VIRY.CZ

Dobrý den,mám problém jsem laik upozorňuju předem:-),zapnu pc kliknu na jakoukoliv ikonu na ploše,jako že ji chci otevřít,ale otevře se mi jiná na ploše ,kurzor myši si prostě sám přeskáče přes ikony na jakou chce,zkusil jsem jinou myš,ale dělá to stejně,po nějakým čase ,to přestane dělat,když mám pc zaplý a nějakým způsobem se propracuju k otevření stránky či aplikace z plochy.
Log je zde:

c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks

c:\windows\system32\svchost.exe -k netsvcs -s WpnService
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
dashost.exe {603660e0-3727-444d-94b6227f3d6dcc87}

c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
c:\windows\syswow64\svchost.exe -k hpdevmgmt -s hpqcxs08
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker

C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localservice -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe" Minimum
"C:\Games\World_of_Tanks\WargamingGameUpdater.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Windows\V0330Mon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k netsvcs -s DoSvc
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Internet Explorer\IEXPLORE.EXE"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:6232 CREDAT:75009 /prefetch:2
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\svchost.exe -k SDRSVC
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s StorSvc
c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.26.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe" -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3316666694-3035341683-1196750294-10008_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3316666694-3035341683-1196750294-10008 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
C:\WINDOWS\system32\AUDIODG.EXE 0x4b4
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-66818ace-0e01-4083-83c4-6c8ace9b960d -SystemEventPortName:HostProcess-4b87e607-d4db-44ab-9142-f03f703887d1 -IoCancelEventPortName:HostProcess-1142984d-8c40-41d5-a2fc-555e4c8d24c3 -NonStateChangingEventPortName:HostProcess-9d8db5d8-86ad-4d1a-877f-6eed1d6c8008 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:73800995-9e40-4d7d-9c37-b5927a09b0e6 -DeviceGroupId:WpdFsGroup
C:\Windows\System32\smartscreen.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\inetcpl.cpl,ClearMyTracksByProcess Flags:411041995 WinX:0 WinY:0 IEFrame:0000000000000000
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 692 696 704 8192 700
"C:\Users\Jan\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -s WdiSystemHost

======Scheduled tasks folder======

C:\WINDOWS\tasks\HPCeeScheduleForJan.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJan (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL [2017-07-11 1524016]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 629152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OscarEditor"=C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe [2012-08-17 3345408]
"World of Tanks"=C:\Games\World_of_Tanks\WargamingGameUpdater.exe [2017-02-28 3135752]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-09-20 9856176]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-11-04 767176]
"V0330Mon.exe"=C:\WINDOWS\V0330Mon.exe [2007-04-30 32768]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"RestrictRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"RestrictRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-09-30 20:19:31 ----D---- C:\Program Files\trend micro
2017-09-28 21:33:36 ----D---- C:\rsit
2017-09-28 21:33:36 ----D---- C:\Program Files (x86)\trend micro
2017-09-28 21:05:37 ----AD---- C:\Program Files\7-Zip
2017-09-28 20:28:24 ----D---- C:\Program Files\stinger
2017-09-27 20:34:34 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2017-09-27 20:34:33 ----AD---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-09-27 20:34:33 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2017-09-27 20:34:33 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2017-09-27 19:48:56 ----D---- C:\ProgramData\HitmanPro
2017-09-26 23:18:51 ----D---- C:\32788R22FWJFW
2017-09-26 00:07:23 ----D---- C:\WINDOWS\Microsoft Antimalware
2017-09-24 20:18:39 ----D---- C:\ProgramData\SmartGuard
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2017-09-12 21:04:21 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-09-12 21:04:21 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-09-12 21:04:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-09-12 21:04:20 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-09-12 21:04:19 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2017-09-12 21:04:19 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-09-12 21:04:18 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-09-12 21:04:17 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-09-12 21:04:17 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-09-12 21:04:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-12 21:04:16 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2017-09-12 21:04:16 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-09-12 21:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-09-12 21:04:14 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-09-12 21:04:13 ----A---- C:\WINDOWS\SYSWOW64\RstrtMgr.dll
2017-09-12 21:04:13 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-09-12 21:04:13 ----A---- C:\WINDOWS\SYSWOW64\CredentialUIBroker.exe
2017-09-12 21:04:13 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-09-12 21:04:12 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-09-12 21:04:12 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-09-12 21:04:12 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-09-12 21:04:12 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-09-12 21:04:11 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-09-12 21:04:11 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-09-12 21:04:11 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-09-12 21:04:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-09-12 21:04:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-09-12 21:04:08 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-09-12 21:04:08 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2017-09-12 21:04:08 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-09-12 21:04:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\dinput8.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\tbs.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2017-09-12 21:04:03 ----A---- C:\WINDOWS\system32\BthHFSrv.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2017-09-12 21:04:01 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2017-09-12 21:04:00 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2017-09-12 21:03:59 ----A---- C:\WINDOWS\SYSWOW64\dinput.dll
2017-09-12 21:03:59 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-09-12 21:03:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2017-09-12 21:03:58 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2017-09-12 21:03:58 ----A---- C:\WINDOWS\SYSWOW64\ntprint.exe
2017-09-12 21:03:58 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-12 21:03:49 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-09-12 21:03:48 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-09-12 21:03:47 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-09-12 21:03:43 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-09-12 21:03:43 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-09-12 21:03:43 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-09-12 21:03:41 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-09-12 21:03:40 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-12 21:03:38 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-12 21:03:38 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2017-09-12 21:03:38 ----A---- C:\WINDOWS\system32\cryptngc.dll
2017-09-12 21:03:36 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2017-09-12 21:03:35 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2017-09-12 21:03:35 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2017-09-12 21:03:33 ----A---- C:\WINDOWS\system32\ngcrecovery.dll
2017-09-12 21:03:33 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-12 21:03:32 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-09-12 21:03:32 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-09-12 21:03:31 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-09-12 21:03:31 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-09-12 21:03:31 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-09-12 21:03:31 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-09-12 21:03:30 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-09-12 21:03:30 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-09-12 21:03:30 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-09-12 21:03:29 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-09-12 21:03:29 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-09-12 21:03:29 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-09-12 21:03:28 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-12 21:03:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-09-12 21:03:27 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-09-12 21:03:27 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-09-12 21:03:26 ----A---- C:\WINDOWS\system32\localspl.dll
2017-09-12 21:03:25 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-09-12 21:03:25 ----A---- C:\WINDOWS\system32\offreg.dll
2017-09-12 21:03:25 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-09-12 21:03:25 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-09-12 21:03:24 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-09-12 21:03:21 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-09-12 21:03:19 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-09-12 21:03:17 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-09-12 21:03:16 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-09-12 21:03:10 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2017-09-12 21:03:09 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-09-12 21:03:04 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-09-12 21:03:04 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-09-12 21:03:02 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-09-12 21:03:02 ----A---- C:\WINDOWS\system32\mfps.dll
2017-09-12 21:03:02 ----A---- C:\WINDOWS\system32\mfds.dll
2017-09-12 21:03:01 ----A---- C:\WINDOWS\system32\rasgcw.dll
2017-09-12 21:03:01 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-12 21:03:01 ----A---- C:\WINDOWS\system32\nettrace.dll
2017-09-12 21:03:01 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-09-12 21:03:00 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\rasplap.dll
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\rasdlg.dll
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2017-09-12 21:02:56 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-09-12 21:02:56 ----A---- C:\WINDOWS\system32\SEMgrPS.dll
2017-09-12 21:02:56 ----A---- C:\WINDOWS\system32\inetpp.dll
2017-09-12 21:02:55 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2017-09-12 21:02:55 ----A---- C:\WINDOWS\system32\ntprint.exe
2017-09-12 21:02:54 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-09-12 21:02:54 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-09-12 21:02:54 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-09-12 21:02:54 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-09-12 21:02:53 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-09-12 21:02:53 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-09-12 21:02:52 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-09-12 21:02:52 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-09-12 21:02:52 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-09-12 21:02:51 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-09-12 21:02:51 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-12 21:02:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2017-09-12 21:02:50 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\wersvc.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\WerFault.exe
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\wer.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\wc_storage.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\Faultrep.dll
2017-09-12 21:02:48 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-09-12 21:02:48 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-09-12 21:02:48 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-12 21:02:47 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-09-12 21:02:45 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-09-12 21:02:43 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-12 21:02:43 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-09-12 21:02:42 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2017-09-12 21:02:41 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-09-12 21:02:40 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-09-12 21:02:40 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-09-12 21:02:40 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-09-12 21:02:40 ----A---- C:\WINDOWS\system32\datamarketsvc.dll
2017-09-12 21:02:39 ----A---- C:\WINDOWS\system32\vss_ps.dll
2017-09-12 21:02:38 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-12 21:02:38 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-09-12 21:02:37 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2017-09-12 21:02:37 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-09-12 21:02:37 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-09-12 21:02:35 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-12 21:02:34 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-12 21:02:33 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-09-12 21:02:32 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-09-12 21:02:32 ----A---- C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-12 21:02:32 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-09-12 21:02:32 ----A---- C:\WINDOWS\system32\NotificationController.dll
2017-09-12 21:02:31 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-12 21:02:31 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-12 21:02:31 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-09-12 21:02:30 ----A---- C:\WINDOWS\system32\RstrtMgr.dll
2017-09-12 21:02:30 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-12 21:02:30 ----A---- C:\WINDOWS\system32\msIso.dll
2017-09-12 21:02:30 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-12 21:02:29 ----A---- C:\WINDOWS\system32\twinui.dll
2017-09-12 21:02:29 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-09-12 21:02:29 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-09-12 21:02:28 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-12 21:02:28 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-09-12 21:02:27 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-09-12 21:02:27 ----A---- C:\WINDOWS\explorer.exe
2017-09-12 21:02:26 ----A---- C:\WINDOWS\system32\wininet.dll
2017-09-12 21:02:26 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\combase.dll
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\cldapi.dll
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\winsrvext.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\werui.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\werconcpl.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-12 21:02:21 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-09-12 21:02:21 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-09-12 21:02:21 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-09-12 21:02:21 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-09-12 21:02:20 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-09-12 21:02:20 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2017-09-12 21:02:20 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2017-09-12 21:02:19 ----A---- C:\WINDOWS\system32\shell32.dll
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\wpx.dll
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\bcdedit.exe
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\netlogon.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-09-12 21:02:15 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-12 21:02:15 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-09-12 21:02:15 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-09-12 21:02:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-09-12 21:02:14 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2017-09-12 21:02:14 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\wevtapi.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\user32.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\wisp.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\tpmvsc.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\propsys.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\httpprxm.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\tdh.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\profsvc.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\PhoneService.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\dsreg.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\dinput8.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\win32u.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\tbs.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\setupapi.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\nltest.exe
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\csplte.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\wups.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\win32k.sys
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\srpapi.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\rasman.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\dinput.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\dab.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-09-12 21:02:08 ----A---- C:\WINDOWS\system32\shdocvw.dll
2017-09-12 21:02:08 ----A---- C:\WINDOWS\system32\authz.dll
2017-09-12 21:02:08 ----A---- C:\WINDOWS\system32\appinfo.dll

======List of files/folders modified in the last 1 month======

2017-09-30 20:19:36 ----D---- C:\WINDOWS\Prefetch
2017-09-30 20:19:31 ----RD---- C:\Program Files
2017-09-30 20:03:02 ----D---- C:\WINDOWS\Temp
2017-09-30 19:34:29 ----D---- C:\WINDOWS\System32
2017-09-30 19:34:29 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-30 19:28:03 ----D---- C:\Windows
2017-09-30 19:23:49 ----D---- C:\WINDOWS\system32\sru
2017-09-30 19:23:21 ----D---- C:\WINDOWS\INF
2017-09-30 19:14:52 ----RD---- C:\WINDOWS\Microsoft.NET
2017-09-30 07:44:07 ----D---- C:\WINDOWS\debug
2017-09-30 07:42:06 ----D---- C:\WINDOWS\Tasks
2017-09-30 07:42:06 ----D---- C:\WINDOWS\system32\Tasks
2017-09-30 07:42:06 ----D---- C:\Program Files (x86)\Google
2017-09-30 07:40:47 ----RD---- C:\Program Files (x86)
2017-09-29 21:28:36 ----D---- C:\WINDOWS\system32\SleepStudy
2017-09-29 20:35:46 ----D---- C:\WINDOWS\AppReadiness
2017-09-29 20:35:45 ----HD---- C:\Program Files\WindowsApps
2017-09-28 21:20:18 ----SHD---- C:\System Volume Information
2017-09-28 21:01:35 ----D---- C:\WINDOWS\system32\drivers
2017-09-28 21:00:44 ----D---- C:\AdwCleaner
2017-09-27 20:49:31 ----D---- C:\WINDOWS\en-US
2017-09-27 19:48:56 ----HD---- C:\ProgramData
2017-09-26 22:45:32 ----D---- C:\WINDOWS\system32\WDI
2017-09-26 00:09:37 ----D---- C:\WINDOWS\system32\config
2017-09-21 20:16:53 ----D---- C:\WINDOWS\system32\catroot2
2017-09-14 11:57:07 ----D---- C:\WINDOWS\rescache
2017-09-14 11:53:52 ----RD---- C:\WINDOWS\assembly
2017-09-14 11:43:06 ----D---- C:\WINDOWS\system32\DriverStore
2017-09-14 11:43:05 ----D---- C:\WINDOWS\WinSxS
2017-09-14 08:43:32 ----HD---- C:\Config.Msi
2017-09-13 22:05:15 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-09-13 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-09-13 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-09-13 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-09-13 22:05:14 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-09-13 22:05:14 ----D---- C:\WINDOWS\SysWOW64
2017-09-13 22:05:13 ----SD---- C:\WINDOWS\system32\F12
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\wbem
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\setup
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\en-US
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\en
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\cs-CZ
2017-09-13 22:05:12 ----D---- C:\WINDOWS\system32\cs
2017-09-13 22:05:11 ----D---- C:\WINDOWS\ShellExperiences
2017-09-13 22:05:08 ----D---- C:\Program Files\Windows Photo Viewer
2017-09-13 22:05:08 ----D---- C:\Program Files\Windows Mail
2017-09-13 22:05:08 ----D---- C:\Program Files\Internet Explorer
2017-09-13 22:05:08 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 22:05:08 ----D---- C:\Program Files (x86)\Windows Mail
2017-09-13 22:05:08 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 21:38:50 ----SHD---- C:\WINDOWS\Installer
2017-09-13 21:38:49 ----D---- C:\ProgramData\Microsoft Help
2017-09-13 21:06:24 ----D---- C:\WINDOWS\system32\MRT
2017-09-12 21:20:59 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-09-12 21:20:49 ----D---- C:\WINDOWS\CbsTemp
2017-09-12 21:01:14 ----D---- C:\WINDOWS\system32\CatRoot
2017-09-08 23:13:45 ----D---- C:\WINDOWS\SoftwareDistribution
2017-09-08 21:33:40 ----D---- C:\WINDOWS\system32\NDF
2017-09-02 17:15:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-08-31 20:34:16 ----D---- C:\Users\Jan\AppData\Roaming\Awesomium

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 49568]
R0 JRAID;JRAID; C:\WINDOWS\System32\drivers\jraid.sys [2000-01-01 123704]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-03-18 54272]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-03-18 8192]
R1 MpKsldbff25a3;MpKsldbff25a3; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{43F23B76-F655-4D47-93A2-B060540F238C}\MpKsldbff25a3.sys [2017-09-30 58120]
R1 MpKslfad2f817;MpKslfad2f817; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6BEC43F4-CE36-49F7-884F-C605267EB4FC}\MpKslfad2f817.sys [2017-09-29 58120]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 14336]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-03-18 50688]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2017-03-18 79872]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-18 21648880]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-18 674288]
R3 AtiHDAudioService;@oem10.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-07-22 102912]
R3 MTsensor;@oem22.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2013-05-17 17280]
R3 NVNET;@netnvm64.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6264.sys [2017-03-18 344192]
S0 amdkmafd;@oem7.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-06-03 31992]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-03-18 123808]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-03-18 103328]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 64416]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-03-18 58784]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-03-18 61848]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-03-18 91040]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2017-03-18 36760]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 12288]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 17920]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-03-20 127904]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-03-20 161696]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-03-20 143776]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-05 39424]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 53664]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-03-18 122880]
S3 dot4;@oem24.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2015-12-08 151968]
S3 Dot4Print;@oem13.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2015-12-08 27040]
S3 dot4usb;@oem24.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2015-12-08 49056]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-03-18 21504]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-03-18 51104]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-03-18 74648]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-03-18 347032]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-03-18 2104224]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-03-18 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-03-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-03-18 85504]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-03-18 165376]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-03-18 168448]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-03-18 526240]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 36864]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-03-18 120320]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 51104]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-03-18 842656]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-03-20 230816]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-03-18 108960]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 122368]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-03-18 80896]
S3 nvstor64;nvstor64; C:\WINDOWS\System32\drivers\nvstor64.sys [2000-01-01 244328]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-03-18 101376]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-03-18 936864]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-03-18 31128]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-03-20 40352]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2017-09-05 104960]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2017-03-18 179200]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2017-07-28 51712]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2017-03-18 45568]
S4 UevAgentDriver;@%systemroot%\system32\drivers\UevAgentDriver.sys,-101; C:\WINDOWS\system32\drivers\UevAgentDriver.sys [2017-03-20 40344]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-18 255472]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-04 351944]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 CDPUserSvc_387b2;Uživatelská služba platformy připojených zařízení_387b2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\syswow64\svchost.exe [2017-03-18 40904]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-07-06 321896]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-11-25 192200]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 OneSyncSvc_387b2;Hostitel synchronizace_387b2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-07-16 336320]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\syswow64\svchost.exe [2017-03-18 40904]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R3 PimIndexMaintenanceSvc_387b2;Data kontaktů_387b2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevicesFlowUserSvc_387b2;Tok zařízení_387b2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-03-18 86528]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService_387b2;Služba zasílání zpráv_387b2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\syswow64\GameMon.des [2016-03-03 3833776]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-03-20 3913064]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-18 1284608]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-03-18 891904]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2017-03-18 302592]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-09-05 849824]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]

-----------------EOF-----------------

Zdravím!
Co je to za log? Kde je hlavička logu? Bez ní ani nevím, v jakém OS se pohybuji. Nejprve zkuste vyměnit myšku za jinou a vyzkoušejte, zda se chová jinak, či stejně.

Myš jsem zkoušel jinou dělala to taky,log je z RSIT,zkusím ho znova:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2017-10-01 10:28:21
Microsoft Windows 10 Pro
System drive C: has 847 GB (89%) free of 953 GB
Total RAM: 4094 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:28:23, on 1.10.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0608)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe
C:\Games\World_of_Tanks\WargamingGameUpdater.exe
C:\Windows\V0330Mon.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Jan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [V0330Mon.exe] C:\WINDOWS\V0330Mon.exe
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe" Minimum
O4 - HKCU\..\Run: [World of Tanks] "C:\Games\World_of_Tanks\WargamingGameUpdater.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office16\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://files.creative.com/Web/softwareu ... PIDPDE.cab
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} (Creative Software AutoUpdate 2) - http://files.creative.com/Web/softwareu ... TSUEng.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://files.creative.com/Web/softwareu ... /CTPID.cab
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8280 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
C:\WINDOWS\system32\atiesrxx.exe
c:\windows\system32\svchost.exe -k netsvcs -s Themes
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
c:\windows\system32\svchost.exe -k localservice -s EventSystem
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
c:\windows\system32\svchost.exe -k localservice -s nsi
c:\windows\system32\svchost.exe -k netsvcs -s SENS
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -s FontCache
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
c:\windows\system32\svchost.exe -k localservice -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc
c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
c:\windows\syswow64\svchost.exe -k hpdevmgmt -s hpqddsvc
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc

c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks

c:\windows\system32\svchost.exe -k netsvcs -s WpnService
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
dashost.exe {603660e0-3727-444d-94b6227f3d6dcc87}

c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
c:\windows\syswow64\svchost.exe -k hpdevmgmt -s hpqcxs08
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker

C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localservice -s LicenseManager
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k netsvcs -s DoSvc
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
C:\WINDOWS\system32\svchost.exe -k SDRSVC
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s StorSvc
c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -s gpsvc
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s lmhosts
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE

"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe" Minimum
"C:\Games\World_of_Tanks\WargamingGameUpdater.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Windows\V0330Mon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Internet Explorer\IEXPLORE.EXE"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:8772 CREDAT:75009 /prefetch:2
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -s WdiSystemHost
c:\windows\system32\svchost.exe -k netsvcs -s BITS
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\AUDIODG.EXE 0x4bc
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\Jan\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\HPCeeScheduleForJan.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJan (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL [2017-07-11 1524016]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 629152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OscarEditor"=C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe [2012-08-17 3345408]
"World of Tanks"=C:\Games\World_of_Tanks\WargamingGameUpdater.exe [2017-02-28 3135752]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-09-20 9856176]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-11-04 767176]
"V0330Mon.exe"=C:\WINDOWS\V0330Mon.exe [2007-04-30 32768]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"RestrictRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"RestrictRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-09-30 20:33:12 ----HD---- C:\$SysReset
2017-09-30 20:19:31 ----D---- C:\Program Files\trend micro
2017-09-28 21:33:36 ----D---- C:\rsit
2017-09-28 21:33:36 ----D---- C:\Program Files (x86)\trend micro
2017-09-28 21:05:37 ----AD---- C:\Program Files\7-Zip
2017-09-28 20:28:24 ----D---- C:\Program Files\stinger
2017-09-27 20:34:34 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2017-09-27 20:34:33 ----AD---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-09-27 20:34:33 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2017-09-27 20:34:33 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2017-09-27 19:48:56 ----D---- C:\ProgramData\HitmanPro
2017-09-26 23:18:51 ----D---- C:\32788R22FWJFW
2017-09-26 00:07:23 ----D---- C:\WINDOWS\Microsoft Antimalware
2017-09-24 20:18:39 ----D---- C:\ProgramData\SmartGuard
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-09-12 21:04:23 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-09-12 21:04:22 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2017-09-12 21:04:21 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-09-12 21:04:21 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-09-12 21:04:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-09-12 21:04:20 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-09-12 21:04:19 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2017-09-12 21:04:19 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-09-12 21:04:18 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-09-12 21:04:17 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-09-12 21:04:17 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-09-12 21:04:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-12 21:04:16 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2017-09-12 21:04:16 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-09-12 21:04:15 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-09-12 21:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-09-12 21:04:14 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-09-12 21:04:13 ----A---- C:\WINDOWS\SYSWOW64\RstrtMgr.dll
2017-09-12 21:04:13 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-09-12 21:04:13 ----A---- C:\WINDOWS\SYSWOW64\CredentialUIBroker.exe
2017-09-12 21:04:13 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-09-12 21:04:12 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-09-12 21:04:12 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-09-12 21:04:12 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-09-12 21:04:12 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-09-12 21:04:11 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-09-12 21:04:11 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-09-12 21:04:11 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-09-12 21:04:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-09-12 21:04:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-09-12 21:04:08 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-09-12 21:04:08 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2017-09-12 21:04:08 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-09-12 21:04:07 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-09-12 21:04:06 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-09-12 21:04:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-09-12 21:04:05 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\dinput8.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-09-12 21:04:04 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\tbs.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-09-12 21:04:03 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2017-09-12 21:04:03 ----A---- C:\WINDOWS\system32\BthHFSrv.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2017-09-12 21:04:02 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2017-09-12 21:04:01 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2017-09-12 21:04:00 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2017-09-12 21:03:59 ----A---- C:\WINDOWS\SYSWOW64\dinput.dll
2017-09-12 21:03:59 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-09-12 21:03:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2017-09-12 21:03:58 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2017-09-12 21:03:58 ----A---- C:\WINDOWS\SYSWOW64\ntprint.exe
2017-09-12 21:03:58 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-12 21:03:49 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-09-12 21:03:48 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-09-12 21:03:47 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-09-12 21:03:43 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-09-12 21:03:43 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-09-12 21:03:43 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-09-12 21:03:41 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-09-12 21:03:40 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-12 21:03:38 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-12 21:03:38 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2017-09-12 21:03:38 ----A---- C:\WINDOWS\system32\cryptngc.dll
2017-09-12 21:03:36 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2017-09-12 21:03:35 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2017-09-12 21:03:35 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2017-09-12 21:03:33 ----A---- C:\WINDOWS\system32\ngcrecovery.dll
2017-09-12 21:03:33 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-12 21:03:32 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-09-12 21:03:32 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-09-12 21:03:31 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-09-12 21:03:31 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-09-12 21:03:31 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-09-12 21:03:31 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-09-12 21:03:30 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-09-12 21:03:30 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-09-12 21:03:30 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-09-12 21:03:29 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-09-12 21:03:29 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-09-12 21:03:29 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-09-12 21:03:28 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-12 21:03:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-09-12 21:03:27 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-09-12 21:03:27 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-09-12 21:03:26 ----A---- C:\WINDOWS\system32\localspl.dll
2017-09-12 21:03:25 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-09-12 21:03:25 ----A---- C:\WINDOWS\system32\offreg.dll
2017-09-12 21:03:25 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-09-12 21:03:25 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-09-12 21:03:24 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-09-12 21:03:21 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-09-12 21:03:19 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-09-12 21:03:17 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-09-12 21:03:16 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-09-12 21:03:10 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2017-09-12 21:03:09 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-09-12 21:03:04 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-09-12 21:03:04 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-09-12 21:03:02 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-09-12 21:03:02 ----A---- C:\WINDOWS\system32\mfps.dll
2017-09-12 21:03:02 ----A---- C:\WINDOWS\system32\mfds.dll
2017-09-12 21:03:01 ----A---- C:\WINDOWS\system32\rasgcw.dll
2017-09-12 21:03:01 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-12 21:03:01 ----A---- C:\WINDOWS\system32\nettrace.dll
2017-09-12 21:03:01 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-09-12 21:03:00 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\rasplap.dll
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\rasdlg.dll
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2017-09-12 21:02:59 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2017-09-12 21:02:56 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-09-12 21:02:56 ----A---- C:\WINDOWS\system32\SEMgrPS.dll
2017-09-12 21:02:56 ----A---- C:\WINDOWS\system32\inetpp.dll
2017-09-12 21:02:55 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2017-09-12 21:02:55 ----A---- C:\WINDOWS\system32\ntprint.exe
2017-09-12 21:02:54 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-09-12 21:02:54 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-09-12 21:02:54 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-09-12 21:02:54 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-09-12 21:02:53 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-09-12 21:02:53 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-09-12 21:02:52 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-09-12 21:02:52 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-09-12 21:02:52 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-09-12 21:02:51 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-09-12 21:02:51 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-12 21:02:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2017-09-12 21:02:50 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\wersvc.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\WerFault.exe
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\wer.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\wc_storage.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-09-12 21:02:49 ----A---- C:\WINDOWS\system32\Faultrep.dll
2017-09-12 21:02:48 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-09-12 21:02:48 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-09-12 21:02:48 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-12 21:02:47 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-09-12 21:02:45 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-09-12 21:02:43 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-12 21:02:43 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-09-12 21:02:42 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2017-09-12 21:02:41 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-09-12 21:02:40 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-09-12 21:02:40 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-09-12 21:02:40 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-09-12 21:02:40 ----A---- C:\WINDOWS\system32\datamarketsvc.dll
2017-09-12 21:02:39 ----A---- C:\WINDOWS\system32\vss_ps.dll
2017-09-12 21:02:38 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-12 21:02:38 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-09-12 21:02:37 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2017-09-12 21:02:37 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-09-12 21:02:37 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-09-12 21:02:35 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-12 21:02:34 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-12 21:02:33 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-09-12 21:02:32 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-09-12 21:02:32 ----A---- C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-12 21:02:32 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-09-12 21:02:32 ----A---- C:\WINDOWS\system32\NotificationController.dll
2017-09-12 21:02:31 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-12 21:02:31 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-12 21:02:31 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-09-12 21:02:30 ----A---- C:\WINDOWS\system32\RstrtMgr.dll
2017-09-12 21:02:30 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-12 21:02:30 ----A---- C:\WINDOWS\system32\msIso.dll
2017-09-12 21:02:30 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-12 21:02:29 ----A---- C:\WINDOWS\system32\twinui.dll
2017-09-12 21:02:29 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-09-12 21:02:29 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-09-12 21:02:28 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-12 21:02:28 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-09-12 21:02:27 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-09-12 21:02:27 ----A---- C:\WINDOWS\explorer.exe
2017-09-12 21:02:26 ----A---- C:\WINDOWS\system32\wininet.dll
2017-09-12 21:02:26 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2017-09-12 21:02:25 ----A---- C:\WINDOWS\system32\combase.dll
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\cldapi.dll
2017-09-12 21:02:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\winsrvext.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\werui.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\werconcpl.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-09-12 21:02:23 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-12 21:02:22 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-12 21:02:21 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-09-12 21:02:21 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-09-12 21:02:21 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-09-12 21:02:21 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-09-12 21:02:20 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-09-12 21:02:20 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2017-09-12 21:02:20 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2017-09-12 21:02:19 ----A---- C:\WINDOWS\system32\shell32.dll
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\wpx.dll
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\bcdedit.exe
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-09-12 21:02:18 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-09-12 21:02:17 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\netlogon.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-09-12 21:02:16 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-09-12 21:02:15 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-12 21:02:15 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-09-12 21:02:15 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-09-12 21:02:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-09-12 21:02:14 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2017-09-12 21:02:14 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\wevtapi.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\user32.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2017-09-12 21:02:13 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\wisp.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\tpmvsc.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\propsys.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-09-12 21:02:12 ----A---- C:\WINDOWS\system32\httpprxm.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\tdh.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\profsvc.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\PhoneService.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\dsreg.dll
2017-09-12 21:02:11 ----A---- C:\WINDOWS\system32\dinput8.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\win32u.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\tbs.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\setupapi.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\nltest.exe
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\csplte.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2017-09-12 21:02:10 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\wups.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\win32k.sys
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\srpapi.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\rasman.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\dinput.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\dab.dll
2017-09-12 21:02:09 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-09-12 21:02:08 ----A---- C:\WINDOWS\system32\shdocvw.dll
2017-09-12 21:02:08 ----A---- C:\WINDOWS\system32\authz.dll
2017-09-12 21:02:08 ----A---- C:\WINDOWS\system32\appinfo.dll

======List of files/folders modified in the last 1 month======

2017-10-01 10:21:05 ----D---- C:\WINDOWS\Prefetch
2017-10-01 10:20:55 ----D---- C:\WINDOWS\Temp
2017-10-01 10:20:51 ----D---- C:\WINDOWS\system32\sru
2017-09-30 22:59:25 ----D---- C:\WINDOWS\system32\SleepStudy
2017-09-30 20:19:31 ----RD---- C:\Program Files
2017-09-30 19:34:29 ----D---- C:\WINDOWS\System32
2017-09-30 19:34:29 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-30 19:28:03 ----D---- C:\Windows
2017-09-30 19:23:21 ----D---- C:\WINDOWS\INF
2017-09-30 19:14:52 ----RD---- C:\WINDOWS\Microsoft.NET
2017-09-30 07:44:07 ----D---- C:\WINDOWS\debug
2017-09-30 07:42:06 ----D---- C:\WINDOWS\Tasks
2017-09-30 07:42:06 ----D---- C:\WINDOWS\system32\Tasks
2017-09-30 07:42:06 ----D---- C:\Program Files (x86)\Google
2017-09-30 07:40:47 ----RD---- C:\Program Files (x86)
2017-09-29 20:35:46 ----D---- C:\WINDOWS\AppReadiness
2017-09-29 20:35:45 ----HD---- C:\Program Files\WindowsApps
2017-09-28 21:20:18 ----SHD---- C:\System Volume Information
2017-09-28 21:01:35 ----D---- C:\WINDOWS\system32\drivers
2017-09-28 21:00:44 ----D---- C:\AdwCleaner
2017-09-27 20:49:31 ----D---- C:\WINDOWS\en-US
2017-09-27 19:48:56 ----HD---- C:\ProgramData
2017-09-26 22:45:32 ----D---- C:\WINDOWS\system32\WDI
2017-09-26 00:09:37 ----D---- C:\WINDOWS\system32\config
2017-09-21 20:16:53 ----D---- C:\WINDOWS\system32\catroot2
2017-09-14 11:57:07 ----D---- C:\WINDOWS\rescache
2017-09-14 11:53:52 ----RD---- C:\WINDOWS\assembly
2017-09-14 11:43:06 ----D---- C:\WINDOWS\system32\DriverStore
2017-09-14 11:43:05 ----D---- C:\WINDOWS\WinSxS
2017-09-14 08:43:32 ----HD---- C:\Config.Msi
2017-09-13 22:05:15 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-09-13 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-09-13 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-09-13 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-09-13 22:05:14 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-09-13 22:05:14 ----D---- C:\WINDOWS\SysWOW64
2017-09-13 22:05:13 ----SD---- C:\WINDOWS\system32\F12
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\wbem
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\setup
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\en-US
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\en
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-09-13 22:05:13 ----D---- C:\WINDOWS\system32\cs-CZ
2017-09-13 22:05:12 ----D---- C:\WINDOWS\system32\cs
2017-09-13 22:05:11 ----D---- C:\WINDOWS\ShellExperiences
2017-09-13 22:05:08 ----D---- C:\Program Files\Windows Photo Viewer
2017-09-13 22:05:08 ----D---- C:\Program Files\Windows Mail
2017-09-13 22:05:08 ----D---- C:\Program Files\Internet Explorer
2017-09-13 22:05:08 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 22:05:08 ----D---- C:\Program Files (x86)\Windows Mail
2017-09-13 22:05:08 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 21:38:50 ----SHD---- C:\WINDOWS\Installer
2017-09-13 21:38:49 ----D---- C:\ProgramData\Microsoft Help
2017-09-13 21:06:24 ----D---- C:\WINDOWS\system32\MRT
2017-09-12 21:20:59 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-09-12 21:20:49 ----D---- C:\WINDOWS\CbsTemp
2017-09-12 21:01:14 ----D---- C:\WINDOWS\system32\CatRoot
2017-09-08 23:13:45 ----D---- C:\WINDOWS\SoftwareDistribution
2017-09-08 21:33:40 ----D---- C:\WINDOWS\system32\NDF
2017-09-02 17:15:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 49568]
R0 JRAID;JRAID; C:\WINDOWS\System32\drivers\jraid.sys [2000-01-01 123704]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-03-18 54272]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-03-18 8192]
R1 MpKsldbff25a3;MpKsldbff25a3; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{43F23B76-F655-4D47-93A2-B060540F238C}\MpKsldbff25a3.sys [2017-09-30 58120]
R1 MpKslfad2f817;MpKslfad2f817; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6BEC43F4-CE36-49F7-884F-C605267EB4FC}\MpKslfad2f817.sys [2017-09-29 58120]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 14336]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-03-18 50688]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2017-03-18 79872]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-18 21648880]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-18 674288]
R3 AtiHDAudioService;@oem10.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-07-22 102912]
R3 MTsensor;@oem22.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2013-05-17 17280]
R3 NVNET;@netnvm64.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6264.sys [2017-03-18 344192]
S0 amdkmafd;@oem7.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-06-03 31992]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-03-18 123808]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-03-18 103328]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 64416]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-03-18 58784]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-03-18 61848]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-03-18 91040]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2017-03-18 36760]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 12288]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 17920]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-03-20 127904]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-03-20 161696]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-03-20 143776]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-05 39424]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 53664]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-03-18 122880]
S3 dot4;@oem24.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2015-12-08 151968]
S3 Dot4Print;@oem13.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2015-12-08 27040]
S3 dot4usb;@oem24.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2015-12-08 49056]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-03-18 21504]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-03-18 51104]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-03-18 74648]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-03-18 347032]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-03-18 2104224]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-03-18 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-03-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-03-18 85504]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-03-18 165376]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-03-18 168448]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-03-18 526240]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 36864]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-03-18 120320]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 51104]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-03-18 842656]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-03-20 230816]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-03-18 108960]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 122368]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-03-18 80896]
S3 nvstor64;nvstor64; C:\WINDOWS\System32\drivers\nvstor64.sys [2000-01-01 244328]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-03-18 101376]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-03-18 936864]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-03-18 31128]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-03-20 40352]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2017-09-05 104960]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2017-03-18 179200]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2017-07-28 51712]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2017-03-18 45568]
S4 UevAgentDriver;@%systemroot%\system32\drivers\UevAgentDriver.sys,-101; C:\WINDOWS\system32\drivers\UevAgentDriver.sys [2017-03-20 40344]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-18 255472]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-04 351944]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 CDPUserSvc_2758e13;Uživatelská služba platformy připojených zařízení_2758e13; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\syswow64\svchost.exe [2017-03-18 40904]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-07-06 321896]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-11-25 192200]
R2 OneSyncSvc_2758e13;Hostitel synchronizace_2758e13; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-07-16 336320]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\syswow64\svchost.exe [2017-03-18 40904]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevicesFlowUserSvc_2758e13;Tok zařízení_2758e13; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-03-18 86528]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService_2758e13;Služba zasílání zpráv_2758e13; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\syswow64\GameMon.des [2016-03-03 3833776]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 PimIndexMaintenanceSvc_2758e13;Data kontaktů_2758e13; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-03-20 3913064]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-18 1284608]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-03-18 891904]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2017-03-18 302592]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-09-05 849824]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]

-----------------EOF-----------------

Zdravím!

Ted spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Nic to nenašlo:
# AdwCleaner 7.0.3.1 - Logfile created on Sun Oct 01 18:00:53 2017
# Updated on 2017/29/09 by Malwarebytes
# Database: 09-29-2017.1
# Running on Windows 10 Pro (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [1420 B] - [2016/10/23 13:50:39]
C:/AdwCleaner/AdwCleaner[C2].txt - [1223 B] - [2017/9/28 19:0:44]
C:/AdwCleaner/AdwCleaner[S0].txt - [1868 B] - [2016/10/23 13:49:58]
C:/AdwCleaner/AdwCleaner[S1].txt - [1542 B] - [2017/9/28 19:0:23]


########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt ##########

OK. Dejte log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=152707 .

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-10-2017 01
Ran by Jan (administrator) on JAN-PC (03-10-2017 08:27:45)
Running from C:\Users\Jan\Desktop
Loaded Profiles: Jan (Available Profiles: Jan)
Platform: Windows 10 Pro Version 1703 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
() C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe
(Wargaming.net) C:\Games\World_of_Tanks\WargamingGameUpdater.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Creative Technology Ltd.) C:\Windows\V0330Mon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(forum.viry.cz) C:\Users\Jan\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [V0330Mon.exe] => C:\WINDOWS\V0330Mon.exe [32768 2007-04-30] (Creative Technology Ltd.)
HKLM\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-3316666694-3035341683-1196750294-1000\...\Run: [OscarEditor] => C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe [3345408 2012-08-17] ()
HKU\S-1-5-21-3316666694-3035341683-1196750294-1000\...\Run: [World of Tanks] => C:\Games\World_of_Tanks\WargamingGameUpdater.exe [3135752 2017-02-28] (Wargaming.net)
HKU\S-1-5-21-3316666694-3035341683-1196750294-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9856176 2017-09-20] (Piriform Ltd)
HKU\S-1-5-21-3316666694-3035341683-1196750294-1000\...\Policies\Explorer: [RestrictRun] 0

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.10 192.168.222.12
Tcpip\..\Interfaces\{5e775d7d-4a32-41bc-8e31-8de365f87d86}: [DhcpNameServer] 10.0.0.10 192.168.222.12

Internet Explorer:
==================
HKU\S-1-5-21-3316666694-3035341683-1196750294-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.cz/
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [321896 2017-07-06] (HP Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2016-11-25] ()
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3833776 2016-03-03] (INCA Internet Co., Ltd.)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-16] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-07-22] (Advanced Micro Devices)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2015-12-08] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2015-12-08] (Windows (R) Win 7 DDK provider)
R1 MpKslee9ebe65; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9B165705-B0F2-43A2-8F2E-A315F038BC41}\MpKslee9ebe65.sys [58120 2017-10-02] (Microsoft Corporation)
R1 MpKslfad2f817; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6BEC43F4-CE36-49F7-884F-C605267EB4FC}\MpKslfad2f817.sys [58120 2017-09-29] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 V0330VID; C:\WINDOWS\system32\DRIVERS\V0330Vid.sys [193312 2007-08-08] (Creative Technology Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-09-27] (Zemana Ltd.)
S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-03 08:27 - 2017-10-03 08:28 - 000008811 _____ C:\Users\Jan\Desktop\FRST.txt
2017-10-03 08:27 - 2017-10-03 08:27 - 000000000 ____D C:\FRST
2017-10-03 08:25 - 2017-10-03 08:24 - 000112640 _____ (forum.viry.cz) C:\Users\Jan\Desktop\FRSTLauncher.exe
2017-10-03 08:24 - 2017-10-03 08:24 - 000112640 _____ (forum.viry.cz) C:\Users\Jan\Downloads\FRSTLauncher.exe
2017-10-03 08:18 - 2017-10-03 08:15 - 002399744 _____ (Farbar) C:\Users\Jan\Desktop\FRST64.exe
2017-10-03 08:16 - 2017-10-03 08:16 - 002399744 _____ (Farbar) C:\Users\Jan\Downloads\FRST64 (1).exe
2017-10-03 08:14 - 2017-10-03 08:15 - 002399744 _____ (Farbar) C:\Users\Jan\Downloads\FRST64.exe
2017-10-01 19:56 - 2017-10-01 19:55 - 008250832 _____ (Malwarebytes) C:\Users\Jan\Desktop\adwcleaner_7.0.3.1.exe
2017-10-01 19:55 - 2017-10-01 19:55 - 008250832 _____ (Malwarebytes) C:\Users\Jan\Downloads\adwcleaner_7.0.3.1.exe
2017-09-30 20:33 - 2017-09-30 20:33 - 000000000 ___HD C:\$SysReset
2017-09-30 20:19 - 2017-10-01 10:28 - 000000000 ____D C:\Program Files\trend micro
2017-09-30 20:18 - 2017-09-30 20:18 - 001222144 _____ C:\Users\Jan\Downloads\RSITx64.exe
2017-09-30 18:59 - 2017-09-30 18:59 - 019679558 _____ C:\Users\Jan\Downloads\lineage2cz_dark_elmore_patch.zip
2017-09-30 07:40 - 2017-09-30 07:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-09-30 07:38 - 2017-09-30 07:38 - 009809688 _____ (Piriform Ltd) C:\Users\Jan\Downloads\ccsetup535.exe
2017-09-28 21:33 - 2017-09-28 21:33 - 000000000 ____D C:\rsit
2017-09-28 21:33 - 2017-09-28 21:33 - 000000000 ____D C:\Program Files (x86)\trend micro
2017-09-28 21:15 - 2017-09-28 21:15 - 000000550 _____ C:\Users\Jan\Desktop\JRT.txt
2017-09-28 21:10 - 2017-09-28 21:10 - 001663040 _____ (Malwarebytes) C:\Users\Jan\Downloads\JRT.exe
2017-09-28 21:05 - 2017-09-30 19:26 - 000000000 ____D C:\Program Files\7-Zip
2017-09-28 21:05 - 2017-09-28 21:05 - 001407310 _____ (Igor Pavlov) C:\Users\Jan\Downloads\7z1701-x64.exe
2017-09-28 21:05 - 2017-09-28 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-09-28 20:28 - 2017-09-28 20:57 - 000000000 ____D C:\Program Files\stinger
2017-09-27 20:34 - 2017-09-27 20:34 - 000001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2017-09-27 20:34 - 2017-09-27 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2017-09-27 20:34 - 2017-09-27 20:34 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-09-27 20:34 - 2016-03-10 14:09 - 000065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2017-09-27 20:34 - 2016-03-10 14:08 - 000140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2017-09-27 20:34 - 2016-03-10 14:08 - 000027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-09-27 19:48 - 2017-09-27 20:01 - 000000000 ____D C:\ProgramData\HitmanPro
2017-09-26 23:18 - 2017-09-26 23:19 - 000000000 ____D C:\32788R22FWJFW
2017-09-26 19:50 - 2017-09-26 19:50 - 000000000 ____D C:\Users\Jan\AppData\Local\ESET
2017-09-26 18:55 - 2017-09-26 18:55 - 000003558 _____ C:\Users\Jan\Desktop\l2.zip
2017-09-26 00:09 - 2017-09-28 21:01 - 090177536 _____ C:\WINDOWS\system32\config\SOFTWARE
2017-09-26 00:07 - 2017-09-26 00:07 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2017-09-25 16:10 - 2017-09-25 16:10 - 000041435 _____ C:\Users\Jan\Downloads\2684064 smlouva vodafon.pdf
2017-09-24 20:18 - 2017-09-25 23:31 - 000000000 ____D C:\ProgramData\SmartGuard
2017-09-24 20:17 - 2017-09-25 23:30 - 000001210 _____ C:\Users\Jan\Desktop\DE.lnk
2017-09-22 10:56 - 2017-09-28 21:38 - 000000000 ____D C:\Users\Jan\Desktop\l2
2017-09-13 21:13 - 2017-09-28 20:26 - 000000470 _____ C:\Users\Jan\Desktop\Sport HD streams, highlights, livescore - Streamcomando.com.website
2017-09-12 21:12 - 2017-09-12 21:19 - 000000000 ____D C:\Users\Jan\Desktop\z sd karty
2017-09-12 21:04 - 2017-09-05 07:30 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-09-12 21:04 - 2017-09-05 07:21 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-09-12 21:04 - 2017-09-05 07:12 - 001409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-09-12 21:04 - 2017-09-05 07:12 - 001292880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-09-12 21:04 - 2017-09-05 07:12 - 000627080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-09-12 21:04 - 2017-09-05 07:12 - 000081176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2017-09-12 21:04 - 2017-09-05 06:53 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-09-12 21:04 - 2017-09-05 06:52 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-09-12 21:04 - 2017-09-05 06:50 - 004330920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2017-09-12 21:04 - 2017-09-05 06:46 - 004471888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-09-12 21:04 - 2017-09-05 06:45 - 005821496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-09-12 21:04 - 2017-09-05 06:45 - 002476712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-09-12 21:04 - 2017-09-05 06:45 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-09-12 21:04 - 2017-09-05 06:45 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-09-12 21:04 - 2017-09-05 06:45 - 000085784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2017-09-12 21:04 - 2017-09-05 06:44 - 000569264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-09-12 21:04 - 2017-09-05 06:43 - 000611096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-09-12 21:04 - 2017-09-05 06:43 - 000359560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-09-12 21:04 - 2017-09-05 06:43 - 000280480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-09-12 21:04 - 2017-09-05 06:43 - 000169376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-09-12 21:04 - 2017-09-05 06:43 - 000042456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-09-12 21:04 - 2017-09-05 06:42 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-09-12 21:04 - 2017-09-05 06:42 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-09-12 21:04 - 2017-09-05 06:42 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-09-12 21:04 - 2017-09-05 06:42 - 000291904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-09-12 21:04 - 2017-09-05 06:42 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-09-12 21:04 - 2017-09-05 06:41 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-09-12 21:04 - 2017-09-05 06:41 - 006761560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-12 21:04 - 2017-09-05 06:41 - 004671832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-09-12 21:04 - 2017-09-05 06:41 - 001106904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-09-12 21:04 - 2017-09-05 06:41 - 001013912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-09-12 21:04 - 2017-09-05 06:40 - 000052768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-09-12 21:04 - 2017-09-05 06:39 - 001517472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-09-12 21:04 - 2017-09-05 06:37 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-09-12 21:04 - 2017-09-05 06:28 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2017-09-12 21:04 - 2017-09-05 06:28 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-09-12 21:04 - 2017-09-05 06:27 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-09-12 21:04 - 2017-09-05 06:26 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-09-12 21:04 - 2017-09-05 06:26 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-09-12 21:04 - 2017-09-05 06:26 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-09-12 21:04 - 2017-09-05 06:25 - 013844480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-09-12 21:04 - 2017-09-05 06:25 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-09-12 21:04 - 2017-09-05 06:25 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-09-12 21:04 - 2017-09-05 06:25 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-09-12 21:04 - 2017-09-05 06:24 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-09-12 21:04 - 2017-09-05 06:23 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-09-12 21:04 - 2017-09-05 06:22 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-09-12 21:04 - 2017-09-05 06:22 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-09-12 21:04 - 2017-09-05 06:21 - 006728704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-09-12 21:04 - 2017-09-05 06:21 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-09-12 21:04 - 2017-09-05 06:20 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-09-12 21:04 - 2017-09-05 06:19 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-09-12 21:04 - 2017-09-05 06:19 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-09-12 21:04 - 2017-09-05 06:18 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-09-12 21:04 - 2017-09-05 06:18 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-09-12 21:04 - 2017-09-05 06:18 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2017-09-12 21:04 - 2017-09-05 06:18 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2017-09-12 21:04 - 2017-09-05 06:18 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-09-12 21:04 - 2017-09-05 06:17 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-09-12 21:04 - 2017-09-05 06:17 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-09-12 21:04 - 2017-09-05 06:17 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-09-12 21:04 - 2017-09-05 06:16 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-09-12 21:04 - 2017-09-05 06:16 - 000844288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-09-12 21:04 - 2017-09-05 06:16 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-09-12 21:04 - 2017-09-05 06:16 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-09-12 21:04 - 2017-09-05 06:16 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-09-12 21:04 - 2017-09-05 06:15 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-09-12 21:04 - 2017-09-05 06:15 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-09-12 21:04 - 2017-09-05 06:15 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-09-12 21:04 - 2017-09-05 06:15 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-09-12 21:04 - 2017-09-05 06:14 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-09-12 21:04 - 2017-09-05 06:14 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-09-12 21:04 - 2017-09-05 06:14 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-09-12 21:04 - 2017-09-05 06:13 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-09-12 21:04 - 2017-09-05 06:13 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-09-12 21:04 - 2017-09-05 06:12 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-09-12 21:04 - 2017-09-05 06:12 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-09-12 21:04 - 2017-09-05 06:12 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-09-12 21:04 - 2017-09-05 06:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-09-12 21:04 - 2017-09-05 06:11 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-09-12 21:04 - 2017-09-05 06:11 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-09-12 21:04 - 2017-09-05 06:11 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-09-12 21:04 - 2017-09-05 06:11 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-09-12 21:04 - 2017-09-05 06:10 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-09-12 21:04 - 2017-09-05 06:10 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-09-12 21:04 - 2017-09-05 06:10 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-09-12 21:04 - 2017-09-05 06:10 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthHFSrv.dll
2017-09-12 21:04 - 2017-09-05 06:06 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2017-09-12 21:04 - 2017-09-05 06:06 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-09-12 21:04 - 2017-09-05 06:04 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-09-12 21:04 - 2017-09-05 06:04 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-09-12 21:03 - 2017-09-05 07:27 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-09-12 21:03 - 2017-09-05 07:24 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-09-12 21:03 - 2017-09-05 07:23 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-09-12 21:03 - 2017-09-05 07:18 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-09-12 21:03 - 2017-09-05 07:16 - 000546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-09-12 21:03 - 2017-09-05 07:14 - 004708504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-09-12 21:03 - 2017-09-05 07:14 - 001146176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-09-12 21:03 - 2017-09-05 07:14 - 000958664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-09-12 21:03 - 2017-09-05 07:14 - 000254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-09-12 21:03 - 2017-09-05 07:14 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-09-12 21:03 - 2017-09-05 07:11 - 002675104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-09-12 21:03 - 2017-09-05 07:11 - 000610720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2017-09-12 21:03 - 2017-09-05 07:11 - 000387936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-09-12 21:03 - 2017-09-05 06:45 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-09-12 21:03 - 2017-09-05 06:27 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-09-12 21:03 - 2017-09-05 06:26 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-09-12 21:03 - 2017-09-05 06:24 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-12 21:03 - 2017-09-05 06:24 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcrecovery.dll
2017-09-12 21:03 - 2017-09-05 06:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-09-12 21:03 - 2017-09-05 06:23 - 020509184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-09-12 21:03 - 2017-09-05 06:23 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-09-12 21:03 - 2017-09-05 06:23 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-12 21:03 - 2017-09-05 06:22 - 023684608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-09-12 21:03 - 2017-09-05 06:22 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-09-12 21:03 - 2017-09-05 06:22 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-09-12 21:03 - 2017-09-05 06:22 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-12 21:03 - 2017-09-05 06:22 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-09-12 21:03 - 2017-09-05 06:22 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-09-12 21:03 - 2017-09-05 06:21 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-12 21:03 - 2017-09-05 06:21 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-09-12 21:03 - 2017-09-05 06:21 - 000946688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-09-12 21:03 - 2017-09-05 06:21 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-09-12 21:03 - 2017-09-05 06:21 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-09-12 21:03 - 2017-09-05 06:21 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-09-12 21:03 - 2017-09-05 06:21 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-09-12 21:03 - 2017-09-05 06:20 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-09-12 21:03 - 2017-09-05 06:20 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-09-12 21:03 - 2017-09-05 06:19 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-09-12 21:03 - 2017-09-05 06:19 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-09-12 21:03 - 2017-09-05 06:19 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2017-09-12 21:03 - 2017-09-05 06:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-09-12 21:03 - 2017-09-05 06:19 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-09-12 21:03 - 2017-09-05 06:18 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-12 21:03 - 2017-09-05 06:18 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-12 21:03 - 2017-09-05 06:18 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-09-12 21:03 - 2017-09-05 06:17 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-09-12 21:03 - 2017-09-05 06:17 - 008207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-09-12 21:03 - 2017-09-05 06:17 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2017-09-12 21:03 - 2017-09-05 06:16 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-09-12 21:03 - 2017-09-05 06:15 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-09-12 21:03 - 2017-09-05 06:15 - 001143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-09-12 21:03 - 2017-09-05 06:15 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-09-12 21:03 - 2017-09-05 06:14 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-09-12 21:03 - 2017-09-05 06:14 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-09-12 21:03 - 2017-09-05 06:14 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-09-12 21:03 - 2017-09-05 06:14 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-09-12 21:03 - 2017-09-05 06:14 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-09-12 21:03 - 2017-09-05 06:12 - 006265856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-09-12 21:03 - 2017-09-05 06:11 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-09-12 21:03 - 2017-09-05 06:11 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-09-12 21:03 - 2017-09-05 06:06 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-09-12 21:02 - 2017-09-05 07:31 - 001596592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-09-12 21:02 - 2017-09-05 07:31 - 001346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-09-12 21:02 - 2017-09-05 07:31 - 001147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-09-12 21:02 - 2017-09-05 07:31 - 001024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-09-12 21:02 - 2017-09-05 07:31 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-09-12 21:02 - 2017-09-05 07:31 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-09-12 21:02 - 2017-09-05 07:31 - 000115792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-09-12 21:02 - 2017-09-05 07:27 - 000136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-09-12 21:02 - 2017-09-05 07:26 - 008319904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-09-12 21:02 - 2017-09-05 07:26 - 001930840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-09-12 21:02 - 2017-09-05 07:25 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-12 21:02 - 2017-09-05 07:25 - 000159648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-09-12 21:02 - 2017-09-05 07:24 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-09-12 21:02 - 2017-09-05 07:23 - 004462120 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-09-12 21:02 - 2017-09-05 07:20 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-09-12 21:02 - 2017-09-05 07:19 - 004848960 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-09-12 21:02 - 2017-09-05 07:19 - 002443168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-09-12 21:02 - 2017-09-05 07:18 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-09-12 21:02 - 2017-09-05 07:18 - 005477096 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-12 21:02 - 2017-09-05 07:18 - 002972552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-09-12 21:02 - 2017-09-05 07:18 - 002647224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-09-12 21:02 - 2017-09-05 07:18 - 001668344 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-09-12 21:02 - 2017-09-05 07:18 - 000685512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-09-12 21:02 - 2017-09-05 07:18 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-09-12 21:02 - 2017-09-05 07:17 - 000316320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-09-12 21:02 - 2017-09-05 07:16 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-09-12 21:02 - 2017-09-05 07:16 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-09-12 21:02 - 2017-09-05 07:16 - 000724200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-09-12 21:02 - 2017-09-05 07:16 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-09-12 21:02 - 2017-09-05 07:16 - 000410168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-09-12 21:02 - 2017-09-05 07:16 - 000228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-09-12 21:02 - 2017-09-05 07:16 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-09-12 21:02 - 2017-09-05 07:16 - 000049720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-09-12 21:02 - 2017-09-05 07:15 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-09-12 21:02 - 2017-09-05 07:15 - 000871448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-09-12 21:02 - 2017-09-05 07:15 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-12 21:02 - 2017-09-05 07:15 - 000381824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-09-12 21:02 - 2017-09-05 07:15 - 000257440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-12 21:02 - 2017-09-05 07:14 - 021352656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-09-12 21:02 - 2017-09-05 07:14 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-12 21:02 - 2017-09-05 07:13 - 001619816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-09-12 21:02 - 2017-09-05 07:13 - 000078240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2017-09-12 21:02 - 2017-09-05 07:13 - 000064680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 002229152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 001854880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 001693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 001462688 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 000855456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 000849824 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-09-12 21:02 - 2017-09-05 07:12 - 000844704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 000774560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 000699808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 000674720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 000406944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-09-12 21:02 - 2017-09-05 07:12 - 000235424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2017-09-12 21:02 - 2017-09-05 07:12 - 000203680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2017-09-12 21:02 - 2017-09-05 06:53 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-09-12 21:02 - 2017-09-05 06:31 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-09-12 21:02 - 2017-09-05 06:30 - 001639936 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-09-12 21:02 - 2017-09-05 06:30 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-09-12 21:02 - 2017-09-05 06:30 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-12 21:02 - 2017-09-05 06:30 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-09-12 21:02 - 2017-09-05 06:30 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-09-12 21:02 - 2017-09-05 06:30 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-09-12 21:02 - 2017-09-05 06:30 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-09-12 21:02 - 2017-09-05 06:30 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-09-12 21:02 - 2017-09-05 06:30 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-09-12 21:02 - 2017-09-05 06:29 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-09-12 21:02 - 2017-09-05 06:28 - 017371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-12 21:02 - 2017-09-05 06:28 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-12 21:02 - 2017-09-05 06:27 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-09-12 21:02 - 2017-09-05 06:27 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-12 21:02 - 2017-09-05 06:27 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-12 21:02 - 2017-09-05 06:27 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-09-12 21:02 - 2017-09-05 06:27 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-09-12 21:02 - 2017-09-05 06:27 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-09-12 21:02 - 2017-09-05 06:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-09-12 21:02 - 2017-09-05 06:26 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-09-12 21:02 - 2017-09-05 06:26 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\csplte.dll
2017-09-12 21:02 - 2017-09-05 06:26 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-09-12 21:02 - 2017-09-05 06:26 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-09-12 21:02 - 2017-09-05 06:26 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-12 21:02 - 2017-09-05 06:26 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-09-12 21:02 - 2017-09-05 06:26 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-09-12 21:02 - 2017-09-05 06:25 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-09-12 21:02 - 2017-09-05 06:25 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-09-12 21:02 - 2017-09-05 06:25 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-09-12 21:02 - 2017-09-05 06:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-09-12 21:02 - 2017-09-05 06:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-09-12 21:02 - 2017-09-05 06:24 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-09-12 21:02 - 2017-09-05 06:24 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-09-12 21:02 - 2017-09-05 06:24 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-09-12 21:02 - 2017-09-05 06:24 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-09-12 21:02 - 2017-09-05 06:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-09-12 21:02 - 2017-09-05 06:24 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-09-12 21:02 - 2017-09-05 06:23 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-09-12 21:02 - 2017-09-05 06:23 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-09-12 21:02 - 2017-09-05 06:23 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-09-12 21:02 - 2017-09-05 06:23 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-09-12 21:02 - 2017-09-05 06:23 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-09-12 21:02 - 2017-09-05 06:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-09-12 21:02 - 2017-09-05 06:22 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-12 21:02 - 2017-09-05 06:22 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-09-12 21:02 - 2017-09-05 06:22 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2017-09-12 21:02 - 2017-09-05 06:22 - 000413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-09-12 21:02 - 2017-09-05 06:22 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-09-12 21:02 - 2017-09-05 06:22 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2017-09-12 21:02 - 2017-09-05 06:22 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-09-12 21:02 - 2017-09-05 06:22 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-09-12 21:02 - 2017-09-05 06:22 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-09-12 21:02 - 2017-09-05 06:21 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-09-12 21:02 - 2017-09-05 06:21 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-09-12 21:02 - 2017-09-05 06:21 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-09-12 21:02 - 2017-09-05 06:20 - 007337472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-12 21:02 - 2017-09-05 06:20 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-12 21:02 - 2017-09-05 06:20 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-12 21:02 - 2017-09-05 06:20 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-09-12 21:02 - 2017-09-05 06:20 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-09-12 21:02 - 2017-09-05 06:20 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-09-12 21:02 - 2017-09-05 06:19 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-09-12 21:02 - 2017-09-05 06:19 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-09-12 21:02 - 2017-09-05 06:19 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-09-12 21:02 - 2017-09-05 06:19 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-09-12 21:02 - 2017-09-05 06:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-09-12 21:02 - 2017-09-05 06:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-09-12 21:02 - 2017-09-05 06:19 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 012801536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-09-12 21:02 - 2017-09-05 06:18 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-09-12 21:02 - 2017-09-05 06:18 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-09-12 21:02 - 2017-09-05 06:17 - 002765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-12 21:02 - 2017-09-05 06:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-12 21:02 - 2017-09-05 06:17 - 001397760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-09-12 21:02 - 2017-09-05 06:17 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-09-12 21:02 - 2017-09-05 06:16 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-12 21:02 - 2017-09-05 06:16 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-12 21:02 - 2017-09-05 06:16 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-12 21:02 - 2017-09-05 06:16 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 002503680 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-09-12 21:02 - 2017-09-05 06:15 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 001460224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 001077248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-09-12 21:02 - 2017-09-05 06:15 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-09-12 21:02 - 2017-09-05 06:15 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-09-12 21:02 - 2017-09-05 06:14 - 011887104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-09-12 21:02 - 2017-09-05 06:14 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-09-12 21:02 - 2017-09-05 06:14 - 002445824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-09-12 21:02 - 2017-09-05 06:14 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-09-12 21:02 - 2017-09-05 06:14 - 002006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-09-12 21:02 - 2017-09-05 06:14 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-09-12 21:02 - 2017-09-05 06:14 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-09-12 21:02 - 2017-09-05 06:13 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-09-12 21:02 - 2017-09-05 06:13 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-09-12 21:02 - 2017-09-05 06:13 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-09-12 21:02 - 2017-09-05 06:12 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-09-12 21:02 - 2017-09-05 06:11 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-09-12 21:02 - 2017-09-05 06:09 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-09-12 21:02 - 2017-09-05 06:07 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-09-12 21:02 - 2017-09-05 06:07 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-09-12 21:02 - 2017-09-01 07:55 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-09-10 10:29 - 2017-10-02 13:23 - 000000538 _____ C:\Users\Jan\Desktop\O serveru Dark Elmore - Interlude Lineage 2 - Dark Elmore 25x.website

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-03 08:28 - 2016-10-23 16:09 - 000315487 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-10-03 08:24 - 2017-07-16 10:58 - 000004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{813210C5-4118-45C8-96B0-51F4A645BD30}
2017-10-02 23:32 - 2017-04-02 09:24 - 000000660 _____ C:\Users\Jan\Desktop\Sport.cz - s námi jste ve hře.website
2017-10-02 20:21 - 2017-07-16 10:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-10-01 20:00 - 2016-10-23 15:47 - 000000000 ____D C:\AdwCleaner
2017-09-30 23:42 - 2017-07-16 10:43 - 000000000 ____D C:\Users\Jan
2017-09-30 19:34 - 2017-07-16 11:00 - 002052950 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-30 19:34 - 2017-03-20 06:39 - 000891764 _____ C:\WINDOWS\system32\perfh005.dat
2017-09-30 19:34 - 2017-03-20 06:39 - 000193440 _____ C:\WINDOWS\system32\perfc005.dat
2017-09-30 19:32 - 2017-08-31 15:56 - 000000731 _____ C:\Users\Jan\Desktop\Návod na pokládku šindelů IKO - YouTube.website
2017-09-30 19:26 - 2017-07-16 10:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-30 19:26 - 2017-03-18 20:27 - 000000338 _____ C:\WINDOWS\Tasks\HPCeeScheduleForJan.job
2017-09-30 19:23 - 2017-03-18 23:01 - 000000000 ____D C:\WINDOWS\INF
2017-09-30 07:42 - 2016-08-01 20:42 - 000000000 ____D C:\Program Files (x86)\Google
2017-09-30 07:41 - 2016-08-01 20:42 - 000000000 ____D C:\Users\Jan\AppData\Local\Google
2017-09-30 07:40 - 2016-10-23 16:21 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-09-30 07:12 - 2017-07-16 10:58 - 000003222 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForJan
2017-09-29 20:36 - 2016-12-14 21:37 - 000000951 _____ C:\Users\Jan\Desktop\1 Hodina Hluboká ozdravná tibetská meditační hudba Uklidňující hudba, Odpočinková hudba ☯013 - YouTube.website
2017-09-29 20:35 - 2017-03-18 23:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-29 20:35 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-28 21:01 - 2017-03-18 13:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2017-09-28 20:15 - 2017-05-09 09:10 - 000000800 _____ C:\Users\Jan\Desktop\Úvodní stránka - Help for English - Angličtina na internetu zdarma.website
2017-09-28 20:10 - 2016-10-23 16:09 - 000067249 _____ C:\WINDOWS\ZAM.krnl.trace
2017-09-27 20:38 - 2016-10-23 14:54 - 000192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-09-27 20:29 - 2016-10-23 16:07 - 000203680 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zamguard64.sys
2017-09-27 19:25 - 2017-06-03 12:21 - 000000473 _____ C:\Users\Jan\Desktop\Lineage II - Truly Free.website
2017-09-25 21:04 - 2017-04-24 13:28 - 000000472 _____ C:\Users\Jan\Desktop\LiveSport.cz.website
2017-09-22 10:51 - 2015-12-13 00:43 - 000000000 ____D C:\Users\Jan\Documents\My Games
2017-09-22 10:50 - 2017-07-27 13:08 - 000000000 ___RD C:\Users\Jan\Documents\Scanned Documents
2017-09-22 06:32 - 2017-07-27 13:14 - 000003356 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3316666694-3035341683-1196750294-1000
2017-09-22 06:32 - 2016-03-31 00:39 - 000002385 _____ C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-22 06:32 - 2015-11-19 23:47 - 000000000 ___RD C:\Users\Jan\OneDrive
2017-09-14 11:57 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\rescache
2017-09-14 08:47 - 2015-09-10 07:44 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-09-14 08:43 - 2017-07-16 10:36 - 000299336 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-13 22:05 - 2017-03-20 06:39 - 000000000 ____D C:\WINDOWS\system32\cs
2017-09-13 22:05 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-09-13 22:05 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-09-13 22:05 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-09-13 22:05 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-09-13 22:05 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\setup
2017-09-13 22:05 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-09-13 22:05 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-09-13 22:05 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 21:06 - 2016-03-31 09:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-12 21:20 - 2017-03-18 22:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-12 21:20 - 2016-03-31 09:08 - 138202976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-08 21:33 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\NDF

==================== Files in the root of some directories =======

2016-04-15 19:19 - 2016-08-16 12:34 - 000001333 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================


Available physical RAM: 2253.63 MB
Total physical RAM: 4094.49 MB
Percentage of memory in use: 44%

==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForJan.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\Jan\Downloads\HiSuiteSetup_2.3.55.1.zip:$CmdTcID [64]
AlternateDataStreams: C:\Users\Jan\Downloads\HiSuiteSetup_2.3.55.1.zip:$CmdZnID [26]
AlternateDataStreams: C:\Users\Jan\Documents\uživatelská příručka acer travelmate.pdf:$CmdZnID [26]

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jan\Desktop" je 7685 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-09-27] (Zemana Ltd.)
S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X]
C:\WINDOWS\ZAM_Guard.krnl.trace
C:\WINDOWS\ZAM.krnl.trace
AlternateDataStreams: C:\Users\Jan\Downloads\HiSuiteSetup_2.3.55.1.zip:$CmdTcID [64]
AlternateDataStreams: C:\Users\Jan\Downloads\HiSuiteSetup_2.3.55.1.zip:$CmdZnID [26]
AlternateDataStreams: C:\Users\Jan\Documents\uživatelská příručka acer travelmate.pdf:$CmdZnID [26]

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Z logu:

Velikost slozky "C:\Users\Jan\Desktop" je 7685 MB.

To je příliš mnoho a může to zpomalovat start systému. Vytvořte v C:\Users\Jan novou složku, do níž přesuňte všechna data z plochy (kromě zástupců). Na plochu si pak dejte zástupce té složky pro snazší přístup.

Fix result of Farbar Recovery Scan Tool (x64) Version: 02-10-2017 01
Ran by Jan (03-10-2017 19:30:28) Run:1
Running from C:\Users\Jan\Desktop
Loaded Profiles: Jan (Available Profiles: Jan)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-09-27] (Zemana Ltd.)
S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X]
C:\WINDOWS\ZAM_Guard.krnl.trace
C:\WINDOWS\ZAM.krnl.trace
AlternateDataStreams: C:\Users\Jan\Downloads\HiSuiteSetup_2.3.55.1.zip:$CmdTcID [64]
AlternateDataStreams: C:\Users\Jan\Downloads\HiSuiteSetup_2.3.55.1.zip:$CmdZnID [26]
AlternateDataStreams: C:\Users\Jan\Documents\u�ivatelsk� p��ru�ka acer travelmate.pdf:$CmdZnID [26]

EmptyTemp:
End
*****************

ZAM_Guard => Unable to stop service.
HKLM\System\CurrentControlSet\Services\ZAM_Guard => key removed successfully
ZAM_Guard => service removed successfully
HKLM\System\CurrentControlSet\Services\ZAM => key removed successfully
ZAM => service removed successfully
C:\WINDOWS\ZAM_Guard.krnl.trace => moved successfully
C:\WINDOWS\ZAM.krnl.trace => moved successfully
C:\Users\Jan\Downloads\HiSuiteSetup_2.3.55.1.zip => ":$CmdTcID" ADS removed successfully.
C:\Users\Jan\Downloads\HiSuiteSetup_2.3.55.1.zip => ":$CmdZnID" ADS removed successfully.
C:\Users\Jan\Documents\uživatelská příručka acer travelmate.pdf => ":$CmdZnID" ADS removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 7364608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 64267866 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 128044 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 893944 B
Jan => 18225854 B

RecycleBin => 93493041 B
EmptyTemp: => 175.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:30:43 ====

Smazáno. Nastala nějaká změna?

Bohužel ne,ale i tak děkuji,ono to po nějakým čase přestane dělat,tak uvidím,blne to jen po zapnutí nějakou dobu,taky jsem zkoušel ,když to blbne ve vlastnostech myši nastavit rychlost ukazatele,ale jak jsem na to kliknul,tak se posunula na velká,a když jsem ji chtěl snížit,tak se vždycky vrátila na velká,ale ted,když píšu tak už to nedělá,už je všechno v pohodě,ale jak jsem zapnul pc a přihlásil se sem,tak to ještě blblo,musím se sem na stránky dostat ne ze zástupce na ploše,ale z panelu,hrůza,ale dá se to vydržet,když to blbne a chci třeba něco rozbalit z winraru,tak ,když se otevře umístění kam to chci rozbalit do jaký složky,tak na ní kliknu,ale přeskáče úplně na jinou složku,ale jak říkám,ted ,když píšu tak už to neblbne.

Taky jsem ještě zkoušel odinstalovat ovladač ve správci zařízení,ale po restartu se načetl,a dělá to dál,a je aktuální ten ovladač,aspon to píše.

Zkuste ještě kompletní sken MBAM: http://www.malwarebytes.org/mbam.php . Dejte log, předem mic nemažte.

nic nenašlo,tak to je taky dobrá zpráva na jednu stranu,tady to je:
Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 05.10.17
Čas skenování: 8:14
Logovací soubor: 7ba97f0c-a994-11e7-bd02-001bfcf5de83.json
Správce: Ano

-Informace o softwaru-
Verze: 3.2.2.2029
Verze komponentů: 1.0.207
Aktualizovat verzi balíku komponent: 1.0.2953
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 15063.608)
CPU: x64
Systém souborů: NTFS
Uživatel: Jan-PC\Jan

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 382154
Zjištěné hrozby: 0
(Nebyly zjištěny žádné škodlivé položky)
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 5 min, 51 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Toto je OK. V nouzovém režimu se systém chová stejně?