06 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-11 10:55:06 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-11 10:55:05 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-11 10:55:04 ----A---- C:\WINDOWS\system32\winresume.exe
2017-05-11 10:55:04 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-11 10:55:04 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-11 10:55:03 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-11 10:55:03 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-11 10:55:02 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-11 10:55:01 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-11 10:55:01 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-11 10:55:00 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-11 10:54:57 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-11 10:54:53 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-05-11 10:54:53 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-11 10:54:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-11 10:54:51 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-11 10:54:51 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-11 10:54:50 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-11 10:54:50 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-11 10:54:49 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-11 10:54:49 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\termsrv.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-11 10:54:47 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-11 10:54:47 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-11 10:54:47 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-11 10:54:46 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-11 10:54:46 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\setupugc.exe
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\dsreg.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\umpoext.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\ReInfo.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\Dxpserver.exe
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-11 10:54:32 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-11 10:54:31 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-11 10:54:31 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\epfwwfp.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\epfw.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\ekbdflt.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\ehdrv.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\eelam.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\edevmon.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\eamonm.sys
2017-04-24 17:35:53 ----D---- C:\Users\Admin\AppData\Roaming\Macromedia
2017-04-20 21:17:42 ----D---- C:\Program Files\MWSnap
2017-04-19 09:23:42 ----D---- C:\Users\Admin\AppData\Roaming\PDAppFlex
2017-04-19 08:44:37 ----D---- C:\ProgramData\boost_interprocess
2017-04-19 08:40:11 ----D---- C:\ProgramData\Adobe
2017-04-19 08:39:38 ----AD---- C:\Program Files\Adobe
2017-04-19 08:39:37 ----AD---- C:\Program Files\Common Files\Adobe
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Šablony
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Plocha
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Nabídka Start
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Dokumenty
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Data aplikací
2017-04-18 22:10:13 ----SHD---- C:\Documents and Settings
2017-04-18 22:10:12 ----SHD---- C:\Recovery
2017-04-18 22:09:39 ----ASH---- C:\hiberfil.sys
2017-04-18 22:05:23 ----AD---- C:\Program Files\ATI Technologies
2017-04-18 22:05:18 ----D---- C:\ProgramData\Package Cache
2017-04-18 22:05:01 ----D---- C:\AMD
2017-04-18 22:04:58 ----D---- C:\Program Files\Common Files\ATI Technologies
2017-04-18 22:04:54 ----D---- C:\Program Files\AMD
2017-04-18 22:04:46 ----D---- C:\ProgramData\USOShared
2017-04-18 22:04:08 ----AS---- C:\WINDOWS\bootstat.dat
2017-04-18 22:03:58 ----HD---- C:\Program Files\Uninstall Information
2017-04-18 22:03:19 ----D---- C:\WINDOWS\system32\SleepStudy
2017-04-18 22:03:19 ----D---- C:\WINDOWS\ServiceProfiles
2017-04-18 22:03:18 ----SD---- C:\WINDOWS\system32\Microsoft
2017-04-18 22:03:12 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-18 17:06:48 ----D---- C:\WINDOWS\system32\MRT
2017-04-18 17:06:41 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-04-18 15:09:38 ----D---- C:\Program Files\Common Files\Steam
2017-04-18 15:09:35 ----D---- C:\Program Files\Steam
2017-04-18 14:55:10 ----D---- C:\ProgramData\Riot Games
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2017-04-18 14:53:09 ----D---- C:\Riot Games
2017-04-18 14:52:19 ----D---- C:\Users\Admin\AppData\Roaming\Riot Games
2017-04-18 14:49:27 ----RD---- C:\Program Files\Skype
2017-04-18 14:49:24 ----D---- C:\ProgramData\Skype
2017-04-18 14:21:15 ----D---- C:\Program Files\Bloody6
2017-04-18 14:19:23 ----D---- C:\Users\Admin\AppData\Roaming\WinRAR
2017-04-18 14:19:20 ----HD---- C:\Program Files\InstallShield Installation Information
2017-04-18 14:18:59 ----N---- C:\WINDOWS\Vmix108.dll
2017-04-18 14:18:59 ----N---- C:\WINDOWS\system32\Cmeau108.exe
2017-04-18 14:18:54 ----N---- C:\WINDOWS\system32\CmiInstallResAll.dll
2017-04-18 14:18:54 ----N---- C:\WINDOWS\cm108.ini
2017-04-18 14:18:54 ----A---- C:\WINDOWS\difxapi.dll
2017-04-18 14:17:49 ----AD---- C:\Program Files\WinRAR
2017-04-18 13:52:35 ----D---- C:\WINDOWS\InfusedApps
2017-04-18 13:52:28 ----DC---- C:\WINDOWS\Panther
2017-04-18 13:52:18 ----D---- C:\Windows.old
2017-04-18 13:51:54 ----D---- C:\WINDOWS\Setup
2017-04-18 13:50:48 ----A---- C:\WINDOWS\system32\msonpmon.dll
2017-04-18 13:50:40 ----D---- C:\WINDOWS\system32\XPSViewer
2017-04-18 13:50:40 ----D---- C:\WINDOWS\OCR
2017-04-18 13:50:40 ----D---- C:\Program Files\Reference Assemblies
2017-04-18 13:50:40 ----D---- C:\Program Files\MSBuild
2017-04-18 13:50:34 ----D---- C:\Program Files\Microsoft Works
2017-04-18 13:50:26 ----AD---- C:\Program Files\Common Files\DESIGNER
2017-04-18 13:50:20 ----D---- C:\WINDOWS\PCHEALTH
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfi005.dat
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfh005.dat
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfd005.dat
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfc005.dat
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\winrm
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\WCN
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\slmgr
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2017-04-18 13:49:56 ----D---- C:\WINDOWS\system32\en
2017-04-18 13:49:56 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-04-18 13:49:56 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2017-04-18 13:49:55 ----D---- C:\WINDOWS\system32\cs
2017-04-18 13:49:55 ----D---- C:\WINDOWS\system32\0409
2017-04-18 13:49:55 ----D---- C:\WINDOWS\en-US
2017-04-18 13:49:55 ----D---- C:\WINDOWS\DigitalLocker
2017-04-18 13:49:55 ----D---- C:\WINDOWS\cs-CZ
2017-04-18 13:48:29 ----D---- C:\WINDOWS\SHELLNEW
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfi009.dat
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfh009.dat
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfd009.dat
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfc009.dat
2017-04-18 13:48:23 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2017-04-18 13:48:15 ----D---- C:\ProgramData\Microsoft Help
2017-04-18 13:48:15 ----AD---- C:\Program Files\Microsoft Office
2017-04-18 13:47:46 ----RHD---- C:\MSOCache
2017-04-18 13:47:02 ----A---- C:\WINDOWS\system32\NOISE.DAT
2017-04-18 13:47:00 ----A---- C:\WINDOWS\system32\msclmd.dll
2017-04-18 13:46:59 ----A---- C:\WINDOWS\system32\dssec.dat
2017-04-18 13:46:58 ----RSH---- C:\WINDOWS\fonts\StaticCache.dat
2017-04-18 13:46:57 ----ASH---- C:\Program Files\desktop.ini
2017-04-18 13:46:57 ----A---- C:\WINDOWS\win.ini
2017-04-18 13:46:57 ----A---- C:\WINDOWS\system.ini
2017-04-18 13:46:57 ----A---- C:\WINDOWS\fonts\desktop.ini
2017-04-18 13:46:56 ----SD---- C:\WINDOWS\system32\Nui
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Web
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Vss
2017-04-18 13:46:56 ----D---- C:\WINDOWS\twain_32
2017-04-18 13:46:56 ----D---- C:\WINDOWS\tracing
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Temp
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Tasks
2017-04-18 13:46:56 ----D---- C:\WINDOWS\TAPI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\SystemResources
2017-04-18 13:46:56 ----D---- C:\WINDOWS\SystemApps
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\zh-TW
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\zh-HK
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\zh-CN
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WinMetadata
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\winevt
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WinBioDatabase
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WDI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\wbem
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\uk-UA
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\tr-TR
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\th-TH
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Tasks
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sv-SE
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sru
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sppui
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\spp
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\spool
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Speech_OneCore
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Speech
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sl-SI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sk-SK
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\setup
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ru-RU
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ro-RO
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\restore
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Recovery
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\RasToast
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ras
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\pt-PT
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\pt-BR
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ProximityToast
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\PointOfService
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\pl-PL
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\oobe
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\nl-NL
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\networklist
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\NDF
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\nb-NO
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\MUI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\MsDtc
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\MSDRM
2017-04-18 13:46:55 ----SHD---- C:\WINDOWS\Installer
2017-04-18 13:46:55 ----SHD---- C:\Program Files\Windows Sidebar
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\F12
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\dsc
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\DiagSvcs
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\Configuration
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\Downloaded Program Files
2017-04-18 13:46:55 ----SD---- C:\ProgramData\Microsoft
2017-04-18 13:46:55 ----RSD---- C:\WINDOWS\Fonts
2017-04-18 13:46:55 ----RSD---- C:\WINDOWS\assembly
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\PrintDialog
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\Offline Web Pages
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\MiracastView
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\Microsoft.NET
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-04-18 13:46:55 ----RD---- C:\Program Files\Windows Defender
2017-04-18 13:46:55 ----HD---- C:\WINDOWS\ELAMBKUP
2017-04-18 13:46:55 ----HD---- C:\ProgramData
2017-04-18 13:46:55 ----HD---- C:\Program Files\WindowsApps
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Sysprep
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\migwiz
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\migration
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\MailContactsCalendarSync
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Macromed
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\lv-LV
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\lt-LT
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\LogFiles
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Licenses
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ko-KR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ja-JP
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\it-IT
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Ipmi
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\InputMethod
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\inetsrv
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\IME
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\icsxml
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ias
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\hu-HU
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\hr-HR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\he-IL
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\GroupPolicyUsers
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\GroupPolicy
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\FxsTmp
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\fr-FR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\fr-CA
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\fi-FI
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\et-EE
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\es-MX
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\es-ES
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\en-US
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\en-GB
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\el-GR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\drivers\etc
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\downlevel
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Dism
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\de-DE
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\DDFs
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\da-DK
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\cs-CZ
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Com
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\catroot2
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Bthprops
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Boot
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\bg-BG
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ar-SA
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\appraiser
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\AppLocker
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2017-04-18 13:46:55 ----D---- C:\WINDOWS\System
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Speech_OneCore
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Speech
2017-04-18 13:46:55 ----D---- C:\WINDOWS\SKB
2017-04-18 13:46:55 ----D---- C:\WINDOWS\schemas
2017-04-18 13:46:55 ----D---- C:\WINDOWS\SchCache
2017-04-18 13:46:55 ----D---- C:\WINDOWS\ShellExperiences
2017-04-18 13:46:55 ----D---- C:\WINDOWS\security
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Resources
2017-04-18 13:46:55 ----D---- C:\WINDOWS\rescache
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Registration
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Provisioning
2017-04-18 13:46:55 ----D---- C:\WINDOWS\prefetch
2017-04-18 13:46:55 ----D---- C:\WINDOWS\PolicyDefinitions
2017-04-18 13:46:55 ----D---- C:\WINDOWS\PLA
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Performance
2017-04-18 13:46:55 ----D---- C:\WINDOWS\ModemLogs
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Migration
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Media
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Logs
2017-04-18 13:46:55 ----D---- C:\WINDOWS\LiveKernelReports
2017-04-18 13:46:55 ----D---- C:\WINDOWS\L2Schemas
2017-04-18 13:46:55 ----D---- C:\WINDOWS\InputMethod
2017-04-18 13:46:55 ----D---- C:\WINDOWS\IME
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Help
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Globalization
2017-04-18 13:46:55 ----D---- C:\WINDOWS\GameBarPresenceWriter
2017-04-18 13:46:55 ----D---- C:\WINDOWS\diagnostics
2017-04-18 13:46:55 ----D---- C:\WINDOWS\debug
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Cursors
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Branding
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Boot
2017-04-18 13:46:55 ----D---- C:\WINDOWS\bcastdvr
2017-04-18 13:46:55 ----D---- C:\WINDOWS\AppReadiness
2017-04-18 13:46:55 ----D---- C:\WINDOWS\apppatch
2017-04-18 13:46:55 ----D---- C:\WINDOWS\appcompat
2017-04-18 13:46:55 ----D---- C:\WINDOWS\addins
2017-04-18 13:46:55 ----D---- C:\ProgramData\USOPrivate
2017-04-18 13:46:55 ----D---- C:\ProgramData\SoftwareDistribution
2017-04-18 13:46:55 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2017-04-18 13:46:55 ----D---- C:\ProgramData\Comms
2017-04-18 13:46:55 ----D---- C:\Program Files\WindowsPowerShell
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Portable Devices
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Photo Viewer
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows NT
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Multimedia Platform
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Media Player
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Mail
2017-04-18 13:46:55 ----D---- C:\Program Files\Microsoft.NET
2017-04-18 13:46:55 ----D---- C:\Program Files\Internet Explorer
2017-04-18 13:46:55 ----D---- C:\Program Files\Common Files\System
2017-04-18 13:46:55 ----D---- C:\Program Files\Common Files\Services
2017-04-18 13:46:55 ----D---- C:\PerfLogs
2017-04-18 13:46:55 ----AD---- C:\Program Files\Common Files\Microsoft Shared
2017-04-18 13:46:40 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-04-18 13:46:39 ----D---- C:\WINDOWS\system32\drivers
2017-04-18 13:45:39 ----D---- C:\WINDOWS\INF
2017-04-18 13:40:18 ----D---- C:\WINDOWS\CbsTemp
2017-04-18 13:39:07 ----RD---- C:\Users
2017-04-18 13:39:07 ----RD---- C:\Program Files
2017-04-18 13:39:07 ----D---- C:\WINDOWS\WinSxS
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\SMI
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\DriverStore
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\config
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\CatRoot
2017-04-18 13:39:07 ----D---- C:\WINDOWS\System32
2017-04-18 13:39:07 ----D---- C:\WINDOWS\servicing
2017-04-18 13:39:07 ----D---- C:\Windows
2017-04-18 13:39:07 ----D---- C:\Program Files\Common Files
2017-04-18 13:28:25 ----D---- C:\Program Files\Google
2017-04-18 13:26:28 ----D---- C:\Users\Admin\AppData\Roaming\Skype
2017-04-18 13:25:37 ----D---- C:\Users\Admin\AppData\Roaming\ATI
2017-04-18 13:25:37 ----D---- C:\ProgramData\ATI
2017-04-18 13:25:35 ----D---- C:\ProgramData\Microsoft OneDrive
2017-04-18 13:24:17 ----SHD---- C:\$RECYCLE.BIN
2017-04-18 13:23:51 ----D---- C:\Users\Admin\AppData\Roaming\Adobe
2017-04-18 13:23:40 ----SD---- C:\Users\Admin\AppData\Roaming\Microsoft
2017-04-18 13:14:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-18 13:11:21 ----D---- C:\WINDOWS\SoftwareDistribution
2017-04-18 12:31:10 ----HD---- C:\$SysReset
2017-04-12 16:57:55 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-04-12 16:57:55 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-04-12 16:57:55 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-04-12 16:57:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-04-12 16:57:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-04-12 16:57:16 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-04-12 16:57:16 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-04-12 16:57:14 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-04-12 16:57:10 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-04-12 16:57:09 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2017-04-12 16:57:07 ----A---- C:\WINDOWS\system32\sbe.dll
2017-04-12 16:57:07 ----A---- C:\WINDOWS\system32\RADCUI.dll
2017-04-12 16:57:04 ----A---- C:\WINDOWS\system32\wscapi.dll
2017-04-12 16:57:04 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2017-04-12 16:57:04 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-04-12 16:56:55 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2017-04-12 16:56:46 ----A---- C:\WINDOWS\system32\psmsrv.dll
2017-04-12 16:56:44 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-04-12 16:56:40 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-04-12 16:56:40 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-04-12 16:56:39 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-04-12 16:56:39 ----A---- C:\WINDOWS\system32\netshell.dll
2017-04-12 16:56:38 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-04-12 16:56:38 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-04-12 16:56:37 ----A---- C:\WINDOWS\system32\mspaint.exe
2017-04-12 16:56:34 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-04-12 16:56:34 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-12 16:56:33 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-04-12 16:56:33 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-04-12 16:56:32 ----A---- C:\WINDOWS\system32\mos.dll
2017-04-12 16:56:29 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-04-12 16:56:29 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-04-12 16:56:24 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-04-12 16:56:24 ----A---- C:\WINDOWS\system32\InputService.dll
2017-04-12 16:56:04 ----A---- C:\WINDOWS\system32\apds.dll
2017-04-12 16:56:03 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-04-12 16:56:03 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\wer.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2017-04-12 16:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-04-12 16:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-04-12 16:55:59 ----A---- C:\WINDOWS\system32\quartz.dll
2017-04-12 16:55:58 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-04-12 16:55:58 ----A---- C:\WINDOWS\system32\FontProvider.dll
2017-04-12 16:55:58 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-04-12 16:55:57 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-04-12 16:55:56 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-04-12 16:55:56 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-04-12 16:55:56 ----A---- C:\WINDOWS\system32\dafpos.dll
2017-04-12 16:55:55 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2017-04-12 16:55:55 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-04-12 16:55:54 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-04-12 16:55:54 ----A---- C:\WINDOWS\system32\cdp.dll
2017-04-12 16:55:51 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2017-04-12 16:55:51 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2017-04-12 16:55:49 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-04-12 16:55:49 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2017-04-12 16:55:26 ----A---- C:\WINDOWS\system32\drivers\BasicDisplay.sys
2017-04-01 00:53:18 ----A---- C:\WINDOWS\system32\UNPUXWorker.exe
======List of files/folders modified in the last 3 months======
2017-06-21 14:42:53 ----SHD---- C:\System Volume Information
2017-06-07 22:39:24 ----HD---- C:\$WINDOWS.~BT
2017-04-18 13:44:09 ----A---- C:\WINDOWS\system32\drivers\SET5D25.tmp
2017-04-18 13:44:09 ----A---- C:\WINDOWS\system32\drivers\SET5D05.tmp
2017-04-18 13:44:09 ----A---- C:\WINDOWS\system32\drivers\SET5CF4.tmp
2017-04-18 13:43:01 ----A---- C:\WINDOWS\system32\drivers\SET6575.tmp
2017-04-18 13:42:51 ----A---- C:\WINDOWS\system32\drivers\SET65C4.tmp
2017-04-18 13:42:03 ----A---- C:\WINDOWS\system32\drivers\SET64D8.tmp
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2017-05-04 90656]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 42336]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2017-05-04 113544]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2017-05-04 139384]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2017-05-04 69304]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2017-05-04 86504]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 58368]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2017-05-04 43920]
R2 Parvdm;Parvdm; C:\WINDOWS\System32\drivers\parvdm.sys [2016-07-16 9216]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-16 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-16 542192]
R3 AtiHDAudioService;@oem1.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2016-04-18 91160]
R3 Hamachi;@oem14.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2017-05-22 38512]
R3 MTsensor;@oem0.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\System32\drivers\ASACPI.sys [2004-08-13 5810]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2016-07-16 494080]
R3 tap0901t;@oem15.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\System32\drivers\tap0901t.sys [2016-04-26 44216]
R3 USBPNPA;@oem13.inf,%CM108.SvcDesc%;USB PnP Sound Device Interface; C:\WINDOWS\system32\drivers\CM108.sys [2017-04-18 3234816]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2017-05-04 14368]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 56672]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 12800]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 12288]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2016-07-16 22016]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 25600]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2016-07-16 61936]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 30208]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 94720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 62976]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 76800]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2016-07-16 92672]
S3 ViaC7;@cpu.inf,%ViaC7.SvcDesc%;VIA C7 Processor Driver; C:\WINDOWS\System32\drivers\viac7.sys [2016-07-16 105984]
S3 vmgid;@wvmgid.inf,%VmGid.SVCDESC%;Microsoft Hyper-V Guest Infrastructure Driver; C:\WINDOWS\System32\drivers\vmgid.sys [2016-07-16 8704]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2017-05-18 2246256]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-16 223216]
R2 CDPUserSvc_23af0;CDPUserSvc_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2017-04-26 2069936]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2017-05-22 2616744]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [2016-05-27 405424]
R2 OneSyncSvc_23af0;Hostitel synchronizace_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2017-04-05 317400]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_23af0;Služba zasílání zpráv_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc_23af0;Data kontaktů_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
S3 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2016-12-15 838128]
S3 UnistoreSvc_23af0;Úložiště uživatelských dat_23af0; C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 UserDataSvc_23af0;Přístup k uživatelským datům_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
ESET dnes našel nějaký vir a údajně ho odstranil. Ale jednou se mi již stalo, že také našel, údajně odstranil. Ale nějaký vir sken neodhalil, hlásil "žádné nalezené hrozby". Ovšem vir v počítači byl a nakonec se musel celý přeinstalovat. Tak se raději zeptám, zdali je vše v pořádku?
RSIT
__________
Logfile of random's system information tool 1.16 (written by random/random)
Run by Admin at 2017-06-21 20:48:25
Microsoft Windows 10 Home
System drive C: has 855 GB (90%) free of 953 GB
Total RAM: 3583 MB (45% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:48:34, on 21.06.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\ESET\ESET Security\egui.exe
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x86__kzf8qxf38zg5c\SkypeHost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Windows\System32\smartscreen.exe
C:\Users\Admin\Downloads\RSIT.exe
C:\Program Files\trend micro\Admin_RSIT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Cm108Sound] RunDll32 cm108.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [WindowsDefender] "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files\Bloody6\Bloody6\Bloody6.exe" Minimum
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Discord] C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
--
End of file - 6632 bytes
======Scheduled tasks folder======
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\Adobe Uninstaller - C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --sapCode=PHSP --productVersion=18.1 --productPlatform=win32 --appletID=AppsPanel_BL --appletVersion=1.0 --appMode=Uninstall
C:\WINDOWS\system32\tasks\AdobeAAMUpdater-1.0-DESKTOP-S98KBU3-Admin - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{25CDC885-CE70-4DAE-B484-8489B8B26CAE} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - %systemroot%\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunCampaignManager - %windir%\System32\UNP\UNPCampaignManager.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Google Chrome=========
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 2 Adobe Acrobat 15.1.0.6
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky Google 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.11.2
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.3
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5917.424.0.6
Homepage:
default_search_provider.search_url:
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-11-05 748744]
"Cm108Sound"=RunDll32 cm108.cpl,CMICtrlWnd []
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2017-05-22 6153128]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-04-28 483840]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-06-21 1555664]
"Bloody2"=C:\Program Files\Bloody6\Bloody6\Bloody6.exe [2017-03-24 19407360]
"Steam"=C:\Program Files\Steam\steam.exe [2017-06-08 3042592]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2017-06-07 27742168]
"Spotify Web Helper"=C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-06-07 1560176]
"Discord"=C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe [2017-01-04 64290304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\59.0.3071.109\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2017-06-21 20:48:25 ----D---- C:\rsit
2017-06-21 20:48:25 ----D---- C:\Program Files\trend micro
2017-06-21 19:27:58 ----D---- C:\ProgramData\ESET
2017-06-21 19:27:58 ----D---- C:\Program Files\ESET
2017-06-21 19:23:36 ----SHD---- C:\Config.Msi
2017-06-21 15:18:26 ----D---- C:\Users\Admin\AppData\Roaming\Ubisoft
2017-06-21 15:10:54 ----D---- C:\ProgramData\Ubisoft
2017-06-21 15:01:00 ----D---- C:\Program Files\Ubisoft
2017-06-21 15:00:53 ----D---- C:\Users\Admin\AppData\Roaming\InstallShield
2017-06-17 12:48:02 ----AD---- C:\Program Files\Common Files\Skype
2017-06-16 19:49:17 ----D---- C:\Users\Admin\AppData\Roaming\discord
2017-06-15 00:58:35 ----SD---- C:\WINDOWS\UpdateAssistantV2
2017-06-14 14:06:11 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-06-14 14:06:10 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-06-14 14:06:10 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-06-14 14:06:10 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-06-14 14:06:09 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-06-14 14:06:09 ----A---- C:\WINDOWS\system32\tquery.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\ExSMime.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2017-06-14 14:06:07 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-06-14 14:06:07 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-06-14 14:05:56 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-14 14:05:55 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-06-14 14:05:54 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-06-14 14:05:54 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-06-14 14:05:53 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-06-14 14:05:52 ----A---- C:\WINDOWS\system32\OOBEUpdater.exe
2017-06-14 14:05:52 ----A---- C:\WINDOWS\system32\localspl.dll
2017-06-14 14:05:51 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-06-14 14:05:50 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-06-14 14:05:47 ----A---- C:\WINDOWS\system32\shell32.dll
2017-06-14 14:05:47 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-06-14 14:05:46 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-06-14 14:05:44 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\netcorehc.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-06-14 14:05:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-06-14 14:05:42 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-06-14 14:05:42 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\cloudAP.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\HelpPane.exe
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\tcpipcfg.dll
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-06-14 14:05:39 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-06-14 14:05:39 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\dcntel.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\atmlib.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\aepic.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\tzres.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\ImplatSetup.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\HNetCfgClient.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\efscore.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\edputil.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\certutil.exe
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\AuthBrokerUI.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\invagent.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\devinv.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-06-14 14:05:34 ----A---- C:\WINDOWS\system32\fdProxy.dll
2017-06-06 16:54:52 ----D---- C:\Users\Admin\AppData\Roaming\Tunngle
2017-06-06 16:54:49 ----A---- C:\WINDOWS\system32\drivers\tap0901t.sys
2017-06-06 16:54:43 ----D---- C:\ProgramData\Tunngle
2017-06-06 16:54:43 ----AD---- C:\Program Files\Tunngle
2017-06-06 16:09:14 ----D---- C:\Mr DJ
2017-06-06 15:26:30 ----D---- C:\Program Files\Mr DJ
2017-06-06 15:25:07 ----HD---- C:\WINDOWS\msdownld.tmp
2017-06-06 15:24:49 ----D---- C:\WINDOWS\system32\directx
2017-06-06 14:04:45 ----AD---- C:\Program Files\LogMeIn Hamachi
2017-06-06 14:01:05 ----D---- C:\ProgramData\LogMeIn
2017-06-06 13:25:15 ----D---- C:\Users\Admin\AppData\Roaming\uTorrent
2017-05-27 22:18:32 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2017-05-27 22:18:32 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2017-05-27 22:18:31 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2017-05-27 22:18:31 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2017-05-27 22:18:31 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2017-05-27 22:18:30 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2017-05-27 22:18:30 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2017-05-27 22:18:29 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2017-05-27 22:18:29 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2017-05-27 22:18:29 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2017-05-27 22:18:28 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2017-05-27 22:18:28 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2017-05-27 22:18:27 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2017-05-27 22:18:27 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2017-05-27 22:18:27 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2017-05-27 22:18:25 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2017-05-27 22:18:25 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2017-05-27 22:18:25 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2017-05-27 22:18:23 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2017-05-27 22:18:23 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2017-05-27 22:18:23 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2017-05-27 22:18:21 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2017-05-27 22:18:20 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2017-05-27 22:18:18 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2017-05-27 22:18:18 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2017-05-27 22:18:18 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2017-05-27 22:18:16 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2017-05-27 22:18:16 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2017-05-27 22:18:15 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2017-05-27 22:18:15 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2017-05-27 22:18:14 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2017-05-27 22:18:14 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2017-05-27 22:18:13 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2017-05-27 22:18:13 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2017-05-27 22:18:13 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2017-05-27 22:18:11 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2017-05-27 22:18:11 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2017-05-27 22:18:10 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2017-05-27 22:18:10 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2017-05-27 22:18:10 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2017-05-27 22:18:09 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2017-05-27 22:18:08 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2017-05-27 22:18:08 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2017-05-27 22:18:07 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2017-05-27 22:18:07 ----A---- C:\WINDOWS\system32\d3dx10.dll
2017-05-27 22:18:06 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2017-05-27 22:18:06 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2017-05-27 22:18:05 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2017-05-27 22:18:04 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2017-05-27 22:18:04 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2017-05-27 22:18:03 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2017-05-27 22:18:03 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2017-05-27 22:18:02 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2017-05-27 22:17:54 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2017-05-27 22:17:53 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2017-05-27 22:17:53 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2017-05-27 22:17:53 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2017-05-27 22:17:52 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2017-05-27 22:17:51 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2017-05-27 22:17:51 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2017-05-27 22:17:50 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2017-05-27 22:17:50 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2017-05-25 15:39:41 ----D---- C:\Users\Admin\AppData\Roaming\BrawlhallaAir
2017-05-22 20:46:48 ----AD---- C:\Program Files\Johanka z Arku
2017-05-22 16:12:40 ----AH---- C:\WINDOWS\system32\drivers\Hamdrv.sys
2017-05-20 21:20:20 ----D---- C:\Users\Admin\AppData\Roaming\Spotify
2017-05-18 14:35:53 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2017-05-12 12:22:13 ----D---- C:\WINDOWS\system32\UNP
2017-05-12 12:22:13 ----AD---- C:\Program Files\UNP
2017-05-11 10:57:04 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-11 10:57:03 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-11 10:57:02 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-11 10:57:00 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-11 10:56:58 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-11 10:56:57 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-11 10:56:55 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-11 10:56:54 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-11 10:56:54 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-11 10:56:53 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-11 10:56:53 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-11 10:56:48 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-11 10:56:43 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-11 10:56:42 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-11 10:56:41 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-11 10:56:34 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-11 10:56:33 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-11 10:56:31 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-11 10:56:30 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-11 10:56:28 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-11 10:56:27 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-11 10:56:22 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-11 10:56:20 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-11 10:56:20 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-11 10:56:19 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-11 10:56:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-11 10:56:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-11 10:56:13 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-11 10:56:12 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-11 10:56:12 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-11 10:56:12 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-05-11 10:56:10 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-11 10:56:00 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-11 10:56:00 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-11 10:56:00 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-11 10:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-11 10:55:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-11 10:55:56 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-11 10:55:55 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-11 10:55:53 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-11 10:55:51 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-11 10:55:51 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-11 10:55:51 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-11 10:55:48 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-11 10:55:48 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-11 10:55:47 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-11 10:55:47 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-11 10:55:44 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2017-05-11 10:55:40 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-11 10:55:40 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-11 10:55:39 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-11 10:55:38 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-11 10:55:36 ----A---- C:\WINDOWS\system32\olepro32.dll
2017-05-11 10:55:36 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-11 10:55:36 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-11 10:55:35 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-11 10:55:33 ----A---- C:\WINDOWS\explorer.exe
2017-05-11 10:55:32 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-11 10:55:31 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-11 10:55:30 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-11 10:55:28 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-11 10:55:27 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-11 10:55:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-11 10:55:25 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-11 10:55:22 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-11 10:55:21 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-11 10:55:21 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-11 10:55:21 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-11 10:55:20 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-11 10:55:18 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-11 10:55:18 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-11 10:55:17 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-11 10:55:15 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-11 10:55:15 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-11 10:55:15 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\services.exe
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-11 10:55:13 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-11 10:55:13 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-11 10:55:13 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-11 10:55:12 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-11 10:55:12 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-11 10:55:11 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-11 10:55:09 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-05-11 10:55:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-11 10:55:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-11 10:55:06 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-11 10:55:06 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-11 10:55:06 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-11 10:55:05 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-11 10:55:04 ----A---- C:\WINDOWS\system32\winresume.exe
2017-05-11 10:55:04 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-11 10:55:04 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-11 10:55:03 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-11 10:55:03 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-11 10:55:02 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-11 10:55:01 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-11 10:55:01 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-11 10:55:00 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-11 10:54:57 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-11 10:54:53 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-05-11 10:54:53 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-11 10:54:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-11 10:54:51 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-11 10:54:51 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-11 10:54:50 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-11 10:54:50 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-11 10:54:49 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-11 10:54:49 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\termsrv.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-11 10:54:47 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-11 10:54:47 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-11 10:54:47 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-11 10:54:46 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-11 10:54:46 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\setupugc.exe
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\dsreg.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\umpoext.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\ReInfo.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\Dxpserver.exe
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-11 10:54:32 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-11 10:54:31 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-11 10:54:31 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\epfwwfp.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\epfw.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\ekbdflt.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\ehdrv.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\eelam.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\edevmon.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\eamonm.sys
2017-04-24 17:35:53 ----D---- C:\Users\Admin\AppData\Roaming\Macromedia
2017-04-20 21:17:42 ----D---- C:\Program Files\MWSnap
2017-04-19 09:23:42 ----D---- C:\Users\Admin\AppData\Roaming\PDAppFlex
2017-04-19 08:44:37 ----D---- C:\ProgramData\boost_interprocess
2017-04-19 08:40:11 ----D---- C:\ProgramData\Adobe
2017-04-19 08:39:38 ----AD---- C:\Program Files\Adobe
2017-04-19 08:39:37 ----AD---- C:\Program Files\Common Files\Adobe
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Šablony
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Plocha
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Nabídka Start
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Dokumenty
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Data aplikací
2017-04-18 22:10:13 ----SHD---- C:\Documents and Settings
2017-04-18 22:10:12 ----SHD---- C:\Recovery
2017-04-18 22:09:39 ----ASH---- C:\hiberfil.sys
2017-04-18 22:05:23 ----AD---- C:\Program Files\ATI Technologies
2017-04-18 22:05:18 ----D---- C:\ProgramData\Package Cache
2017-04-18 22:05:01 ----D---- C:\AMD
2017-04-18 22:04:58 ----D---- C:\Program Files\Common Files\ATI Technologies
2017-04-18 22:04:54 ----D---- C:\Program Files\AMD
2017-04-18 22:04:46 ----D---- C:\ProgramData\USOShared
2017-04-18 22:04:08 ----AS---- C:\WINDOWS\bootstat.dat
2017-04-18 22:03:58 ----HD---- C:\Program Files\Uninstall Information
2017-04-18 22:03:19 ----D---- C:\WINDOWS\system32\SleepStudy
2017-04-18 22:03:19 ----D---- C:\WINDOWS\ServiceProfiles
2017-04-18 22:03:18 ----SD---- C:\WINDOWS\system32\Microsoft
2017-04-18 22:03:12 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-18 17:06:48 ----D---- C:\WINDOWS\system32\MRT
2017-04-18 17:06:41 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-04-18 15:09:38 ----D---- C:\Program Files\Common Files\Steam
2017-04-18 15:09:35 ----D---- C:\Program Files\Steam
2017-04-18 14:55:10 ----D---- C:\ProgramData\Riot Games
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2017-04-18 14:53:09 ----D---- C:\Riot Games
2017-04-18 14:52:19 ----D---- C:\Users\Admin\AppData\Roaming\Riot Games
2017-04-18 14:49:27 ----RD---- C:\Program Files\Skype
2017-04-18 14:49:24 ----D---- C:\ProgramData\Skype
2017-04-18 14:21:15 ----D---- C:\Program Files\Bloody6
2017-04-18 14:19:23 ----D---- C:\Users\Admin\AppData\Roaming\WinRAR
2017-04-18 14:19:20 ----HD---- C:\Program Files\InstallShield Installation Information
2017-04-18 14:18:59 ----N---- C:\WINDOWS\Vmix108.dll
2017-04-18 14:18:59 ----N---- C:\WINDOWS\system32\Cmeau108.exe
2017-04-18 14:18:54 ----N---- C:\WINDOWS\system32\CmiInstallResAll.dll
2017-04-18 14:18:54 ----N---- C:\WINDOWS\cm108.ini
2017-04-18 14:18:54 ----A---- C:\WINDOWS\difxapi.dll
2017-04-18 14:17:49 ----AD---- C:\Program Files\WinRAR
2017-04-18 13:52:35 ----D---- C:\WINDOWS\InfusedApps
2017-04-18 13:52:28 ----DC---- C:\WINDOWS\Panther
2017-04-18 13:52:18 ----D---- C:\Windows.old
2017-04-18 13:51:54 ----D---- C:\WINDOWS\Setup
2017-04-18 13:50:48 ----A---- C:\WINDOWS\system32\msonpmon.dll
2017-04-18 13:50:40 ----D---- C:\WINDOWS\system32\XPSViewer
2017-04-18 13:50:40 ----D---- C:\WINDOWS\OCR
2017-04-18 13:50:40 ----D---- C:\Program Files\Reference Assemblies
2017-04-18 13:50:40 ----D---- C:\Program Files\MSBuild
2017-04-18 13:50:34 ----D---- C:\Program Files\Microsoft Works
2017-04-18 13:50:26 ----AD---- C:\Program Files\Common Files\DESIGNER
2017-04-18 13:50:20 ----D---- C:\WINDOWS\PCHEALTH
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfi005.dat
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfh005.dat
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfd005.dat
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfc005.dat
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\winrm
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\WCN
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\slmgr
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2017-04-18 13:49:56 ----D---- C:\WINDOWS\system32\en
2017-04-18 13:49:56 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-04-18 13:49:56 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2017-04-18 13:49:55 ----D---- C:\WINDOWS\system32\cs
2017-04-18 13:49:55 ----D---- C:\WINDOWS\system32\0409
2017-04-18 13:49:55 ----D---- C:\WINDOWS\en-US
2017-04-18 13:49:55 ----D---- C:\WINDOWS\DigitalLocker
2017-04-18 13:49:55 ----D---- C:\WINDOWS\cs-CZ
2017-04-18 13:48:29 ----D---- C:\WINDOWS\SHELLNEW
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfi009.dat
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfh009.dat
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfd009.dat
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfc009.dat
2017-04-18 13:48:23 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2017-04-18 13:48:15 ----D---- C:\ProgramData\Microsoft Help
2017-04-18 13:48:15 ----AD---- C:\Program Files\Microsoft Office
2017-04-18 13:47:46 ----RHD---- C:\MSOCache
2017-04-18 13:47:02 ----A---- C:\WINDOWS\system32\NOISE.DAT
2017-04-18 13:47:00 ----A---- C:\WINDOWS\system32\msclmd.dll
2017-04-18 13:46:59 ----A---- C:\WINDOWS\system32\dssec.dat
2017-04-18 13:46:58 ----RSH---- C:\WINDOWS\fonts\StaticCache.dat
2017-04-18 13:46:57 ----ASH---- C:\Program Files\desktop.ini
2017-04-18 13:46:57 ----A---- C:\WINDOWS\win.ini
2017-04-18 13:46:57 ----A---- C:\WINDOWS\system.ini
2017-04-18 13:46:57 ----A---- C:\WINDOWS\fonts\desktop.ini
2017-04-18 13:46:56 ----SD---- C:\WINDOWS\system32\Nui
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Web
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Vss
2017-04-18 13:46:56 ----D---- C:\WINDOWS\twain_32
2017-04-18 13:46:56 ----D---- C:\WINDOWS\tracing
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Temp
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Tasks
2017-04-18 13:46:56 ----D---- C:\WINDOWS\TAPI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\SystemResources
2017-04-18 13:46:56 ----D---- C:\WINDOWS\SystemApps
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\zh-TW
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\zh-HK
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\zh-CN
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WinMetadata
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\winevt
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WinBioDatabase
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WDI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\wbem
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\uk-UA
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\tr-TR
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\th-TH
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Tasks
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sv-SE
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sru
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sppui
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\spp
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\spool
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Speech_OneCore
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Speech
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sl-SI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sk-SK
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\setup
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ru-RU
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ro-RO
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\restore
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Recovery
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\RasToast
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ras
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\pt-PT
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\pt-BR
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ProximityToast
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\PointOfService
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\pl-PL
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\oobe
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\nl-NL
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\networklist
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\NDF
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\nb-NO
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\MUI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\MsDtc
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\MSDRM
2017-04-18 13:46:55 ----SHD---- C:\WINDOWS\Installer
2017-04-18 13:46:55 ----SHD---- C:\Program Files\Windows Sidebar
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\F12
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\dsc
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\DiagSvcs
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\Configuration
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\Downloaded Program Files
2017-04-18 13:46:55 ----SD---- C:\ProgramData\Microsoft
2017-04-18 13:46:55 ----RSD---- C:\WINDOWS\Fonts
2017-04-18 13:46:55 ----RSD---- C:\WINDOWS\assembly
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\PrintDialog
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\Offline Web Pages
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\MiracastView
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\Microsoft.NET
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-04-18 13:46:55 ----RD---- C:\Program Files\Windows Defender
2017-04-18 13:46:55 ----HD---- C:\WINDOWS\ELAMBKUP
2017-04-18 13:46:55 ----HD---- C:\ProgramData
2017-04-18 13:46:55 ----HD---- C:\Program Files\WindowsApps
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Sysprep
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\migwiz
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\migration
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\MailContactsCalendarSync
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Macromed
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\lv-LV
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\lt-LT
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\LogFiles
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Licenses
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ko-KR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ja-JP
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\it-IT
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Ipmi
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\InputMethod
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\inetsrv
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\IME
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\icsxml
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ias
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\hu-HU
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\hr-HR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\he-IL
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\GroupPolicyUsers
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\GroupPolicy
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\FxsTmp
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\fr-FR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\fr-CA
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\fi-FI
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\et-EE
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\es-MX
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\es-ES
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\en-US
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\en-GB
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\el-GR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\drivers\etc
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\downlevel
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Dism
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\de-DE
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\DDFs
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\da-DK
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\cs-CZ
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Com
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\catroot2
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Bthprops
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Boot
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\bg-BG
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ar-SA
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\appraiser
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\AppLocker
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2017-04-18 13:46:55 ----D---- C:\WINDOWS\System
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Speech_OneCore
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Speech
2017-04-18 13:46:55 ----D---- C:\WINDOWS\SKB
2017-04-18 13:46:55 ----D---- C:\WINDOWS\schemas
2017-04-18 13:46:55 ----D---- C:\WINDOWS\SchCache
2017-04-18 13:46:55 ----D---- C:\WINDOWS\ShellExperiences
2017-04-18 13:46:55 ----D---- C:\WINDOWS\security
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Resources
2017-04-18 13:46:55 ----D---- C:\WINDOWS\rescache
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Registration
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Provisioning
2017-04-18 13:46:55 ----D---- C:\WINDOWS\prefetch
2017-04-18 13:46:55 ----D---- C:\WINDOWS\PolicyDefinitions
2017-04-18 13:46:55 ----D---- C:\WINDOWS\PLA
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Performance
2017-04-18 13:46:55 ----D---- C:\WINDOWS\ModemLogs
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Migration
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Media
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Logs
2017-04-18 13:46:55 ----D---- C:\WINDOWS\LiveKernelReports
2017-04-18 13:46:55 ----D---- C:\WINDOWS\L2Schemas
2017-04-18 13:46:55 ----D---- C:\WINDOWS\InputMethod
2017-04-18 13:46:55 ----D---- C:\WINDOWS\IME
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Help
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Globalization
2017-04-18 13:46:55 ----D---- C:\WINDOWS\GameBarPresenceWriter
2017-04-18 13:46:55 ----D---- C:\WINDOWS\diagnostics
2017-04-18 13:46:55 ----D---- C:\WINDOWS\debug
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Cursors
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Branding
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Boot
2017-04-18 13:46:55 ----D---- C:\WINDOWS\bcastdvr
2017-04-18 13:46:55 ----D---- C:\WINDOWS\AppReadiness
2017-04-18 13:46:55 ----D---- C:\WINDOWS\apppatch
2017-04-18 13:46:55 ----D---- C:\WINDOWS\appcompat
2017-04-18 13:46:55 ----D---- C:\WINDOWS\addins
2017-04-18 13:46:55 ----D---- C:\ProgramData\USOPrivate
2017-04-18 13:46:55 ----D---- C:\ProgramData\SoftwareDistribution
2017-04-18 13:46:55 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2017-04-18 13:46:55 ----D---- C:\ProgramData\Comms
2017-04-18 13:46:55 ----D---- C:\Program Files\WindowsPowerShell
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Portable Devices
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Photo Viewer
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows NT
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Multimedia Platform
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Media Player
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Mail
2017-04-18 13:46:55 ----D---- C:\Program Files\Microsoft.NET
2017-04-18 13:46:55 ----D---- C:\Program Files\Internet Explorer
2017-04-18 13:46:55 ----D---- C:\Program Files\Common Files\System
2017-04-18 13:46:55 ----D---- C:\Program Files\Common Files\Services
2017-04-18 13:46:55 ----D---- C:\PerfLogs
2017-04-18 13:46:55 ----AD---- C:\Program Files\Common Files\Microsoft Shared
2017-04-18 13:46:40 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-04-18 13:46:39 ----D---- C:\WINDOWS\system32\drivers
2017-04-18 13:45:39 ----D---- C:\WINDOWS\INF
2017-04-18 13:40:18 ----D---- C:\WINDOWS\CbsTemp
2017-04-18 13:39:07 ----RD---- C:\Users
2017-04-18 13:39:07 ----RD---- C:\Program Files
2017-04-18 13:39:07 ----D---- C:\WINDOWS\WinSxS
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\SMI
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\DriverStore
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\config
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\CatRoot
2017-04-18 13:39:07 ----D---- C:\WINDOWS\System32
2017-04-18 13:39:07 ----D---- C:\WINDOWS\servicing
2017-04-18 13:39:07 ----D---- C:\Windows
2017-04-18 13:39:07 ----D---- C:\Program Files\Common Files
2017-04-18 13:28:25 ----D---- C:\Program Files\Google
2017-04-18 13:26:28 ----D---- C:\Users\Admin\AppData\Roaming\Skype
2017-04-18 13:25:37 ----D---- C:\Users\Admin\AppData\Roaming\ATI
2017-04-18 13:25:37 ----D---- C:\ProgramData\ATI
2017-04-18 13:25:35 ----D---- C:\ProgramData\Microsoft OneDrive
2017-04-18 13:24:17 ----SHD---- C:\$RECYCLE.BIN
2017-04-18 13:23:51 ----D---- C:\Users\Admin\AppData\Roaming\Adobe
2017-04-18 13:23:40 ----SD---- C:\Users\Admin\AppData\Roaming\Microsoft
2017-04-18 13:14:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-18 13:11:21 ----D---- C:\WINDOWS\SoftwareDistribution
2017-04-18 12:31:10 ----HD---- C:\$SysReset
2017-04-12 16:57:55 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-04-12 16:57:55 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-04-12 16:57:55 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-04-12 16:57:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-04-12 16:57:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-04-12 16:57:16 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-04-12 16:57:16 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-04-12 16:57:14 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-04-12 16:57:10 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-04-12 16:57:09 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2017-04-12 16:57:07 ----A---- C:\WINDOWS\system32\sbe.dll
2017-04-12 16:57:07 ----A---- C:\WINDOWS\system32\RADCUI.dll
2017-04-12 16:57:04 ----A---- C:\WINDOWS\system32\wscapi.dll
2017-04-12 16:57:04 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2017-04-12 16:57:04 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-04-12 16:56:55 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2017-04-12 16:56:46 ----A---- C:\WINDOWS\system32\psmsrv.dll
2017-04-12 16:56:44 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-04-12 16:56:40 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-04-12 16:56:40 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-04-12 16:56:39 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-04-12 16:56:39 ----A---- C:\WINDOWS\system32\netshell.dll
2017-04-12 16:56:38 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-04-12 16:56:38 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-04-12 16:56:37 ----A---- C:\WINDOWS\system32\mspaint.exe
2017-04-12 16:56:34 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-04-12 16:56:34 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-12 16:56:33 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-04-12 16:56:33 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-04-12 16:56:32 ----A---- C:\WINDOWS\system32\mos.dll
2017-04-12 16:56:29 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-04-12 16:56:29 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-04-12 16:56:24 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-04-12 16:56:24 ----A---- C:\WINDOWS\system32\InputService.dll
2017-04-12 16:56:04 ----A---- C:\WINDOWS\system32\apds.dll
2017-04-12 16:56:03 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-04-12 16:56:03 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\wer.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2017-04-12 16:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-04-12 16:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-04-12 16:55:59 ----A---- C:\WINDOWS\system32\quartz.dll
2017-04-12 16:55:58 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-04-12 16:55:58 ----A---- C:\WINDOWS\system32\FontProvider.dll
2017-04-12 16:55:58 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-04-12 16:55:57 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-04-12 16:55:56 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-04-12 16:55:56 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-04-12 16:55:56 ----A---- C:\WINDOWS\system32\dafpos.dll
2017-04-12 16:55:55 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2017-04-12 16:55:55 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-04-12 16:55:54 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-04-12 16:55:54 ----A---- C:\WINDOWS\system32\cdp.dll
2017-04-12 16:55:51 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2017-04-12 16:55:51 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2017-04-12 16:55:49 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-04-12 16:55:49 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2017-04-12 16:55:26 ----A---- C:\WINDOWS\system32\drivers\BasicDisplay.sys
2017-04-01 00:53:18 ----A---- C:\WINDOWS\system32\UNPUXWorker.exe
======List of files/folders modified in the last 3 months======
2017-06-21 14:42:53 ----SHD---- C:\System Volume Information
2017-06-07 22:39:24 ----HD---- C:\$WINDOWS.~BT
2017-04-18 13:44:09 ----A---- C:\WINDOWS\system32\drivers\SET5D25.tmp
2017-04-18 13:44:09 ----A---- C:\WINDOWS\system32\drivers\SET5D05.tmp
2017-04-18 13:44:09 ----A---- C:\WINDOWS\system32\drivers\SET5CF4.tmp
2017-04-18 13:43:01 ----A---- C:\WINDOWS\system32\drivers\SET6575.tmp
2017-04-18 13:42:51 ----A---- C:\WINDOWS\system32\drivers\SET65C4.tmp
2017-04-18 13:42:03 ----A---- C:\WINDOWS\system32\drivers\SET64D8.tmp
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2017-05-04 90656]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 42336]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2017-05-04 113544]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2017-05-04 139384]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2017-05-04 69304]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2017-05-04 86504]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 58368]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2017-05-04 43920]
R2 Parvdm;Parvdm; C:\WINDOWS\System32\drivers\parvdm.sys [2016-07-16 9216]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-16 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-16 542192]
R3 AtiHDAudioService;@oem1.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2016-04-18 91160]
R3 Hamachi;@oem14.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2017-05-22 38512]
R3 MTsensor;@oem0.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\System32\drivers\ASACPI.sys [2004-08-13 5810]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2016-07-16 494080]
R3 tap0901t;@oem15.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\System32\drivers\tap0901t.sys [2016-04-26 44216]
R3 USBPNPA;@oem13.inf,%CM108.SvcDesc%;USB PnP Sound Device Interface; C:\WINDOWS\system32\drivers\CM108.sys [2017-04-18 3234816]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2017-05-04 14368]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 56672]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 12800]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 12288]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2016-07-16 22016]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 25600]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2016-07-16 61936]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 30208]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 94720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 62976]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 76800]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2016-07-16 92672]
S3 ViaC7;@cpu.inf,%ViaC7.SvcDesc%;VIA C7 Processor Driver; C:\WINDOWS\System32\drivers\viac7.sys [2016-07-16 105984]
S3 vmgid;@wvmgid.inf,%VmGid.SVCDESC%;Microsoft Hyper-V Guest Infrastructure Driver; C:\WINDOWS\System32\drivers\vmgid.sys [2016-07-16 8704]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2017-05-18 2246256]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-16 223216]
R2 CDPUserSvc_23af0;CDPUserSvc_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2017-04-26 2069936]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2017-05-22 2616744]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [2016-05-27 405424]
R2 OneSyncSvc_23af0;Hostitel synchronizace_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2017-04-05 317400]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_23af0;Služba zasílání zpráv_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc_23af0;Data kontaktů_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
S3 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2016-12-15 838128]
S3 UnistoreSvc_23af0;Úložiště uživatelských dat_23af0; C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 UserDataSvc_23af0;Přístup k uživatelským datům_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------