VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

poprosil by som o preventívu PC

https://forum.viry.cz:443/viewtopic.php?t=152865

Stránka 1 z 1

poprosil by som o preventívu PC

Napsal: 17 zář 2017 10:11
od bondasko
lock

Re: poprosil by som o preventívu PC

Napsal: 18 zář 2017 05:00
od bondasko
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {2E38825B-8815-42CF-9126-C58BC28D4591} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_141\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_141\bin\jp2ssv.dll
O3 - Toolbar: Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O4 - HKLM\..\Run: [ACSW14EN] "C:\Program Files (x86)\ACD Systems\ACDSee\14.0\ACDSeeInTouch2.exe" /pid ACSW14EN
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [BID Drop Box] "C:\Program Files (x86)\Bulk Image Downloader\BIDDropBox.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: MultiSkypeLauncher.lnk = C:\Program Files (x86)\MultiSkypeLauncher\MultiSkypeLauncher.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus 17.0.0 (AVP17.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\WINDOWS\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: klvssbrigde64 - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe
O23 - Service: Služba Kaspersky Secure Connection 1.0.0 (KSDE1.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - E:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - E:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @oem13.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\WINDOWS\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10730 bytes

====== Enumerating Processes ======

c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
c:\windows\system32\svchost.exe -k localservice -s FontCache
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
c:\windows\system32\svchost.exe -k localservice -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
c:\windows\system32\svchost.exe -k localservice -s netprofm
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k netsvcs -s Themes
c:\windows\system32\svchost.exe -k localservice -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8ac8dfce-8817-4889-b73c-2f8091174f4d -SystemEventPortName:HostProcess-20002a0b-d805-458f-b956-4048e17d7d5a -IoCancelEventPortName:HostProcess-932fec1a-4fde-44d0-896c-afe56b1c32b0 -NonStateChangingEventPortName:HostProcess-22ea5c88-995e-43fa-a259-c17f9e60d18d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d17b0806-7166-468f-9a4e-5d7184112c2d -DeviceGroupId:WpdFsGroup
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc
c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe" -r
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
c:\windows\system32\svchost.exe -k netsvcs -s IKEEXT
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -s WpnService
C:\WINDOWS\system32\EscSvc64.exe
c:\windows\system32\viakaraokesrv.exe
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer
"E:\Program Files (x86)\Origin\OriginWebHelperService.exe"
c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe"
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -s PolicyAgent
c:\windows\system32\svchost.exe -k netsvcs -s BITS
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s StorSvc
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -s LicenseManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DsSvc
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\system32\AUDIODG.EXE 0x338
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -s WdiSystemHost
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
C:\WINDOWS\System32\fontdrvhost.exe
C:\WINDOWS\System32\dwm.exe
C:\WINDOWS\system32\atieclxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s lmhosts
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
c:\windows\system32\taskhostw.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe atlogon
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe" -hidden
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\dinic\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=60.0.3112.113 --initial-client-data=0x1e4,0x1e8,0x1ec,0x1e0,0x1f0,0x7fff863129b8,0x7fff863129f8,0x7fff863129d0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=3464 --on-initialized-event-handle=644 --parent-handle=648 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1416,1672674753058016508,15829506476141920873,131072 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,20,21,24,43,77 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x1002 --gpu-device-id=0x683d --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=22.19.676.0 --gpu-driver-date=9-5-2017 --service-request-channel-token=E3A9B8C010D6D69DC906D070B0FF91F2 --mojo-platform-channel-handle=1432 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416,1672674753058016508,15829506476141920873,131072 --service-pipe-token=742BADBC69B24456D274886A0D7DD6A9 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=742BADBC69B24456D274886A0D7DD6A9 --renderer-client-id=4 --mojo-platform-channel-handle=3060 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k netsvcs -s wlidsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s NgcCtnrSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416,1672674753058016508,15829506476141920873,131072 --service-pipe-token=B23F0CFA95621307151377930C51570D --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=B23F0CFA95621307151377930C51570D --renderer-client-id=9 --mojo-platform-channel-handle=4904 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416,1672674753058016508,15829506476141920873,131072 --service-pipe-token=69B8B009BEC24A26C9DA26BBEAF4F109 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=69B8B009BEC24A26C9DA26BBEAF4F109 --renderer-client-id=10 --mojo-platform-channel-handle=6276 /prefetch:1
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416,1672674753058016508,15829506476141920873,131072 --service-pipe-token=CAF504C7EF7A5A01C2E1148455A63CBA --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=CAF504C7EF7A5A01C2E1148455A63CBA --renderer-client-id=11 --mojo-platform-channel-handle=7036 /prefetch:1
"C:\totalcmd\TOTALCMD64.EXE"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe17_ Global\UsGthrCtrlFltPipeMssGthrPipe17 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 688 692 700 8192 696
c:\windows\system32\svchost.exe -k unistacksvcgroup
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
"C:\Users\dinic\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

====== Scheduled tasks folder ======

C:\WINDOWS\tasks\EPSON L365 Series Update {E5BF7449-DAF8-42EE-8D76-738A2B92FBBE}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE /EXE:"{E5BF7449-DAF8-42EE-8D76-738A2B92FBBE}" /F:"Update"
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\EPSON L365 Series Update {E5BF7449-DAF8-42EE-8D76-738A2B92FBBE} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE /EXE:"{E5BF7449-DAF8-42EE-8D76-738A2B92FBBE}" /F:"Update"
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} - C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe /waitUpgrade
C:\WINDOWS\system32\tasks\Opera scheduled Autoupdate 1499259165 - C:\Program Files\Opera\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\StartCN - "C:\Program Files\AMD\CNext\CNext\cncmd.exe" startwithdelay
C:\WINDOWS\system32\tasks\S-1-5-21-2739283124-1637116210-1909557425-1001\DataSenseLiveTileTask - %SystemRoot%\System32\DataUsageLiveTileTask.exe
C:\WINDOWS\system32\tasks\Nero\Nero Info - "C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe" -shedul
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install - %systemroot%\system32\usoclient.exe ScanInstallWait
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant - %windir%\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:Th1Eos:{}
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun - %windir%\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:Th1Eos:{} /CalendarRun
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon - C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration - C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe

=========Google Chrome=========

C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentácie Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Web Store 0.2
Extension aknpkdffaafgjchaibgeefbgmgeghloj
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabuľky Google 1.1
Extension fhoibnponjcgjgcnfacekaijdbbplhib 0 Kaspersky Protection 5.0.141.4
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google v režime offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.15.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension lneaknkopdijkpnocmklfnjbeapigfbh 0 Mapy Google 5.4.1
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension mihcahmgecmbnbcchbopgniflfhgnkff 1 Kontrola pošty Google 4.4.0
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.4
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.3
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 6017.605.1.4
Homepage: http://www.google.sk/
default_search_provider.search_url:
C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib]
"Path"=https://chrome.google.com/webstore/deta ... ijdbbplhib


======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2017-05-06 1253736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-09-04 210120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-09-04 3226824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201CF130-E29C-4E5C-A73F-CD197DEFA6AE}]
E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-05-06 1028968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_141\bin\ssv.dll [2017-07-25 473664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_141\bin\jp2ssv.dll [2017-07-25 187968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{093F479D-712E-46CD-9E06-62E734A05F68} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2017-05-06 1253736]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{093F479D-712E-46CD-9E06-62E734A05F68} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-05-06 1028968]
{201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 629152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2017-07-03 5094080]
"BID Drop Box"=C:\Program Files (x86)\Bulk Image Downloader\BIDDropBox.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ACSW14EN"=C:\Program Files (x86)\ACD Systems\ACDSee\14.0\ACDSeeInTouch2.exe [2011-09-20 1231472]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2016-01-20 1087184]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-07-12 587288]

C:\Users\dinic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MultiSkypeLauncher.lnk - C:\Program Files (x86)\MultiSkypeLauncher\MultiSkypeLauncher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2017-09-18 05:58:00 ----D---- C:\Program Files\trend micro
2017-09-18 05:57:59 ----D---- C:\rsit
2017-09-17 11:09:13 ----D---- C:\FRST
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\d3dx10.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2017-09-16 14:45:42 ----D---- C:\WINDOWS\SYSWOW64\directx
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-09-13 16:22:49 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-09-13 16:22:49 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-09-13 16:22:49 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2017-09-13 16:22:49 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\RstrtMgr.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\CredentialUIBroker.exe
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-09-13 16:22:45 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-09-13 16:22:43 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\dinput8.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\tbs.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2017-09-13 16:22:41 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2017-09-13 16:22:41 ----A---- C:\WINDOWS\system32\BthHFSrv.dll
2017-09-13 16:22:40 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2017-09-13 16:22:40 ----A---- C:\WINDOWS\SYSWOW64\dinput.dll
2017-09-13 16:22:40 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-09-13 16:22:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2017-09-13 16:22:39 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2017-09-13 16:22:39 ----A---- C:\WINDOWS\SYSWOW64\ntprint.exe
2017-09-13 16:22:39 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-13 16:22:36 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-09-13 16:22:36 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-09-13 16:22:36 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-09-13 16:22:34 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-09-13 16:22:34 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-09-13 16:22:34 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-09-13 16:22:33 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-13 16:22:33 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-09-13 16:22:32 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-13 16:22:32 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2017-09-13 16:22:32 ----A---- C:\WINDOWS\system32\cryptngc.dll
2017-09-13 16:22:31 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2017-09-13 16:22:31 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2017-09-13 16:22:31 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2017-09-13 16:22:30 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-09-13 16:22:30 ----A---- C:\WINDOWS\system32\ngcrecovery.dll
2017-09-13 16:22:30 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-13 16:22:29 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-09-13 16:22:29 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-09-13 16:22:29 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-09-13 16:22:25 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-09-13 16:22:25 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-09-13 16:22:25 ----A---- C:\WINDOWS\system32\localspl.dll
2017-09-13 16:22:25 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-09-13 16:22:24 ----A---- C:\WINDOWS\system32\offreg.dll
2017-09-13 16:22:24 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-09-13 16:22:24 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-09-13 16:22:24 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-09-13 16:22:23 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\rasgcw.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\rasdlg.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\nettrace.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\mfps.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\mfds.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\SEMgrPS.dll
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\rasplap.dll
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\ntprint.exe
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\inetpp.dll
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2017-09-13 16:22:20 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\wermgr.exe
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\wersvc.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\WerFault.exe
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\wer.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\wc_storage.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\Faultrep.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-13 16:22:17 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-09-13 16:22:17 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-09-13 16:22:16 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-13 16:22:16 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\datamarketsvc.dll
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\vss_ps.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-09-13 16:22:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-13 16:22:12 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\NotificationController.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\RstrtMgr.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\msIso.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-13 16:22:09 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-09-13 16:22:09 ----A---- C:\WINDOWS\system32\twinui.dll
2017-09-13 16:22:09 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-09-13 16:22:09 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-09-13 16:22:08 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-09-13 16:22:08 ----A---- C:\WINDOWS\system32\wininet.dll
2017-09-13 16:22:08 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-13 16:22:08 ----A---- C:\WINDOWS\explorer.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\combase.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\cldapi.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\winsrvext.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\werui.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\werconcpl.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2017-09-13 16:22:04 ----A---- C:\WINDOWS\system32\shell32.dll
2017-09-13 16:22:03 ----A---- C:\WINDOWS\system32\wpx.dll
2017-09-13 16:22:03 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-09-13 16:22:03 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-09-13 16:22:03 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\netlogon.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-09-13 16:22:01 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-09-13 16:22:01 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-09-13 16:22:01 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-09-13 16:22:01 ----A---- C:\WINDOWS\system32\bcdedit.exe
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\wevtapi.dll
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\wisp.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\user32.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\tpmvsc.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\tdh.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\propsys.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\PhoneService.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\httpprxm.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\win32u.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\tbs.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\setupapi.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\profsvc.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\nltest.exe
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\dsreg.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\dinput8.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\csplte.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\wups.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\win32k.sys
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\srpapi.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\shdocvw.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\rasman.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\dinput.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\dab.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\authz.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\appinfo.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\detoured.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\system32\OpenCL.dll
2017-09-06 21:07:07 ----D---- C:\Users\dinic\AppData\Roaming\Photoactions
2017-09-06 21:02:57 ----D---- C:\Program Files (x86)\Bulk Image Downloader
2017-09-06 20:58:29 ----D---- C:\Users\dinic\AppData\Roaming\VOWSoft
2017-09-06 20:58:26 ----D---- C:\Program Files (x86)\PicaLoader
2017-08-29 12:26:56 ----D---- C:\WINDOWS\Panther
2017-08-29 12:26:54 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT

====== List of files/folders modified in the last 1 month ======

2017-09-18 05:58:07 ----D---- C:\WINDOWS\Prefetch
2017-09-18 05:58:00 ----RD---- C:\Program Files
2017-09-18 05:55:53 ----D---- C:\WINDOWS\Temp
2017-09-18 05:55:52 ----D---- C:\WINDOWS\system32\sru
2017-09-18 05:55:50 ----D---- C:\ProgramData\Kaspersky Lab
2017-09-17 22:29:49 ----D---- C:\WINDOWS\system32\SleepStudy
2017-09-17 22:29:17 ----D---- C:\Users\dinic\AppData\Roaming\uTorrent
2017-09-17 11:30:42 ----D---- C:\WINDOWS\system32\Tasks
2017-09-17 11:30:42 ----D---- C:\Program Files\Common Files\AV
2017-09-17 11:30:40 ----RD---- C:\WINDOWS\Microsoft.NET
2017-09-17 11:19:17 ----D---- C:\WINDOWS\System32
2017-09-17 11:19:17 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-17 11:15:08 ----SHD---- C:\System Volume Information
2017-09-17 11:14:17 ----D---- C:\WINDOWS\system32\catroot2
2017-09-17 11:10:03 ----D---- C:\Windows
2017-09-17 11:08:17 ----D---- C:\Users\dinic\AppData\Roaming\Skype
2017-09-17 10:42:51 ----AD---- C:\Program Files (x86)\TeamViewer
2017-09-16 15:52:30 ----RD---- C:\Program Files (x86)
2017-09-16 14:46:44 ----D---- C:\WINDOWS\SysWOW64
2017-09-16 14:46:34 ----RSD---- C:\WINDOWS\assembly
2017-09-16 14:45:42 ----D---- C:\WINDOWS\Logs
2017-09-16 11:20:37 ----D---- C:\WINDOWS\rescache
2017-09-15 09:32:18 ----D---- C:\WINDOWS\LiveKernelReports
2017-09-15 09:32:16 ----D---- C:\WINDOWS\INF
2017-09-14 17:09:59 ----D---- C:\WINDOWS\system32\config
2017-09-14 17:08:01 ----D---- C:\WINDOWS\system32\DriverStore
2017-09-14 14:01:38 ----D---- C:\WINDOWS\WinSxS
2017-09-14 13:22:15 ----D---- C:\WINDOWS\AppReadiness
2017-09-14 13:22:14 ----HD---- C:\Program Files\WindowsApps
2017-09-14 13:18:21 ----AD---- C:\Program Files\WinRAR
2017-09-13 20:37:09 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-09-13 20:37:09 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-09-13 20:37:09 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2017-09-13 20:37:09 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-09-13 20:37:09 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-09-13 20:37:08 ----SD---- C:\WINDOWS\system32\F12
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\wbem
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\sk-SK
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\sk
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\setup
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\en-US
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\drivers
2017-09-13 20:37:07 ----D---- C:\WINDOWS\ShellExperiences
2017-09-13 20:37:07 ----D---- C:\Program Files\Windows Photo Viewer
2017-09-13 20:37:07 ----D---- C:\Program Files\Windows Mail
2017-09-13 20:37:07 ----D---- C:\Program Files\Internet Explorer
2017-09-13 20:37:07 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 20:37:07 ----D---- C:\Program Files (x86)\Windows Mail
2017-09-13 20:37:07 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 16:25:45 ----D---- C:\WINDOWS\system32\MRT
2017-09-13 16:24:48 ----D---- C:\WINDOWS\debug
2017-09-13 16:24:45 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-09-13 16:24:43 ----D---- C:\WINDOWS\CbsTemp
2017-09-10 11:39:20 ----D---- C:\WINDOWS\system32\CatRoot
2017-09-10 11:38:55 ----SHDC---- C:\WINDOWS\Installer
2017-09-10 11:38:55 ----SHD---- C:\Config.Msi
2017-09-10 11:37:50 ----AD---- C:\Program Files\AMD
2017-09-10 11:36:22 ----D---- C:\AMD
2017-09-10 10:47:04 ----D---- C:\Users\dinic\AppData\Roaming\Epson
2017-09-09 17:50:10 ----D---- C:\ProgramData\Skype
2017-09-09 17:50:08 ----RD---- C:\Program Files (x86)\Skype
2017-09-09 17:50:08 ----D---- C:\Program Files (x86)\Common Files
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\RapidFireServer.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\Rapidfire.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\GameManager32.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\RapidFireServer64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\Rapidfire64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\mantle64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\GameManager64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\dgtrayicon.exe
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\coinst_17.30.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\clinfo.exe
2017-09-07 17:37:36 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2017-09-07 17:37:36 ----A---- C:\WINDOWS\system32\atisamu64.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2017-09-07 17:37:34 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atimuixx.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atimpc64.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atig6txx.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atieclxx.exe
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atieah64.exe
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atidxx64.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\SYSWOW64\amfrt32.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\atidemgy.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\aticfx64.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\ati2erec.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\amfrt64.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\SYSWOW64\amdvlk32.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\system32\amdxc64.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\system32\amdvlk64.dll
2017-09-07 17:37:28 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2017-09-07 17:37:28 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\SYSWOW64\amdmcl32.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\system32\amdmcl64.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\system32\amdlvr64.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\amd-vulkan32.json
2017-09-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\system32\amd-vulkan64.json
2017-09-07 17:37:22 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\system32\amdave64.dll
2017-09-06 21:03:07 ----SD---- C:\Users\dinic\AppData\Roaming\Microsoft
2017-09-06 18:52:40 ----D---- C:\Users\dinic\AppData\Roaming\TeamViewer
2017-09-04 08:33:02 ----AD---- C:\Program Files (x86)\Microsoft Office
2017-09-03 15:56:17 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-09-02 17:15:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-08-29 21:15:28 ----D---- C:\Users\dinic\AppData\Roaming\MPC-HC
2017-08-29 12:33:57 ----D---- C:\WINDOWS\SoftwareDistribution
2017-08-29 12:33:55 ----D---- C:\WINDOWS\system32\LogFiles
2017-08-29 11:11:14 ----D---- C:\Users\dinic\AppData\Roaming\Origin
2017-08-29 11:10:53 ----D---- C:\ProgramData\Origin
2017-08-29 11:08:58 ----AD---- C:\Program Files\Opera
2017-08-29 11:01:16 ----D---- C:\ProgramData\Epson
2017-08-26 16:12:08 ----D---- C:\Program Files (x86)\VulkanRT
2017-08-24 19:41:26 ----A---- C:\WINDOWS\system32\SET7BFD.tmp
2017-08-24 19:41:26 ----A---- C:\WINDOWS\system32\SET1545.tmp
2017-08-24 19:41:22 ----A---- C:\WINDOWS\system32\SET7618.tmp
2017-08-24 19:41:22 ----A---- C:\WINDOWS\system32\SET7606.tmp
2017-08-24 19:41:20 ----A---- C:\WINDOWS\system32\SET1203.tmp

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit); C:\WINDOWS\system32\DRIVERS\cm_km.sys [2016-06-10 238936]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 49568]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2016-06-02 554416]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [2016-06-07 63920]
R0 klupd_klif_arkmon;klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [2017-07-05 229288]
R0 klupd_klif_klbg;klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [2017-07-05 112912]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\WINDOWS\system32\DRIVERS\klbackupflt.sys [2016-06-15 86352]
R1 klhk;@oem31.inf,%klhkDisplayName%;Kaspersky Lab service driver; C:\WINDOWS\System32\drivers\klhk.sys [2017-07-25 520152]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2017-07-25 1021624]
R1 KLIM6;@oem15.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2017-05-06 57424]
R1 klpd;Kaspersky Lab format recognizer driver; C:\WINDOWS\system32\DRIVERS\klpd.sys [2016-05-31 45488]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2016-06-18 85320]
R1 Klwtp;KLwtp - WFP callout traffic inspector; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2017-05-06 136416]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2017-07-25 199640]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 14336]
R2 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2016-05-31 78216]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0317685.inf_amd64_f4ed8f05a31c5d2d\atikmdag.sys [2017-09-07 38761496]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0317685.inf_amd64_f4ed8f05a31c5d2d\atikmpag.sys [2017-09-07 541720]
R3 AtiHDAudioService;@oem12.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2016-12-12 110088]
R3 dtlitescsibus;@oem10.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2017-07-05 30264]
R3 dtliteusbbus;@oem11.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2017-07-05 47672]
R3 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2017-07-25 197312]
R3 klids;klids; \??\C:\ProgramData\Kaspersky Lab\AVP17.0.0\Bases\klids.sys [2017-09-17 186696]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2016-05-19 52136]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2015-06-07 41656]
R3 kltap;@oem19.inf,%DeviceDescription%;Kaspersky Security Data Escort Adapter; C:\WINDOWS\System32\drivers\kltap.sys [2016-06-07 52152]
R3 klupd_klif_kimul;klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [2017-07-10 87584]
R3 klupd_klif_klark;klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [2017-07-05 251656]
R3 klupd_klif_mark;klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [2017-07-05 173144]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2017-03-18 121344]
S0 amdkmafd;@oem6.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2016-08-18 49448]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2016-03-31 28792]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 64416]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-03-18 91040]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 12288]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 17920]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 53664]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-03-18 74648]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-03-18 347032]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-03-18 2104224]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-03-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-03-18 85504]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-03-18 168448]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 36864]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-03-18 120320]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 51104]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 122368]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2017-06-08 118784]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-03-18 80896]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-03-18 101376]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2017-03-18 1735584]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-03-18 31128]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-03-20 40352]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2017-09-07 552472]
R2 AVP17.0.0;Služba Kaspersky Anti-Virus 17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [2016-06-28 241544]
R2 CDPUserSvc_7d3faa;Connected Devices Platform User Service_7d3faa; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-08-28 4424384]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 EpsonScanSvc;Epson Scanner Service; C:\WINDOWS\system32\EscSvc64.exe [2012-05-17 144560]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
R2 OneSyncSvc_7d3faa;Sync Host_7d3faa; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 Origin Web Helper Service;Origin Web Helper Service; E:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-07-26 3148128]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-07-07 336320]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-08-29 10803440]
R3 PimIndexMaintenanceSvc_7d3faa;Kontaktné údaje_7d3faa; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\TokenBroker.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_7d3faa;DevicesFlow_7d3faa; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2017-07-03 2289856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 klvssbrigde64;klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe [2016-06-28 77328]
S3 KSDE1.0.0;Služba Kaspersky Secure Connection 1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [2016-06-28 241544]
S3 MessagingService_7d3faa;MessagingService_7d3faa; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 Origin Client Service;Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2017-07-26 2168672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-08-28 213696]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-03-18 891904]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-09-07 1610016]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------

Re: poprosil by som o preventívu PC

Napsal: 20 zář 2017 16:30
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Log RSIT jste zaslal bez hlavičky. Tu potřebuji vidět mj. proto, abych věděl, jaký máte oper. systém.

Re: poprosil by som o preventívu PC

Napsal: 20 zář 2017 19:08
od bondasko
posielam este raz RSIT: (vdaka za pripojenie sa do temy, uz som myslel ze sa nikto nepripoji, tak preto som to pomazal)

RSIT:

Logfile of random's system information tool 1.16 (written by random/random)
Run by Michal a Janka at 2017-09-20 20:06:14
Microsoft Windows 10 Home
System drive C: has 48 GB (56%) free of 85 GB
Total RAM: 8154 MB (66% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:06:16, on 20. 09. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0608)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
E:\Program Files (x86)\Steam\steam.exe
E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files\trend micro\Michal a Janka_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {2E38825B-8815-42CF-9126-C58BC28D4591} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_141\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_141\bin\jp2ssv.dll
O3 - Toolbar: Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O4 - HKLM\..\Run: [ACSW14EN] "C:\Program Files (x86)\ACD Systems\ACDSee\14.0\ACDSeeInTouch2.exe" /pid ACSW14EN
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [BID Drop Box] "C:\Program Files (x86)\Bulk Image Downloader\BIDDropBox.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: MultiSkypeLauncher.lnk = C:\Program Files (x86)\MultiSkypeLauncher\MultiSkypeLauncher.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus 17.0.0 (AVP17.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\WINDOWS\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: klvssbrigde64 - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe
O23 - Service: Služba Kaspersky Secure Connection 1.0.0 (KSDE1.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - E:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - E:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @oem13.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\WINDOWS\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10969 bytes

====== Enumerating Processes ======

c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
c:\windows\system32\svchost.exe -k localservice -s FontCache
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
c:\windows\system32\svchost.exe -k localservice -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
c:\windows\system32\svchost.exe -k localservice -s netprofm
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k netsvcs -s Themes
c:\windows\system32\svchost.exe -k localservice -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8ac8dfce-8817-4889-b73c-2f8091174f4d -SystemEventPortName:HostProcess-20002a0b-d805-458f-b956-4048e17d7d5a -IoCancelEventPortName:HostProcess-932fec1a-4fde-44d0-896c-afe56b1c32b0 -NonStateChangingEventPortName:HostProcess-22ea5c88-995e-43fa-a259-c17f9e60d18d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d17b0806-7166-468f-9a4e-5d7184112c2d -DeviceGroupId:WpdFsGroup
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc
c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe" -r
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
c:\windows\system32\svchost.exe -k netsvcs -s IKEEXT
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -s WpnService
C:\WINDOWS\system32\EscSvc64.exe
c:\windows\system32\viakaraokesrv.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer
"E:\Program Files (x86)\Origin\OriginWebHelperService.exe"
c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe"
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -s PolicyAgent
c:\windows\system32\svchost.exe -k netsvcs -s BITS
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s StorSvc
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -s LicenseManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DsSvc
C:\WINDOWS\system32\dashost.exe
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
C:\WINDOWS\System32\fontdrvhost.exe
C:\WINDOWS\System32\dwm.exe
C:\WINDOWS\system32\atieclxx.exe
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
c:\windows\system32\taskhostw.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s lmhosts
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe atlogon
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe" -hidden
"C:\Program Files\Windows Defender\MSASCuiL.exe"
c:\windows\system32\svchost.exe -k unistacksvcgroup
"E:\Program Files (x86)\Steam\steam.exe" "steam://install/308040"
"E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" "-lang=cs_CZ" "-cachedir=C:\Users\dinic\AppData\Local\Steam\htmlcache" "-steampid=2436" "-buildid=1504757234" "-steamid=0" "-clientui=E:\Program Files (x86)\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --enable-blink-features=ResizeObserver --disable-smooth-scrolling --disable-gpu-compositing --disable-gpu --enable-direct-write "--log-file=E:\Program Files (x86)\Steam\logs\cef_log.txt"
"E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\dinic\AppData\Local\CEF\User Data\Crashpad" "--metrics-dir=C:\Users\dinic\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win32 --annotation=product=cefwebhelper --annotation=version=1.0 --initial-client-data=0x2f0,0x2f4,0x2f8,0x2cc,0x2fc,0x5ef581e4,0x5ef581f4,0x5ef58204
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --disable-smooth-scrolling --enable-blink-features=ResizeObserver --enable-pinch --service-pipe-token=0C3E4CD5406758F1ADDE739B5EF05DD1 --lang=en-US --lang=sk-SK --log-file="E:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --disable-spell-checking --buildid=1504757234 --steamid=0 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --disable-accelerated-video-decode --disable-gpu-compositing --service-request-channel-token=0C3E4CD5406758F1ADDE739B5EF05DD1 --renderer-client-id=2 --mojo-platform-channel-handle=1948 /prefetch:1
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\taskhostw.exe
C:\WINDOWS\system32\AUDIODG.EXE 0x6f4
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -s WdiSystemHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\dinic\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=60.0.3112.113 --initial-client-data=0x1e4,0x1e8,0x1ec,0x1e0,0x1f0,0x7fff772329b8,0x7fff772329f8,0x7fff772329d0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=640 --on-initialized-event-handle=664 --parent-handle=668 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1416,6609839555960395721,2811537319176056449,131072 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,20,21,24,43,77 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x1002 --gpu-device-id=0x683d --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=22.19.676.0 --gpu-driver-date=9-5-2017 --service-request-channel-token=F5074408A5E50F0A724F29E8318AE8F0 --mojo-platform-channel-handle=1432 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416,6609839555960395721,2811537319176056449,131072 --service-pipe-token=0C7DAFDC093FD5EB5380A825ECDC3BBC --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=0C7DAFDC093FD5EB5380A825ECDC3BBC --renderer-client-id=4 --mojo-platform-channel-handle=2976 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416,6609839555960395721,2811537319176056449,131072 --service-pipe-token=8086DDEC7501D1F9FFD82B713F8C71F8 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=8086DDEC7501D1F9FFD82B713F8C71F8 --renderer-client-id=14 --mojo-platform-channel-handle=6300 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416,6609839555960395721,2811537319176056449,131072 --service-pipe-token=A1631E3BAE25010EC5EDBDFEAFDE5755 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=A1631E3BAE25010EC5EDBDFEAFDE5755 --renderer-client-id=17 --mojo-platform-channel-handle=5588 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
C:\WINDOWS\system32\svchost.exe -k netsvcs -s wlidsvc
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe36_ Global\UsGthrCtrlFltPipeMssGthrPipe36 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 692 696 704 8192 700
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\dinic\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

====== Scheduled tasks folder ======

C:\WINDOWS\tasks\EPSON L365 Series Update {E5BF7449-DAF8-42EE-8D76-738A2B92FBBE}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE /EXE:"{E5BF7449-DAF8-42EE-8D76-738A2B92FBBE}" /F:"Update"
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\EPSON L365 Series Update {E5BF7449-DAF8-42EE-8D76-738A2B92FBBE} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE /EXE:"{E5BF7449-DAF8-42EE-8D76-738A2B92FBBE}" /F:"Update"
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Opera scheduled Autoupdate 1499259165 - C:\Program Files\Opera\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\StartCN - "C:\Program Files\AMD\CNext\CNext\cncmd.exe" startwithdelay
C:\WINDOWS\system32\tasks\S-1-5-21-2739283124-1637116210-1909557425-1001\DataSenseLiveTileTask - %SystemRoot%\System32\DataUsageLiveTileTask.exe
C:\WINDOWS\system32\tasks\Nero\Nero Info - "C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe" -shedul
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install - %systemroot%\system32\usoclient.exe ScanInstallWait
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant - %windir%\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:Th1Eos:{}
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun - %windir%\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:Th1Eos:{} /CalendarRun
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon - C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration - C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe

=========Google Chrome=========

C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentácie Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Web Store 0.2
Extension aknpkdffaafgjchaibgeefbgmgeghloj
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabuľky Google 1.1
Extension fhoibnponjcgjgcnfacekaijdbbplhib 0 Kaspersky Protection 5.0.141.4
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google v režime offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.16.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension lneaknkopdijkpnocmklfnjbeapigfbh 0 Mapy Google 5.4.1
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension mihcahmgecmbnbcchbopgniflfhgnkff 1 Kontrola pošty Google 4.4.0
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.4
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.3
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 6017.605.1.4
Homepage: http://www.google.sk/
default_search_provider.search_url:
C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib]
"Path"=https://chrome.google.com/webstore/deta ... ijdbbplhib


======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2017-05-06 1253736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-09-20 210120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-09-20 3226824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201CF130-E29C-4E5C-A73F-CD197DEFA6AE}]
E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-05-06 1028968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_141\bin\ssv.dll [2017-07-25 473664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_141\bin\jp2ssv.dll [2017-07-25 187968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{093F479D-712E-46CD-9E06-62E734A05F68} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2017-05-06 1253736]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{093F479D-712E-46CD-9E06-62E734A05F68} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-05-06 1028968]
{201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 629152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2017-07-03 5094080]
"BID Drop Box"=C:\Program Files (x86)\Bulk Image Downloader\BIDDropBox.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ACSW14EN"=C:\Program Files (x86)\ACD Systems\ACDSee\14.0\ACDSeeInTouch2.exe [2011-09-20 1231472]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2016-01-20 1087184]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-07-12 587288]

C:\Users\dinic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MultiSkypeLauncher.lnk - C:\Program Files (x86)\MultiSkypeLauncher\MultiSkypeLauncher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2017-09-20 20:06:14 ----D---- C:\rsit
2017-09-18 05:58:00 ----D---- C:\Program Files\trend micro
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2017-09-16 14:46:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2017-09-16 14:46:43 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2017-09-16 14:46:42 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2017-09-16 14:46:41 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2017-09-16 14:46:40 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2017-09-16 14:46:39 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2017-09-16 14:46:38 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2017-09-16 14:46:37 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2017-09-16 14:46:36 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2017-09-16 14:46:35 ----A---- C:\WINDOWS\system32\d3dx10.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2017-09-16 14:46:34 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2017-09-16 14:46:33 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2017-09-16 14:45:42 ----D---- C:\WINDOWS\SYSWOW64\directx
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-09-13 16:22:51 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-09-13 16:22:50 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-09-13 16:22:49 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-09-13 16:22:49 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-09-13 16:22:49 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2017-09-13 16:22:49 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-09-13 16:22:48 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\RstrtMgr.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\CredentialUIBroker.exe
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-09-13 16:22:47 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-09-13 16:22:46 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-09-13 16:22:45 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-09-13 16:22:44 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-09-13 16:22:43 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-09-13 16:22:43 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\dinput8.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-09-13 16:22:42 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\tbs.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-09-13 16:22:41 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2017-09-13 16:22:41 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2017-09-13 16:22:41 ----A---- C:\WINDOWS\system32\BthHFSrv.dll
2017-09-13 16:22:40 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2017-09-13 16:22:40 ----A---- C:\WINDOWS\SYSWOW64\dinput.dll
2017-09-13 16:22:40 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-09-13 16:22:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2017-09-13 16:22:39 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2017-09-13 16:22:39 ----A---- C:\WINDOWS\SYSWOW64\ntprint.exe
2017-09-13 16:22:39 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-13 16:22:36 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-09-13 16:22:36 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-09-13 16:22:36 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-09-13 16:22:34 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-09-13 16:22:34 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-09-13 16:22:34 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-09-13 16:22:33 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-13 16:22:33 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-09-13 16:22:32 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-13 16:22:32 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2017-09-13 16:22:32 ----A---- C:\WINDOWS\system32\cryptngc.dll
2017-09-13 16:22:31 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2017-09-13 16:22:31 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2017-09-13 16:22:31 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2017-09-13 16:22:30 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-09-13 16:22:30 ----A---- C:\WINDOWS\system32\ngcrecovery.dll
2017-09-13 16:22:30 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-13 16:22:29 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-09-13 16:22:29 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-09-13 16:22:29 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-09-13 16:22:28 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-09-13 16:22:27 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-09-13 16:22:26 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-09-13 16:22:25 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-09-13 16:22:25 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-09-13 16:22:25 ----A---- C:\WINDOWS\system32\localspl.dll
2017-09-13 16:22:25 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-09-13 16:22:24 ----A---- C:\WINDOWS\system32\offreg.dll
2017-09-13 16:22:24 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-09-13 16:22:24 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-09-13 16:22:24 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-09-13 16:22:23 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\rasgcw.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\rasdlg.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\nettrace.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\mfps.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\mfds.dll
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2017-09-13 16:22:22 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\SEMgrPS.dll
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\rasplap.dll
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\ntprint.exe
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\inetpp.dll
2017-09-13 16:22:21 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2017-09-13 16:22:20 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-09-13 16:22:20 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\wermgr.exe
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-09-13 16:22:19 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\wersvc.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\WerFault.exe
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\wer.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\wc_storage.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\Faultrep.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-09-13 16:22:18 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-13 16:22:17 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-09-13 16:22:17 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-09-13 16:22:16 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-13 16:22:16 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\datamarketsvc.dll
2017-09-13 16:22:15 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\vss_ps.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-09-13 16:22:13 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-09-13 16:22:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-13 16:22:12 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-09-13 16:22:11 ----A---- C:\WINDOWS\system32\NotificationController.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\RstrtMgr.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\msIso.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-09-13 16:22:10 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-13 16:22:09 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-09-13 16:22:09 ----A---- C:\WINDOWS\system32\twinui.dll
2017-09-13 16:22:09 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-09-13 16:22:09 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-09-13 16:22:08 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-09-13 16:22:08 ----A---- C:\WINDOWS\system32\wininet.dll
2017-09-13 16:22:08 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-13 16:22:08 ----A---- C:\WINDOWS\explorer.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\combase.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\cldapi.dll
2017-09-13 16:22:07 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\winsrvext.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\werui.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\werconcpl.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-13 16:22:06 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-09-13 16:22:05 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2017-09-13 16:22:04 ----A---- C:\WINDOWS\system32\shell32.dll
2017-09-13 16:22:03 ----A---- C:\WINDOWS\system32\wpx.dll
2017-09-13 16:22:03 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-09-13 16:22:03 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-09-13 16:22:03 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\netlogon.dll
2017-09-13 16:22:02 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-09-13 16:22:01 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-09-13 16:22:01 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-09-13 16:22:01 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-09-13 16:22:01 ----A---- C:\WINDOWS\system32\bcdedit.exe
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\wevtapi.dll
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-09-13 16:22:00 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\wisp.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\user32.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\tpmvsc.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\tdh.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\propsys.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\PhoneService.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2017-09-13 16:21:59 ----A---- C:\WINDOWS\system32\httpprxm.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\win32u.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\tbs.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\setupapi.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\profsvc.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\nltest.exe
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\dsreg.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\dinput8.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\csplte.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-13 16:21:58 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\wups.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\win32k.sys
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\srpapi.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\shdocvw.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\rasman.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\dinput.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\dab.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\authz.dll
2017-09-13 16:21:57 ----A---- C:\WINDOWS\system32\appinfo.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\detoured.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\system32\OpenCL.dll
2017-09-06 21:07:07 ----D---- C:\Users\dinic\AppData\Roaming\Photoactions
2017-09-06 21:02:57 ----D---- C:\Program Files (x86)\Bulk Image Downloader
2017-09-06 20:58:29 ----D---- C:\Users\dinic\AppData\Roaming\VOWSoft
2017-09-06 20:58:26 ----D---- C:\Program Files (x86)\PicaLoader
2017-08-29 12:26:56 ----D---- C:\WINDOWS\Panther
2017-08-29 12:26:54 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT

====== List of files/folders modified in the last 1 month ======

2017-09-20 20:05:00 ----D---- C:\WINDOWS\Temp
2017-09-20 20:04:45 ----D---- C:\Users\dinic\AppData\Roaming\uTorrent
2017-09-20 19:48:27 ----D---- C:\WINDOWS\Prefetch
2017-09-20 19:27:08 ----D---- C:\WINDOWS\system32\SleepStudy
2017-09-20 19:24:41 ----D---- C:\WINDOWS\system32\sru
2017-09-20 18:32:59 ----D---- C:\ProgramData\Kaspersky Lab
2017-09-20 11:45:16 ----RD---- C:\WINDOWS\Microsoft.NET
2017-09-20 08:25:49 ----SHDC---- C:\WINDOWS\Installer
2017-09-20 08:25:49 ----SHD---- C:\Config.Msi
2017-09-20 08:25:31 ----AD---- C:\Program Files (x86)\Microsoft Office
2017-09-20 08:11:38 ----HD---- C:\Program Files\WindowsApps
2017-09-20 08:11:35 ----D---- C:\WINDOWS\AppReadiness
2017-09-19 10:08:01 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-09-19 10:07:51 ----D---- C:\Program Files (x86)\Common Files
2017-09-18 16:19:06 ----D---- C:\WINDOWS\system32\catroot2
2017-09-18 10:55:45 ----D---- C:\WINDOWS\system32\Tasks
2017-09-18 05:58:00 ----RD---- C:\Program Files
2017-09-17 11:30:42 ----D---- C:\Program Files\Common Files\AV
2017-09-17 11:19:17 ----D---- C:\WINDOWS\System32
2017-09-17 11:19:17 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-17 11:15:08 ----SHD---- C:\System Volume Information
2017-09-17 11:10:03 ----D---- C:\Windows
2017-09-17 11:08:17 ----D---- C:\Users\dinic\AppData\Roaming\Skype
2017-09-17 10:42:51 ----AD---- C:\Program Files (x86)\TeamViewer
2017-09-16 15:52:30 ----RD---- C:\Program Files (x86)
2017-09-16 14:46:44 ----D---- C:\WINDOWS\SysWOW64
2017-09-16 14:46:34 ----RSD---- C:\WINDOWS\assembly
2017-09-16 14:45:42 ----D---- C:\WINDOWS\Logs
2017-09-16 11:20:37 ----D---- C:\WINDOWS\rescache
2017-09-15 09:32:18 ----D---- C:\WINDOWS\LiveKernelReports
2017-09-15 09:32:16 ----D---- C:\WINDOWS\INF
2017-09-14 17:09:59 ----D---- C:\WINDOWS\system32\config
2017-09-14 17:08:01 ----D---- C:\WINDOWS\system32\DriverStore
2017-09-14 14:01:38 ----D---- C:\WINDOWS\WinSxS
2017-09-14 13:18:21 ----AD---- C:\Program Files\WinRAR
2017-09-13 20:37:09 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-09-13 20:37:09 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-09-13 20:37:09 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2017-09-13 20:37:09 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-09-13 20:37:09 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-09-13 20:37:08 ----SD---- C:\WINDOWS\system32\F12
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\wbem
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\sk-SK
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\sk
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\setup
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\en-US
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-09-13 20:37:08 ----D---- C:\WINDOWS\system32\drivers
2017-09-13 20:37:07 ----D---- C:\WINDOWS\ShellExperiences
2017-09-13 20:37:07 ----D---- C:\Program Files\Windows Photo Viewer
2017-09-13 20:37:07 ----D---- C:\Program Files\Windows Mail
2017-09-13 20:37:07 ----D---- C:\Program Files\Internet Explorer
2017-09-13 20:37:07 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 20:37:07 ----D---- C:\Program Files (x86)\Windows Mail
2017-09-13 20:37:07 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 16:25:45 ----D---- C:\WINDOWS\system32\MRT
2017-09-13 16:24:48 ----D---- C:\WINDOWS\debug
2017-09-13 16:24:45 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-09-13 16:24:43 ----D---- C:\WINDOWS\CbsTemp
2017-09-10 11:39:20 ----D---- C:\WINDOWS\system32\CatRoot
2017-09-10 11:37:50 ----AD---- C:\Program Files\AMD
2017-09-10 11:36:22 ----D---- C:\AMD
2017-09-10 10:47:04 ----D---- C:\Users\dinic\AppData\Roaming\Epson
2017-09-09 17:50:10 ----D---- C:\ProgramData\Skype
2017-09-09 17:50:08 ----RD---- C:\Program Files (x86)\Skype
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\RapidFireServer.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\Rapidfire.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\GameManager32.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\RapidFireServer64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\Rapidfire64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\mantle64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\GameManager64.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\dgtrayicon.exe
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\coinst_17.30.dll
2017-09-07 17:37:38 ----A---- C:\WINDOWS\system32\clinfo.exe
2017-09-07 17:37:36 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2017-09-07 17:37:36 ----A---- C:\WINDOWS\system32\atisamu64.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2017-09-07 17:37:34 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atimuixx.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atimpc64.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atig6txx.dll
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atieclxx.exe
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atieah64.exe
2017-09-07 17:37:34 ----A---- C:\WINDOWS\system32\atidxx64.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\SYSWOW64\amfrt32.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\atidemgy.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\aticfx64.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\ati2erec.dll
2017-09-07 17:37:32 ----A---- C:\WINDOWS\system32\amfrt64.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\SYSWOW64\amdvlk32.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\system32\amdxc64.dll
2017-09-07 17:37:30 ----A---- C:\WINDOWS\system32\amdvlk64.dll
2017-09-07 17:37:28 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2017-09-07 17:37:28 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\SYSWOW64\amdmcl32.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\system32\amdmcl64.dll
2017-09-07 17:37:24 ----A---- C:\WINDOWS\system32\amdlvr64.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\amd-vulkan32.json
2017-09-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\system32\amd-vulkan64.json
2017-09-07 17:37:22 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2017-09-07 17:37:22 ----A---- C:\WINDOWS\system32\amdave64.dll
2017-09-06 21:03:07 ----SD---- C:\Users\dinic\AppData\Roaming\Microsoft
2017-09-06 18:52:40 ----D---- C:\Users\dinic\AppData\Roaming\TeamViewer
2017-09-02 17:15:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-08-29 21:15:28 ----D---- C:\Users\dinic\AppData\Roaming\MPC-HC
2017-08-29 12:33:57 ----D---- C:\WINDOWS\SoftwareDistribution
2017-08-29 12:33:55 ----D---- C:\WINDOWS\system32\LogFiles
2017-08-29 11:11:14 ----D---- C:\Users\dinic\AppData\Roaming\Origin
2017-08-29 11:10:53 ----D---- C:\ProgramData\Origin
2017-08-29 11:08:58 ----AD---- C:\Program Files\Opera
2017-08-29 11:01:16 ----D---- C:\ProgramData\Epson
2017-08-26 16:12:08 ----D---- C:\Program Files (x86)\VulkanRT
2017-08-24 19:41:26 ----A---- C:\WINDOWS\system32\SET7BFD.tmp
2017-08-24 19:41:26 ----A---- C:\WINDOWS\system32\SET1545.tmp
2017-08-24 19:41:22 ----A---- C:\WINDOWS\system32\SET7618.tmp
2017-08-24 19:41:22 ----A---- C:\WINDOWS\system32\SET7606.tmp
2017-08-24 19:41:20 ----A---- C:\WINDOWS\system32\SET1203.tmp

Re: poprosil by som o preventívu PC

Napsal: 20 zář 2017 19:08
od bondasko
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit); C:\WINDOWS\system32\DRIVERS\cm_km.sys [2016-06-10 238936]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 49568]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2016-06-02 554416]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [2016-06-07 63920]
R0 klupd_klif_arkmon;klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [2017-07-05 229288]
R0 klupd_klif_klbg;klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [2017-07-05 112912]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\WINDOWS\system32\DRIVERS\klbackupflt.sys [2016-06-15 86352]
R1 klhk;@oem31.inf,%klhkDisplayName%;Kaspersky Lab service driver; C:\WINDOWS\System32\drivers\klhk.sys [2017-07-25 520152]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2017-07-25 1021624]
R1 KLIM6;@oem15.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2017-05-06 57424]
R1 klpd;Kaspersky Lab format recognizer driver; C:\WINDOWS\system32\DRIVERS\klpd.sys [2016-05-31 45488]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2016-06-18 85320]
R1 Klwtp;KLwtp - WFP callout traffic inspector; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2017-05-06 136416]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2017-07-25 199640]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 14336]
R2 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2016-05-31 78216]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0317685.inf_amd64_f4ed8f05a31c5d2d\atikmdag.sys [2017-09-07 38761496]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0317685.inf_amd64_f4ed8f05a31c5d2d\atikmpag.sys [2017-09-07 541720]
R3 AtiHDAudioService;@oem12.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2016-12-12 110088]
R3 dtlitescsibus;@oem10.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2017-07-05 30264]
R3 dtliteusbbus;@oem11.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2017-07-05 47672]
R3 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2017-07-25 197312]
R3 klids;klids; \??\C:\ProgramData\Kaspersky Lab\AVP17.0.0\Bases\klids.sys [2017-09-17 186696]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2016-05-19 52136]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2015-06-07 41656]
R3 kltap;@oem19.inf,%DeviceDescription%;Kaspersky Security Data Escort Adapter; C:\WINDOWS\System32\drivers\kltap.sys [2016-06-07 52152]
R3 klupd_klif_kimul;klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [2017-07-10 87584]
R3 klupd_klif_klark;klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [2017-07-05 251656]
R3 klupd_klif_mark;klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [2017-07-05 173144]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2017-03-18 121344]
S0 amdkmafd;@oem6.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2016-08-18 49448]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2016-03-31 28792]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 64416]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-03-18 91040]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 12288]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 17920]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 53664]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-03-18 74648]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-03-18 347032]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-03-18 2104224]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-03-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-03-18 85504]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-03-18 168448]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 36864]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-03-18 120320]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 51104]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 122368]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2017-06-08 118784]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-03-18 80896]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-03-18 101376]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2017-03-18 1735584]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-03-18 31128]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-03-20 40352]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2017-09-07 552472]
R2 AVP17.0.0;Služba Kaspersky Anti-Virus 17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [2016-06-28 241544]
R2 CDPUserSvc_2bb8479;Connected Devices Platform User Service_2bb8479; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-09-08 4424392]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 EpsonScanSvc;Epson Scanner Service; C:\WINDOWS\system32\EscSvc64.exe [2012-05-17 144560]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
R2 OneSyncSvc_2bb8479;Sync Host_2bb8479; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 Origin Web Helper Service;Origin Web Helper Service; E:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-07-26 3148128]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-07-07 336320]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-08-29 10803440]
R3 PimIndexMaintenanceSvc_2bb8479;Kontaktné údaje_2bb8479; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-09-07 1610016]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\TokenBroker.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_2bb8479;DevicesFlow_2bb8479; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2017-07-03 2289856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 klvssbrigde64;klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe [2016-06-28 77328]
S3 KSDE1.0.0;Služba Kaspersky Secure Connection 1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [2016-06-28 241544]
S3 MessagingService_2bb8479;MessagingService_2bb8479; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 Origin Client Service;Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2017-07-26 2168672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-09-08 213704]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-03-18 891904]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------

Re: poprosil by som o preventívu PC

Napsal: 20 zář 2017 19:11
od bondasko
AdwCleaner:

# AdwCleaner 7.0.2.1 - Logfile created on Wed Sep 20 18:09:58 2017
# Updated on 2017/29/08 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

No malicious registry entries deleted.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [945 B] - [2017/9/20 18:9:43]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

Re: poprosil by som o preventívu PC

Napsal: 20 zář 2017 19:58
od Rudy
ADW je OK. Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=30&t=133101 . To je ten důvod, proč jsem to potřeboval vědět. V desítkách nemohu mazat z RSIT, hrozí poškození systému.

Re: poprosil by som o preventívu PC

Napsal: 20 zář 2017 20:04
od bondasko
FRST: (ospravedlnujem sa, potom ako odpoved som dal RSIT, ale moja chyba, mal som to urobit opacne ;) )

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-09-2017
Ran by Michal a Janka (administrator) on STOLOVY_PC (20-09-2017 21:02:43)
Running from C:\Users\dinic\Desktop
Loaded Profiles: Michal a Janka (Available Profiles: Michal a Janka)
Platform: Windows 10 Home Version 1703 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Electronic Arts) E:\Program Files (x86)\Origin\OriginWebHelperService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM-x32\...\Run: [ACSW14EN] => C:\Program Files (x86)\ACD Systems\ACDSee\14.0\ACDSeeInTouch2.exe [1231472 2011-09-20] (ACD Systems)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-12] (Oracle Corporation)
HKU\S-1-5-21-2739283124-1637116210-1909557425-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [5094080 2017-07-03] (Disc Soft Ltd)
HKU\S-1-5-21-2739283124-1637116210-1909557425-1001\...\Run: [BID Drop Box] => "C:\Program Files (x86)\Bulk Image Downloader\BIDDropBox.exe"
Startup: C:\Users\dinic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MultiSkypeLauncher.lnk [2017-07-05]
ShortcutTarget: MultiSkypeLauncher.lnk -> C:\Program Files (x86)\MultiSkypeLauncher\MultiSkypeLauncher.exe (IM-history)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{849bdfaa-dc7c-4211-99f4-96485a9919a0}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2017-05-06] (AO Kaspersky Lab)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-09-20] (Microsoft Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-09-20] (Microsoft Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-05-06] (AO Kaspersky Lab)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_141\bin\ssv.dll [2017-07-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_141\bin\jp2ssv.dll [2017-07-25] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2017-05-06] (AO Kaspersky Lab)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-05-06] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-09-20] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-09-20] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-09-20] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-09-20] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-07-25]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2017-07-05] [not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.141.2 -> C:\Program Files (x86)\Java\jre1.8.0_141\bin\dtplugin\npDeployJava1.dll [2017-07-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.141.2 -> C:\Program Files (x86)\Java\jre1.8.0_141\bin\plugin2\npjp2.dll [2017-07-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-09-20] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-12-19] (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-08-18] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.sk/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.oursurfing ... j90sb47493"
CHR Profile: C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default [2017-09-20]
CHR Extension: (Prezentácie Google) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-07-05]
CHR Extension: (Dokumenty Google) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-07-05]
CHR Extension: (Disk Google) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-05]
CHR Extension: (YouTube) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-05]
CHR Extension: (Tabuľky Google) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-07-05]
CHR Extension: (Kaspersky Protection) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-07-05]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-05]
CHR Extension: (AdBlock) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-09-19]
CHR Extension: (Mapy Google) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2017-07-05]
CHR Extension: (Kontrola pošty Google) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2017-07-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-05]
CHR Extension: (Chrome Media Router) - C:\Users\dinic\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-06]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib

Opera:
=======
OPR Extension: (Adblock Plus) - C:\Users\dinic\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2017-07-17]
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [4424392 2017-09-08] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2289856 2017-07-03] (Disc Soft Ltd)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
S3 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
S3 Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2168672 2017-07-26] (Electronic Arts)
R2 Origin Web Helper Service; E:\Program Files (x86)\Origin\OriginWebHelperService.exe [3148128 2017-07-26] (Electronic Arts)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2017-08-29] (TeamViewer GmbH)
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [41952 2016-10-27] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0317685.inf_amd64_f4ed8f05a31c5d2d\atikmdag.sys [38761496 2017-09-07] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0317685.inf_amd64_f4ed8f05a31c5d2d\atikmpag.sys [541720 2017-09-07] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110088 2016-12-12] (Advanced Micro Devices)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-07-05] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-07-05] (Disc Soft Ltd)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [197312 2017-07-25] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [520152 2017-07-25] (AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP17.0.0\Bases\klids.sys [186696 2017-09-20] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1021624 2017-07-25] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57424 2017-05-06] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [229288 2017-07-05] (AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2017-07-10] (AO Kaspersky Lab)
S3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [251656 2017-07-05] (AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [112912 2017-07-05] (AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [173144 2017-07-05] (AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [136416 2017-05-06] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199640 2017-07-25] (AO Kaspersky Lab)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-20 21:02 - 2017-09-20 21:02 - 000017288 _____ C:\Users\dinic\Desktop\FRST.txt
2017-09-20 21:02 - 2017-09-20 21:02 - 000000000 ____D C:\FRST
2017-09-20 21:02 - 2017-09-20 21:01 - 002399744 _____ (Farbar) C:\Users\dinic\Desktop\FRST64.exe
2017-09-20 20:26 - 2017-09-20 20:26 - 000003392 _____ C:\WINDOWS\System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2017-09-20 20:08 - 2017-09-20 20:09 - 000000000 ____D C:\AdwCleaner
2017-09-20 20:06 - 2017-09-20 20:06 - 000000000 ____D C:\rsit
2017-09-20 20:05 - 2017-09-20 20:05 - 008182736 _____ (Malwarebytes) C:\Users\dinic\Desktop\adwcleaner_7.0.2.1.exe
2017-09-20 20:05 - 2017-09-20 20:05 - 001329152 _____ C:\Users\dinic\Desktop\RSITx64.exe
2017-09-18 05:58 - 2017-09-20 20:06 - 000000000 ____D C:\Program Files\trend micro
2017-09-16 14:46 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2017-09-16 14:46 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2017-09-16 14:46 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2017-09-16 14:46 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2017-09-16 14:46 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2017-09-16 14:46 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2017-09-16 14:46 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2017-09-16 14:46 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2017-09-16 14:46 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2017-09-16 14:46 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2017-09-16 14:46 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2017-09-16 14:46 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2017-09-16 14:46 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2017-09-16 14:46 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2017-09-16 14:46 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2017-09-16 14:46 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2017-09-16 14:46 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2017-09-16 14:46 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2017-09-16 14:46 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2017-09-16 14:46 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2017-09-16 14:46 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2017-09-16 14:46 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2017-09-16 14:46 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2017-09-16 14:46 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2017-09-16 14:46 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2017-09-16 14:46 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2017-09-16 14:46 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2017-09-16 14:46 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2017-09-16 14:46 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2017-09-16 14:46 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2017-09-16 14:46 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2017-09-16 14:46 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2017-09-16 14:46 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2017-09-16 14:46 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2017-09-16 14:46 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2017-09-16 14:46 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2017-09-16 14:46 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2017-09-16 14:46 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2017-09-16 14:46 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2017-09-16 14:46 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2017-09-16 14:46 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2017-09-16 14:46 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2017-09-16 14:46 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2017-09-16 14:46 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2017-09-16 14:46 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2017-09-16 14:46 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2017-09-16 14:46 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2017-09-16 14:46 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2017-09-16 14:46 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2017-09-16 14:46 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2017-09-16 14:46 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2017-09-16 14:46 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2017-09-16 14:46 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2017-09-16 14:46 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2017-09-16 14:46 - 2008-10-10 04:52 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2017-09-16 14:46 - 2008-10-10 04:52 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2017-09-16 14:46 - 2008-10-10 04:52 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2017-09-16 14:46 - 2008-10-10 04:52 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2017-09-16 14:46 - 2008-10-10 04:52 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2017-09-16 14:46 - 2008-10-10 04:52 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2017-09-16 14:46 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2017-09-16 14:46 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2017-09-16 14:46 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2017-09-16 14:46 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2017-09-16 14:46 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2017-09-16 14:46 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2017-09-16 14:46 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2017-09-16 14:46 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2017-09-16 14:46 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2017-09-16 14:46 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2017-09-16 14:46 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2017-09-16 14:46 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2017-09-16 14:46 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2017-09-16 14:46 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2017-09-16 14:46 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2017-09-16 14:46 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2017-09-16 14:46 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2017-09-16 14:46 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2017-09-16 14:46 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2017-09-16 14:46 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2017-09-16 14:46 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2017-09-16 14:46 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2017-09-16 14:46 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2017-09-16 14:46 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2017-09-16 14:46 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2017-09-16 14:46 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2017-09-16 14:46 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2017-09-16 14:46 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2017-09-16 14:46 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2017-09-16 14:46 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2017-09-16 14:46 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2017-09-16 14:46 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2017-09-16 14:46 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2017-09-16 14:46 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2017-09-16 14:46 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2017-09-16 14:46 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2017-09-16 14:46 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2017-09-16 14:46 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2017-09-16 14:46 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2017-09-16 14:46 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2017-09-16 14:46 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2017-09-16 14:46 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2017-09-16 14:46 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2017-09-16 14:46 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2017-09-16 14:46 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2017-09-16 14:46 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2017-09-16 14:46 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2017-09-16 14:46 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2017-09-16 14:46 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2017-09-16 14:46 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2017-09-16 14:46 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2017-09-16 14:46 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2017-09-16 14:46 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2017-09-16 14:46 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2017-09-16 14:46 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2017-09-16 14:46 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2017-09-16 14:46 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2017-09-16 14:46 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2017-09-16 14:46 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2017-09-16 14:46 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2017-09-16 14:46 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2017-09-16 14:46 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2017-09-16 14:46 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2017-09-16 14:46 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2017-09-16 14:46 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2017-09-16 14:46 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2017-09-16 14:46 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2017-09-16 14:46 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2017-09-16 14:46 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2017-09-16 14:46 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2017-09-16 14:46 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2017-09-16 14:46 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2017-09-16 14:46 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2017-09-16 14:46 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2017-09-16 14:46 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2017-09-16 14:46 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2017-09-16 14:46 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2017-09-16 14:46 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2017-09-16 14:46 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2017-09-16 14:46 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2017-09-16 14:46 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2017-09-16 14:46 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2017-09-16 14:46 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2017-09-16 14:46 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2017-09-16 14:46 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2017-09-16 14:46 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2017-09-16 14:46 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2017-09-16 14:46 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2017-09-16 14:46 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2017-09-16 14:46 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2017-09-16 14:46 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2017-09-16 14:46 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2017-09-16 14:46 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2017-09-16 14:46 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2017-09-16 14:46 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2017-09-16 14:46 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2017-09-16 14:46 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2017-09-16 14:46 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2017-09-16 14:46 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2017-09-16 14:46 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2017-09-16 14:46 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2017-09-16 14:46 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2017-09-16 14:46 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2017-09-16 14:46 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2017-09-16 14:46 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2017-09-16 14:46 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2017-09-16 14:46 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2017-09-16 14:46 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2017-09-16 14:46 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2017-09-16 14:46 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2017-09-16 14:46 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2017-09-16 14:46 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2017-09-16 14:46 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2017-09-16 14:46 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2017-09-16 14:46 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2017-09-16 14:45 - 2017-09-19 16:38 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2017-09-15 18:42 - 2017-09-15 23:11 - 000000000 ____D C:\Users\dinic\AppData\Local\JDownloader v2.0
2017-09-13 16:22 - 2017-09-05 07:31 - 001596592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-09-13 16:22 - 2017-09-05 07:31 - 001147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-09-13 16:22 - 2017-09-05 07:31 - 001024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-09-13 16:22 - 2017-09-05 07:31 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-09-13 16:22 - 2017-09-05 07:31 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-09-13 16:22 - 2017-09-05 07:30 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-09-13 16:22 - 2017-09-05 07:27 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-09-13 16:22 - 2017-09-05 07:27 - 000136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-09-13 16:22 - 2017-09-05 07:26 - 008319904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-09-13 16:22 - 2017-09-05 07:26 - 001930840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-09-13 16:22 - 2017-09-05 07:25 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-13 16:22 - 2017-09-05 07:25 - 000159648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-09-13 16:22 - 2017-09-05 07:24 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-09-13 16:22 - 2017-09-05 07:24 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-09-13 16:22 - 2017-09-05 07:23 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-09-13 16:22 - 2017-09-05 07:21 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-09-13 16:22 - 2017-09-05 07:20 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-09-13 16:22 - 2017-09-05 07:19 - 004848960 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-09-13 16:22 - 2017-09-05 07:19 - 002443168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-09-13 16:22 - 2017-09-05 07:18 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-09-13 16:22 - 2017-09-05 07:18 - 005477096 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-13 16:22 - 2017-09-05 07:18 - 002972552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-09-13 16:22 - 2017-09-05 07:18 - 002647224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-09-13 16:22 - 2017-09-05 07:18 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-09-13 16:22 - 2017-09-05 07:18 - 000685512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-09-13 16:22 - 2017-09-05 07:18 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-09-13 16:22 - 2017-09-05 07:17 - 000316320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-09-13 16:22 - 2017-09-05 07:16 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-09-13 16:22 - 2017-09-05 07:16 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-09-13 16:22 - 2017-09-05 07:16 - 000724200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-09-13 16:22 - 2017-09-05 07:16 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-09-13 16:22 - 2017-09-05 07:16 - 000546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-09-13 16:22 - 2017-09-05 07:16 - 000410168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-09-13 16:22 - 2017-09-05 07:16 - 000228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-09-13 16:22 - 2017-09-05 07:16 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-09-13 16:22 - 2017-09-05 07:15 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-09-13 16:22 - 2017-09-05 07:15 - 000871448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-09-13 16:22 - 2017-09-05 07:15 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-13 16:22 - 2017-09-05 07:15 - 000381824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-09-13 16:22 - 2017-09-05 07:15 - 000257440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-13 16:22 - 2017-09-05 07:14 - 021352656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-09-13 16:22 - 2017-09-05 07:14 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-13 16:22 - 2017-09-05 07:14 - 004708504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-09-13 16:22 - 2017-09-05 07:14 - 001146176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-09-13 16:22 - 2017-09-05 07:14 - 000958664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-09-13 16:22 - 2017-09-05 07:14 - 000254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-09-13 16:22 - 2017-09-05 07:14 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-09-13 16:22 - 2017-09-05 07:13 - 001619816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-09-13 16:22 - 2017-09-05 07:12 - 001409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-09-13 16:22 - 2017-09-05 07:12 - 001292880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-09-13 16:22 - 2017-09-05 07:12 - 000627080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-09-13 16:22 - 2017-09-05 07:12 - 000081176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2017-09-13 16:22 - 2017-09-05 07:11 - 002675104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-09-13 16:22 - 2017-09-05 07:11 - 000610720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2017-09-13 16:22 - 2017-09-05 07:11 - 000387936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-09-13 16:22 - 2017-09-05 06:53 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-09-13 16:22 - 2017-09-05 06:53 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-09-13 16:22 - 2017-09-05 06:52 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-09-13 16:22 - 2017-09-05 06:50 - 004330920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2017-09-13 16:22 - 2017-09-05 06:46 - 004471888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-09-13 16:22 - 2017-09-05 06:45 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-09-13 16:22 - 2017-09-05 06:45 - 005821496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-09-13 16:22 - 2017-09-05 06:45 - 002476712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-09-13 16:22 - 2017-09-05 06:45 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-09-13 16:22 - 2017-09-05 06:45 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-09-13 16:22 - 2017-09-05 06:45 - 000085784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2017-09-13 16:22 - 2017-09-05 06:44 - 000569264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-09-13 16:22 - 2017-09-05 06:43 - 000611096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-09-13 16:22 - 2017-09-05 06:43 - 000359560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-09-13 16:22 - 2017-09-05 06:43 - 000280480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-09-13 16:22 - 2017-09-05 06:43 - 000169376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-09-13 16:22 - 2017-09-05 06:43 - 000042456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-09-13 16:22 - 2017-09-05 06:42 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-09-13 16:22 - 2017-09-05 06:42 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-09-13 16:22 - 2017-09-05 06:42 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-09-13 16:22 - 2017-09-05 06:42 - 000291904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-09-13 16:22 - 2017-09-05 06:42 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-09-13 16:22 - 2017-09-05 06:41 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-09-13 16:22 - 2017-09-05 06:41 - 006761560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-13 16:22 - 2017-09-05 06:41 - 004671832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-09-13 16:22 - 2017-09-05 06:41 - 001106904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-09-13 16:22 - 2017-09-05 06:41 - 001013912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-09-13 16:22 - 2017-09-05 06:40 - 000052768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-09-13 16:22 - 2017-09-05 06:37 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-09-13 16:22 - 2017-09-05 06:31 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-09-13 16:22 - 2017-09-05 06:30 - 001639936 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-09-13 16:22 - 2017-09-05 06:30 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-09-13 16:22 - 2017-09-05 06:30 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-13 16:22 - 2017-09-05 06:30 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-09-13 16:22 - 2017-09-05 06:30 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-09-13 16:22 - 2017-09-05 06:30 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-09-13 16:22 - 2017-09-05 06:30 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-09-13 16:22 - 2017-09-05 06:30 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-09-13 16:22 - 2017-09-05 06:29 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-09-13 16:22 - 2017-09-05 06:28 - 017371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-13 16:22 - 2017-09-05 06:28 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-13 16:22 - 2017-09-05 06:28 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2017-09-13 16:22 - 2017-09-05 06:28 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-09-13 16:22 - 2017-09-05 06:27 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-09-13 16:22 - 2017-09-05 06:27 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-09-13 16:22 - 2017-09-05 06:27 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-09-13 16:22 - 2017-09-05 06:27 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-09-13 16:22 - 2017-09-05 06:27 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-09-13 16:22 - 2017-09-05 06:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-09-13 16:22 - 2017-09-05 06:26 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-09-13 16:22 - 2017-09-05 06:26 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-09-13 16:22 - 2017-09-05 06:26 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-13 16:22 - 2017-09-05 06:26 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-09-13 16:22 - 2017-09-05 06:26 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-09-13 16:22 - 2017-09-05 06:26 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-09-13 16:22 - 2017-09-05 06:26 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-09-13 16:22 - 2017-09-05 06:25 - 013844480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-09-13 16:22 - 2017-09-05 06:25 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-09-13 16:22 - 2017-09-05 06:25 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-09-13 16:22 - 2017-09-05 06:25 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-09-13 16:22 - 2017-09-05 06:25 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-09-13 16:22 - 2017-09-05 06:25 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-09-13 16:22 - 2017-09-05 06:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-09-13 16:22 - 2017-09-05 06:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-09-13 16:22 - 2017-09-05 06:24 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-09-13 16:22 - 2017-09-05 06:24 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-13 16:22 - 2017-09-05 06:24 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-09-13 16:22 - 2017-09-05 06:24 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-09-13 16:22 - 2017-09-05 06:24 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcrecovery.dll
2017-09-13 16:22 - 2017-09-05 06:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-09-13 16:22 - 2017-09-05 06:23 - 020509184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-09-13 16:22 - 2017-09-05 06:23 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-09-13 16:22 - 2017-09-05 06:23 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-09-13 16:22 - 2017-09-05 06:23 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-09-13 16:22 - 2017-09-05 06:23 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-09-13 16:22 - 2017-09-05 06:23 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-13 16:22 - 2017-09-05 06:23 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 023684608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-09-13 16:22 - 2017-09-05 06:22 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-09-13 16:22 - 2017-09-05 06:22 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 006728704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 000946688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-09-13 16:22 - 2017-09-05 06:21 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-09-13 16:22 - 2017-09-05 06:20 - 007337472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-13 16:22 - 2017-09-05 06:20 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-13 16:22 - 2017-09-05 06:20 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-13 16:22 - 2017-09-05 06:20 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-09-13 16:22 - 2017-09-05 06:20 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-09-13 16:22 - 2017-09-05 06:20 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-09-13 16:22 - 2017-09-05 06:20 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-09-13 16:22 - 2017-09-05 06:20 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-09-13 16:22 - 2017-09-05 06:20 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-09-13 16:22 - 2017-09-05 06:19 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-09-13 16:22 - 2017-09-05 06:19 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-09-13 16:22 - 2017-09-05 06:19 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 012801536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-09-13 16:22 - 2017-09-05 06:18 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-13 16:22 - 2017-09-05 06:18 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-09-13 16:22 - 2017-09-05 06:18 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-09-13 16:22 - 2017-09-05 06:17 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-09-13 16:22 - 2017-09-05 06:17 - 008207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-09-13 16:22 - 2017-09-05 06:17 - 002765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-13 16:22 - 2017-09-05 06:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-13 16:22 - 2017-09-05 06:17 - 001397760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-09-13 16:22 - 2017-09-05 06:17 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2017-09-13 16:22 - 2017-09-05 06:17 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-09-13 16:22 - 2017-09-05 06:17 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-09-13 16:22 - 2017-09-05 06:17 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-09-13 16:22 - 2017-09-05 06:17 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-09-13 16:22 - 2017-09-05 06:16 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-09-13 16:22 - 2017-09-05 06:16 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-13 16:22 - 2017-09-05 06:16 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-13 16:22 - 2017-09-05 06:16 - 000844288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-09-13 16:22 - 2017-09-05 06:16 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-09-13 16:22 - 2017-09-05 06:16 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-09-13 16:22 - 2017-09-05 06:16 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-09-13 16:22 - 2017-09-05 06:16 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-09-13 16:22 - 2017-09-05 06:16 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 002503680 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-09-13 16:22 - 2017-09-05 06:15 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 001143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 001077248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-09-13 16:22 - 2017-09-05 06:15 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-09-13 16:22 - 2017-09-05 06:15 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-09-13 16:22 - 2017-09-05 06:15 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 011887104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 002445824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 002006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-09-13 16:22 - 2017-09-05 06:14 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-09-13 16:22 - 2017-09-05 06:13 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-09-13 16:22 - 2017-09-05 06:13 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-09-13 16:22 - 2017-09-05 06:13 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-09-13 16:22 - 2017-09-05 06:13 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-09-13 16:22 - 2017-09-05 06:13 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-09-13 16:22 - 2017-09-05 06:12 - 006265856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-09-13 16:22 - 2017-09-05 06:12 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-09-13 16:22 - 2017-09-05 06:12 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-09-13 16:22 - 2017-09-05 06:12 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-09-13 16:22 - 2017-09-05 06:12 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-09-13 16:22 - 2017-09-05 06:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-09-13 16:22 - 2017-09-05 06:11 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-09-13 16:22 - 2017-09-05 06:11 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-09-13 16:22 - 2017-09-05 06:11 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-09-13 16:22 - 2017-09-05 06:11 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-09-13 16:22 - 2017-09-05 06:11 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-09-13 16:22 - 2017-09-05 06:11 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-09-13 16:22 - 2017-09-05 06:10 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-09-13 16:22 - 2017-09-05 06:10 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-09-13 16:22 - 2017-09-05 06:10 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-09-13 16:22 - 2017-09-05 06:10 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthHFSrv.dll
2017-09-13 16:22 - 2017-09-05 06:07 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-09-13 16:22 - 2017-09-05 06:07 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-09-13 16:22 - 2017-09-05 06:06 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2017-09-13 16:22 - 2017-09-05 06:06 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-09-13 16:22 - 2017-09-05 06:06 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-09-13 16:22 - 2017-09-05 06:04 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-09-13 16:22 - 2017-09-05 06:04 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-09-13 16:22 - 2017-09-01 07:55 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-09-13 16:21 - 2017-09-05 07:31 - 001346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-09-13 16:21 - 2017-09-05 07:31 - 000115792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-09-13 16:21 - 2017-09-05 07:23 - 004462120 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-09-13 16:21 - 2017-09-05 07:18 - 001668344 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-09-13 16:21 - 2017-09-05 07:16 - 000049720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-09-13 16:21 - 2017-09-05 07:13 - 000064680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-09-13 16:21 - 2017-09-05 06:30 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-09-13 16:21 - 2017-09-05 06:27 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-13 16:21 - 2017-09-05 06:27 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-13 16:21 - 2017-09-05 06:27 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-09-13 16:21 - 2017-09-05 06:26 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-09-13 16:21 - 2017-09-05 06:26 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\csplte.dll
2017-09-13 16:21 - 2017-09-05 06:26 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-09-13 16:21 - 2017-09-05 06:26 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-09-13 16:21 - 2017-09-05 06:25 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-09-13 16:21 - 2017-09-05 06:24 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-09-13 16:21 - 2017-09-05 06:24 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-09-13 16:21 - 2017-09-05 06:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-09-13 16:21 - 2017-09-05 06:24 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-09-13 16:21 - 2017-09-05 06:23 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-09-13 16:21 - 2017-09-05 06:23 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-09-13 16:21 - 2017-09-05 06:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-09-13 16:21 - 2017-09-05 06:22 - 000413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-09-13 16:21 - 2017-09-05 06:22 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2017-09-13 16:21 - 2017-09-05 06:22 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-09-13 16:21 - 2017-09-05 06:21 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-09-13 16:21 - 2017-09-05 06:21 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-09-13 16:21 - 2017-09-05 06:19 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-09-13 16:21 - 2017-09-05 06:19 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-09-13 16:21 - 2017-09-05 06:18 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-09-13 16:21 - 2017-09-05 06:16 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-13 16:21 - 2017-09-05 06:15 - 001460224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-09-13 16:21 - 2017-09-05 06:11 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-09-13 16:21 - 2017-09-05 06:09 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-09-10 11:38 - 2017-09-10 11:38 - 000003160 _____ C:\WINDOWS\System32\Tasks\StartCN
2017-09-10 11:38 - 2017-09-10 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2017-09-10 11:37 - 2017-09-10 11:37 - 000000000 ____D C:\Users\dinic\AppData\Local\AMDDriverProfiles
2017-09-07 17:37 - 2017-09-07 17:37 - 001058328 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2017-09-07 17:37 - 2017-09-07 17:37 - 000136728 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-09-07 17:37 - 2017-09-07 17:37 - 000115224 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-09-07 17:37 - 2017-09-07 17:37 - 000029720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2017-09-07 17:37 - 2017-09-07 17:37 - 000029720 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2017-09-06 21:07 - 2017-09-06 21:07 - 000000000 ____D C:\Users\dinic\AppData\Roaming\Photoactions
2017-09-06 21:06 - 2017-09-06 21:06 - 000000000 ____D C:\Users\dinic\AppData\Local\PicasaDownloader
2017-09-06 21:02 - 2017-09-06 21:12 - 000000000 ____D C:\Program Files (x86)\Bulk Image Downloader
2017-09-06 20:58 - 2017-09-06 22:00 - 000000000 ____D C:\Program Files (x86)\PicaLoader
2017-09-06 20:58 - 2017-09-06 20:58 - 000000000 ____D C:\Users\dinic\AppData\Roaming\VOWSoft
2017-09-04 21:02 - 2017-09-10 11:57 - 000009534 _____ C:\Users\dinic\Desktop\serial - ako vycvicit drakov komplet.txt
2017-08-29 12:26 - 2017-09-14 13:18 - 000395320 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-08-29 12:26 - 2017-08-29 12:26 - 000000000 ____D C:\WINDOWS\Panther
2017-08-28 20:26 - 2017-09-14 21:38 - 000005133 _____ C:\Users\dinic\Desktop\serial - ako vycvicit drakov.txt
2017-08-24 19:41 - 2017-08-24 19:41 - 000032804 _____ C:\WINDOWS\system32\AMDKernelEvents.man

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-20 20:59 - 2017-07-05 12:30 - 000000000 ____D C:\Users\dinic\AppData\Roaming\uTorrent
2017-09-20 20:51 - 2017-07-05 11:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-09-20 20:35 - 2017-07-05 14:14 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2017-09-20 20:26 - 2017-07-05 14:14 - 000000000 ____D C:\Program Files\Common Files\AV
2017-09-20 20:15 - 2017-07-05 12:57 - 000345530 _____ C:\WINDOWS\system32\perfh01B.dat
2017-09-20 20:15 - 2017-07-05 12:57 - 000103148 _____ C:\WINDOWS\system32\perfc01B.dat
2017-09-20 20:15 - 2017-07-05 10:18 - 001550248 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-20 20:10 - 2017-07-05 11:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-20 20:10 - 2017-07-05 11:13 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-09-20 20:10 - 2017-03-18 13:40 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-09-20 17:57 - 2017-07-05 10:13 - 000000000 ____D C:\Users\dinic\AppData\Local\Packages
2017-09-20 08:25 - 2017-07-05 11:52 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-09-20 08:11 - 2017-03-18 23:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-20 08:11 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-19 20:22 - 2017-07-05 11:15 - 000000000 ____D C:\Users\dinic
2017-09-19 10:08 - 2017-03-18 23:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-09-17 11:08 - 2017-07-05 10:15 - 000000000 ____D C:\Users\dinic\AppData\Roaming\Skype
2017-09-17 10:42 - 2017-07-05 13:33 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2017-09-16 11:20 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\rescache
2017-09-15 09:32 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-09-15 09:32 - 2017-03-18 23:01 - 000000000 ____D C:\WINDOWS\INF
2017-09-14 13:18 - 2017-07-05 11:36 - 000000000 ____D C:\Program Files\WinRAR
2017-09-14 13:18 - 2017-07-05 10:13 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-09-13 20:37 - 2017-03-20 06:09 - 000000000 ____D C:\WINDOWS\system32\sk
2017-09-13 20:37 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-09-13 20:37 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-09-13 20:37 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-09-13 20:37 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-09-13 20:37 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\setup
2017-09-13 20:37 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-09-13 20:37 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-09-13 20:37 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 16:25 - 2017-07-05 10:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-13 16:24 - 2017-07-05 10:27 - 138202976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-13 16:24 - 2017-03-18 22:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-13 11:35 - 2017-07-05 11:36 - 000001060 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2017-09-13 11:35 - 2017-07-05 11:36 - 000000000 ____D C:\Users\dinic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-09-13 11:35 - 2017-07-05 11:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-09-12 21:58 - 2017-07-05 12:52 - 000001179 _____ C:\Users\dinic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2017-09-10 11:39 - 2017-07-05 12:40 - 000000000 ____D C:\Users\dinic\AppData\LocalLow\AMD
2017-09-10 11:37 - 2017-07-05 11:13 - 000000000 ____D C:\Program Files\AMD
2017-09-10 11:36 - 2017-07-14 21:36 - 000000060 _____ C:\ProgramData\SoftwareUpdateTemp.xml
2017-09-10 11:36 - 2017-07-05 10:23 - 000000000 ____D C:\AMD
2017-09-10 10:47 - 2017-07-05 16:43 - 000000000 ____D C:\Users\dinic\AppData\Roaming\Epson
2017-09-09 17:50 - 2017-07-05 12:58 - 000000000 ___RD C:\Program Files (x86)\Skype
2017-09-09 17:50 - 2017-07-05 12:58 - 000000000 ____D C:\ProgramData\Skype
2017-09-07 17:37 - 2017-07-27 01:05 - 000925208 _____ (AMD) C:\WINDOWS\system32\coinst_17.30.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 012515352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 010294808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2017-09-07 17:37 - 2017-07-05 10:22 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2017-09-07 17:37 - 2017-07-05 10:22 - 002915864 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 002530328 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 001541144 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 001058328 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000864792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000822448 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2017-09-07 17:37 - 2017-07-05 10:22 - 000822448 _____ C:\WINDOWS\system32\atiapfxx.blb
2017-09-07 17:37 - 2017-07-05 10:22 - 000781848 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2017-09-07 17:37 - 2017-07-05 10:22 - 000696856 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000666648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2017-09-07 17:37 - 2017-07-05 10:22 - 000574464 _____ C:\WINDOWS\system32\amdmiracast.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000552984 _____ C:\WINDOWS\system32\dgtrayicon.exe
2017-09-07 17:37 - 2017-07-05 10:22 - 000552472 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2017-09-07 17:37 - 2017-07-05 10:22 - 000547352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000531992 _____ C:\WINDOWS\system32\GameManager64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000515096 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000484376 _____ C:\WINDOWS\system32\atieah64.exe
2017-09-07 17:37 - 2017-07-05 10:22 - 000478744 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000467992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000370200 _____ C:\WINDOWS\system32\clinfo.exe
2017-09-07 17:37 - 2017-07-05 10:22 - 000366104 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000360984 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000334872 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2017-09-07 17:37 - 2017-07-05 10:22 - 000277016 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000245784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000242712 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000204312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000196840 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000192024 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000170520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000168472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000165072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000157360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000151576 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000149104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000139744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000136216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000134168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000131944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000131944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000124952 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000116736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000115736 _____ C:\WINDOWS\system32\atidxx64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000113176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000103184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000103176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000102424 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000099864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000092184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000075800 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000069656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000045592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000043032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2017-09-07 17:37 - 2017-07-05 10:22 - 000000145 _____ C:\WINDOWS\SysWOW64\amd-vulkan32.json
2017-09-07 17:37 - 2017-07-05 10:22 - 000000145 _____ C:\WINDOWS\system32\amd-vulkan64.json
2017-09-06 18:52 - 2017-07-05 13:33 - 000000000 ____D C:\Users\dinic\AppData\Roaming\TeamViewer
2017-09-06 11:53 - 2017-07-05 13:36 - 000001046 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-09-02 17:15 - 2017-03-18 23:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-09-02 17:15 - 2017-03-18 23:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-08-29 21:15 - 2017-07-05 12:56 - 000000000 ____D C:\Users\dinic\AppData\Roaming\MPC-HC
2017-08-29 12:25 - 2017-07-05 10:15 - 000000000 ___RD C:\Users\dinic\OneDrive
2017-08-29 12:10 - 2017-07-05 13:38 - 000000000 ____D C:\Users\dinic\AppData\Local\Ubisoft Game Launcher
2017-08-29 11:11 - 2017-07-05 13:20 - 000000000 ____D C:\Users\dinic\AppData\Roaming\Origin
2017-08-29 11:10 - 2017-07-05 13:19 - 000000000 ____D C:\ProgramData\Origin
2017-08-29 11:08 - 2017-07-05 14:52 - 000003960 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1499259165
2017-08-29 11:08 - 2017-07-05 14:52 - 000001084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2017-08-29 11:08 - 2017-07-05 14:52 - 000000000 ____D C:\Program Files\Opera
2017-08-29 11:01 - 2017-07-05 16:27 - 000000000 ____D C:\ProgramData\Epson
2017-08-28 20:59 - 2017-07-05 13:07 - 000002290 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-26 16:12 - 2017-07-05 14:57 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-08-24 19:41 - 2017-07-27 01:05 - 000925208 _____ (AMD) C:\WINDOWS\system32\SET7BFD.tmp
2017-08-24 19:41 - 2017-07-27 01:05 - 000925208 _____ (AMD) C:\WINDOWS\system32\SET1545.tmp
2017-08-24 19:41 - 2017-07-05 10:22 - 001541144 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\SET1203.tmp
2017-08-24 19:41 - 2017-07-05 10:22 - 000781848 _____ (AMD) C:\WINDOWS\system32\SET7606.tmp
2017-08-24 19:41 - 2017-07-05 10:22 - 000552472 _____ (AMD) C:\WINDOWS\system32\SET7618.tmp

==================== Files in the root of some directories =======

2017-07-05 14:09 - 2017-07-05 14:09 - 000003584 _____ () C:\Users\dinic\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-14 21:36 - 2017-09-10 11:36 - 000000060 _____ () C:\ProgramData\SoftwareUpdateTemp.xml

Some files in TEMP:
====================
2017-09-15 18:41 - 2017-09-15 18:41 - 000079736 _____ (AppWork GmbH) C:\Users\dinic\AppData\Local\Temp\131499673070626441.exe
2017-09-15 18:41 - 2017-09-15 18:41 - 001793194 _____ ( ) C:\Users\dinic\AppData\Local\Temp\13149967311007341196.exe
2017-08-30 11:22 - 2017-06-08 10:26 - 000599576 _____ (Microsoft Corporation) C:\Users\dinic\AppData\Local\Temp\kernel32.dll
2017-09-15 23:11 - 2017-09-15 23:11 - 000040448 ____N () C:\Users\dinic\AppData\Local\Temp\proxy_vole9061288250235334684.dll
2017-09-09 17:49 - 2017-09-09 17:49 - 058881488 _____ (Skype Technologies S.A.) C:\Users\dinic\AppData\Local\Temp\SkypeSetup.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-09-12 14:00

==================== End of FRST.txt ============================

Re: poprosil by som o preventívu PC

Napsal: 20 zář 2017 21:07
od Rudy
Nic se neděje. Tento log potřebuji. Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-12] (Oracle Corporation)
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.oursurfing ... j90sb47493"
C:\WINDOWS\system32\SET7BFD.tmp
C:\WINDOWS\system32\SET1545.tmp
C:\WINDOWS\system32\SET1203.tmp
C:\WINDOWS\system32\SET7606.tmp
C:\WINDOWS\system32\SET7618.tmp
C:\Users\dinic\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\dinic\AppData\Local\Temp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: poprosil by som o preventívu PC

Napsal: 21 zář 2017 03:59
od bondasko
Fix result of Farbar Recovery Scan Tool (x64) Version: 20-09-2017
Ran by Michal a Janka (21-09-2017 04:58:00) Run:1
Running from C:\Users\dinic\Desktop
Loaded Profiles: Michal a Janka (Available Profiles: Michal a Janka)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-12] (Oracle Corporation)
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.oursurfing ... j90sb47493"
C:\WINDOWS\system32\SET7BFD.tmp
C:\WINDOWS\system32\SET1545.tmp
C:\WINDOWS\system32\SET1203.tmp
C:\WINDOWS\system32\SET7606.tmp
C:\WINDOWS\system32\SET7618.tmp
C:\Users\dinic\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\dinic\AppData\Local\Temp

EmptyTemp:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
Chrome StartupUrls => removed successfully
C:\WINDOWS\system32\SET7BFD.tmp => moved successfully
C:\WINDOWS\system32\SET1545.tmp => moved successfully
C:\WINDOWS\system32\SET1203.tmp => moved successfully
C:\WINDOWS\system32\SET7606.tmp => moved successfully
C:\WINDOWS\system32\SET7618.tmp => moved successfully
C:\Users\dinic\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

"C:\Users\dinic\AppData\Local\Temp" folder move:

Could not move "C:\Users\dinic\AppData\Local\Temp" => Scheduled to move on reboot.


=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 211474064 B
Java, Flash, Steam htmlcache => 69458087 B
Windows/system/drivers => 66432424 B
Edge => 175107 B
Chrome => 778007852 B
Firefox => 0 B
Opera => 382484980 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 4082 B
NetworkService => 0 B
dinic => 226969515 B

RecycleBin => 0 B
EmptyTemp: => 1.6 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 21-09-2017 04:59:07)

C:\Users\dinic\AppData\Local\Temp => moved successfully

==== End of Fixlog 04:59:07 ====

Re: poprosil by som o preventívu PC

Napsal: 21 zář 2017 16:16
od Rudy
Smazáno, log by již měl být OK.

Re: poprosil by som o preventívu PC

Napsal: 22 zář 2017 18:00
od bondasko
dakujem velmi pekne, s pozdravom a pekny vikend zelam

Re: poprosil by som o preventívu PC

Napsal: 22 zář 2017 18:08
od Rudy
Hezký víkend i vám a nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz