Kontrola logu - vysoky CPU a RAM load na cistem Win 10

[Ronnie Basic]

Hezke po Vanoce,
Mohl bych vas poprosit o kontrolu logu. Situace: desktop se 2 pevnymi disky (C: system, D: filmy a fotky). Prave jsem udelal cistou instalaci Win 10. I kdyz v systemu je nainstalovano pouze par programu typu avast ci MS Office, dochazi 'v klidovem stavu' k pomerne vysokemu vytizeni CPU a RAM (graf v priloze). Toto se delo i na predchozim systemu Win 7, coz me vedlo k rozhodnuti udelat clean Win 10 install (nikoliv upgrade).

Je na vine disk (ci jiny HW, pomerne stary), nebo to vidite spis na SW?

Dekuji vam predem a preji vsechno dobre do roku 2018 moderatorum a adminum fora. Vazime si vasi pece.

Kód: Vybrat vše

Logfile of random's system information tool 1.10 (written by random/random)
Run by Sokol-Holubice at 2017-12-30 12:17:07
Microsoft Windows 10 Pro 
System drive C: has 119 GB (39%) free of 305 GB
Total RAM: 3072 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:17:20, on 30.12.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0015)
Boot mode: Normal

Running processes:
C:\Windows\system32\sihost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskhostw.exe
C:\Windows\system32\ctfmon.exe
C:\Windows\Explorer.EXE
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x86__kzf8qxf38zg5c\SkypeHost.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST\AvastUI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\Taskmgr.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Total Commander 7,50a CZ\TOTALCMD.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\mspaint.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
D:\Koalova složka\Hijackthis\RSIT.exe
C:\Program Files\trend micro\Sokol-Holubice.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SecurityHealth] %ProgramFiles%\Windows Defender\MSASCuiL.exe
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe Acrobat 9.0 Pro CZ\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe Acrobat 9.0 Pro CZ\Acrobat\Acrotray.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Sokol-Holubice\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Prevést cíl vazby do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Prevést cíl vazby do existujícího PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Prevést do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Pridat do stávajícího PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST\AvastSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 7637 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 488344]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-29 1793736]
"AvastUI.exe"=C:\Program Files\AVAST\AvLaunch.exe [2017-12-29 246120]
"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe Acrobat 9.0 Pro CZ\Acrobat\Acrobat_sl.exe [2008-06-12 37232]
""= []
"Acrobat Assistant 8.0"=C:\Program Files\Adobe Acrobat 9.0 Pro CZ\Acrobat\Acrotray.exe [2008-06-11 640376]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Sokol-Holubice\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-12-29 1551048]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2017-12-15 4134080]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"PromptOnSecureDesktop"=0
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=lvcodec2.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-12-30 12:13:26 ----D---- C:\Windows\system32\MRT
2017-12-30 12:13:18 ----AC---- C:\Windows\system32\MRT-KB890830.exe
2017-12-30 12:13:08 ----AC---- C:\Windows\system32\MRT.exe
2017-12-30 12:06:00 ----D---- C:\Program Files\trend micro
2017-12-30 12:05:59 ----D---- C:\rsit
2017-12-30 11:51:20 ----D---- C:\ProgramData\SWCUTemp
2017-12-30 11:28:14 ----D---- C:\ProgramData\FLEXnet
2017-12-30 11:25:53 ----D---- C:\Program Files\Common Files\Macrovision Shared
2017-12-30 11:25:39 ----RA---- C:\Windows\system32\AdobePDFUI.dll
2017-12-30 11:25:39 ----RA---- C:\Windows\system32\AdobePDF.dll
2017-12-30 11:22:55 ----D---- C:\ProgramData\Adobe
2017-12-30 11:22:55 ----D---- C:\Program Files\Common Files\Adobe
2017-12-30 11:22:55 ----D---- C:\Program Files\Adobe Acrobat 9.0 Pro CZ
2017-12-30 11:02:59 ----D---- C:\FOTKY
2017-12-30 10:51:54 ----D---- C:\Users\Sokol-Holubice\AppData\Roaming\Samsung
2017-12-30 09:40:55 ----D---- C:\ProgramData\Samsung
2017-12-29 18:06:30 ----D---- C:\Program Files\Common Files\DESIGNER
2017-12-29 18:06:16 ----D---- C:\Windows\PCHEALTH
2017-12-29 18:01:55 ----D---- C:\Program Files\Microsoft Analysis Services
2017-12-29 17:55:32 ----A---- C:\Windows\system32\msonpmon.dll
2017-12-29 17:52:48 ----D---- C:\Windows\SHELLNEW
2017-12-29 17:52:33 ----D---- C:\Program Files\Microsoft Office
2017-12-29 17:52:32 ----D---- C:\ProgramData\Microsoft Help
2017-12-29 17:51:48 ----RHD---- C:\MSOCache
2017-12-29 17:47:15 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-12-29 17:47:05 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-12-29 17:47:04 ----D---- C:\Users\Sokol-Holubice\AppData\Roaming\DAEMON Tools Lite
2017-12-29 17:46:56 ----D---- C:\Program Files\DAEMON Tools Lite
2017-12-29 17:46:37 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-12-29 17:31:34 ----D---- C:\Users\Sokol-Holubice\AppData\Roaming\Mozilla
2017-12-29 17:30:36 ----D---- C:\Users\Sokol-Holubice\AppData\Roaming\Thunderbird
2017-12-29 17:27:34 ----D---- C:\!_posta to restore
2017-12-29 17:26:51 ----D---- C:\Program Files\MozBackup
2017-12-29 17:12:48 ----D---- C:\Users\Sokol-Holubice\AppData\Roaming\vlc
2017-12-29 17:09:36 ----D---- C:\Program Files\VLC
2017-12-29 17:08:36 ----D---- C:\Program Files\Mozilla Maintenance Service
2017-12-29 17:08:15 ----D---- C:\Program Files\Mozilla Thunderbird
2017-12-29 16:43:49 ----RD---- C:\Filmy
2017-12-29 16:20:13 ----D---- C:\Users\Sokol-Holubice\AppData\Roaming\AVAST Software
2017-12-29 16:19:34 ----D---- C:\Program Files\Common Files\Avast Software
2017-12-29 16:19:33 ----A---- C:\Windows\system32\drivers\lpsport.sys
2017-12-29 16:18:50 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2017-12-29 16:18:50 ----A---- C:\Windows\system32\drivers\aswStm.sys
2017-12-29 16:18:49 ----A---- C:\Windows\system32\drivers\aswSP.sys
2017-12-29 16:18:49 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2017-12-29 16:18:49 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-12-29 16:18:49 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2017-12-29 16:18:49 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-12-29 16:18:49 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-12-29 16:18:49 ----A---- C:\Windows\system32\drivers\aswArPot.sys
2017-12-29 16:18:48 ----A---- C:\Windows\system32\drivers\aswHdsKe.sys
2017-12-29 16:18:48 ----A---- C:\Windows\system32\drivers\aswbunivx.sys
2017-12-29 16:18:48 ----A---- C:\Windows\system32\drivers\aswblogx.sys
2017-12-29 16:18:48 ----A---- C:\Windows\system32\drivers\aswbidshx.sys
2017-12-29 16:18:48 ----A---- C:\Windows\system32\drivers\aswbidsdriverx.sys
2017-12-29 16:18:42 ----A---- C:\Windows\ucrtbase.dll
2017-12-29 16:18:42 ----A---- C:\Windows\system32\aswBoot.exe
2017-12-29 16:18:07 ----D---- C:\UCTO2017
2017-12-29 16:16:20 ----D---- C:\Program Files\AVAST
2017-12-29 16:14:39 ----D---- C:\ProgramData\AVAST Software
2017-12-29 16:12:13 ----D---- C:\Users\Sokol-Holubice\AppData\Roaming\Google
2017-12-29 16:07:02 ----D---- C:\Program Files\Google
2017-12-29 16:02:49 ----D---- C:\Users\Sokol-Holubice\AppData\Roaming\GHISLER
2017-12-29 16:02:49 ----D---- C:\Program Files\Total Commander 7,50a CZ
2017-12-29 16:02:49 ----A---- C:\Windows\UC.PIF
2017-12-29 16:02:49 ----A---- C:\Windows\RAR.PIF
2017-12-29 16:02:49 ----A---- C:\Windows\PKZIP.PIF
2017-12-29 16:02:49 ----A---- C:\Windows\PKUNZIP.PIF
2017-12-29 16:02:49 ----A---- C:\Windows\NOCLOSE.PIF
2017-12-29 16:02:49 ----A---- C:\Windows\LHA.PIF
2017-12-29 16:02:49 ----A---- C:\Windows\ARJ.PIF
2017-12-29 15:56:35 ----A---- C:\Windows\system32\nvStreaming.exe
2017-12-29 15:54:37 ----D---- C:\ProgramData\USOShared
2017-12-29 15:54:30 ----D---- C:\ProgramData\NVIDIA
2017-12-29 15:53:58 ----A---- C:\Windows\system32\nvvsvc.exe
2017-12-29 15:53:58 ----A---- C:\Windows\system32\nvsvcr.dll
2017-12-29 15:53:58 ----A---- C:\Windows\system32\nvsvc.dll
2017-12-29 15:53:58 ----A---- C:\Windows\system32\nvshext.dll
2017-12-29 15:53:58 ----A---- C:\Windows\system32\nvmctray.dll
2017-12-29 15:53:58 ----A---- C:\Windows\system32\nvcpl.dll
2017-12-29 15:53:25 ----A---- C:\Windows\system32\OpenCL.dll
2017-12-29 15:53:15 ----D---- C:\ProgramData\NVIDIA Corporation
2017-12-29 15:53:11 ----D---- C:\Program Files\NVIDIA Corporation
2017-12-29 15:52:00 ----D---- C:\ProgramData\Microsoft OneDrive
2017-12-29 15:49:55 ----D---- C:\Users\Sokol-Holubice\AppData\Roaming\Adobe
2017-12-29 15:49:31 ----SD---- C:\Users\Sokol-Holubice\AppData\Roaming\Microsoft
2017-12-29 15:49:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-12-29 15:46:33 ----D---- C:\Windows\CSC
2017-12-29 15:45:35 ----D---- C:\Windows\SoftwareDistribution
2017-12-29 15:44:27 ----SHD---- C:\ProgramData\Šablony
2017-12-29 15:44:27 ----SHD---- C:\ProgramData\Plocha
2017-12-29 15:44:27 ----SHD---- C:\ProgramData\Nabídka Start
2017-12-29 15:44:27 ----SHD---- C:\ProgramData\Dokumenty
2017-12-29 15:44:27 ----SHD---- C:\ProgramData\Data aplikací
2017-12-29 15:44:27 ----SHD---- C:\Documents and Settings
2017-12-29 15:43:52 ----ASH---- C:\hiberfil.sys
2017-12-29 15:42:43 ----SHD---- C:\Recovery
2017-12-29 15:39:55 ----HD---- C:\Program Files\Uninstall Information
2017-12-29 15:39:45 ----AS---- C:\Windows\bootstat.dat
2017-12-29 15:39:09 ----D---- C:\Windows\Prefetch
2017-12-29 15:38:44 ----D---- C:\Windows\system32\SleepStudy
2017-12-29 15:38:44 ----D---- C:\Windows\ServiceProfiles
2017-12-29 15:38:42 ----SD---- C:\Windows\system32\Microsoft
2017-12-29 15:38:35 ----A---- C:\Windows\system32\FNTCACHE.DAT
2017-12-29 15:38:34 ----ASH---- C:\swapfile.sys
2017-12-29 15:38:34 ----ASH---- C:\pagefile.sys
2017-12-29 15:38:33 ----SHD---- C:\System Volume Information
2017-12-29 15:37:17 ----D---- C:\Windows\Panther
2017-12-29 15:37:04 ----RASH---- C:\BOOTSECT.BAK
2017-12-29 15:37:02 ----SHD---- C:\Boot

======List of files/folders modified in the last 1 month======

2017-12-30 12:17:20 ----D---- C:\Windows\Temp
2017-12-30 12:13:26 ----D---- C:\Windows\System32
2017-12-30 12:13:25 ----D---- C:\Windows\debug
2017-12-30 12:13:00 ----SHD---- C:\Windows\Installer
2017-12-30 12:12:16 ----RD---- C:\Windows\Microsoft.NET
2017-12-30 12:12:14 ----RD---- C:\Windows\assembly
2017-12-30 12:12:05 ----D---- C:\Program Files\Common Files\microsoft shared
2017-12-30 12:11:08 ----A---- C:\Windows\win.ini
2017-12-30 12:11:07 ----D---- C:\Program Files\Common Files\system
2017-12-30 12:10:20 ----D---- C:\Windows\system32\config
2017-12-30 12:06:33 ----D---- C:\Windows\CbsTemp
2017-12-30 12:06:00 ----RD---- C:\Program Files
2017-12-30 12:05:15 ----D---- C:\Windows\WinSxS
2017-12-30 12:02:58 ----D---- C:\Windows\system32\catroot2
2017-12-30 11:58:49 ----D---- C:\Windows\INF
2017-12-30 11:51:20 ----HD---- C:\ProgramData
2017-12-30 11:49:36 ----D---- C:\Windows\system32\sru
2017-12-30 11:31:07 ----D---- C:\Windows\AppReadiness
2017-12-30 11:31:06 ----HD---- C:\Program Files\WindowsApps
2017-12-30 11:25:53 ----D---- C:\Program Files\Common Files
2017-12-30 11:25:47 ----D---- C:\Windows\system32\DriverStore
2017-12-30 11:23:20 ----RSD---- C:\Windows\Fonts
2017-12-30 11:18:47 ----D---- C:\Windows
2017-12-30 09:42:53 ----D---- C:\Windows\DeliveryOptimization
2017-12-30 09:40:03 ----D---- C:\Windows\system32\drivers
2017-12-30 09:39:22 ----D---- C:\Windows\Logs
2017-12-30 09:36:45 ----D---- C:\Windows\system32\WinBioDatabase
2017-12-30 09:35:47 ----D---- C:\Windows\appcompat
2017-12-30 09:32:40 ----D---- C:\Windows\system32\WDI
2017-12-29 18:07:51 ----D---- C:\Windows\system32\Tasks
2017-12-29 18:06:16 ----SD---- C:\ProgramData\Microsoft
2017-12-29 18:06:16 ----D---- C:\Program Files\Microsoft.NET
2017-12-29 16:35:02 ----D---- C:\Windows\System
2017-12-29 16:35:01 ----A---- C:\Windows\system32\typelib.dll
2017-12-29 16:35:01 ----A---- C:\Windows\system32\storage.dll
2017-12-29 16:35:01 ----A---- C:\Windows\system32\ole2nls.dll
2017-12-29 16:35:01 ----A---- C:\Windows\system32\ole2disp.dll
2017-12-29 16:35:01 ----A---- C:\Windows\system32\ole2.dll
2017-12-29 16:35:01 ----A---- C:\Windows\system32\compobj.dll
2017-12-29 16:35:00 ----A---- C:\Windows\winhelp.exe
2017-12-29 16:35:00 ----A---- C:\Windows\system32\win.com
2017-12-29 16:35:00 ----A---- C:\Windows\system32\WIFEMAN.DLL
2017-12-29 16:35:00 ----A---- C:\Windows\system32\ver.dll
2017-12-29 16:35:00 ----A---- C:\Windows\system32\USER.EXE
2017-12-29 16:35:00 ----A---- C:\Windows\system32\TOOLHELP.DLL
2017-12-29 16:35:00 ----A---- C:\Windows\system32\sysedit.exe
2017-12-29 16:35:00 ----A---- C:\Windows\system32\SHELL.DLL
2017-12-29 16:35:00 ----A---- C:\Windows\system32\pmspl.dll
2017-12-29 16:35:00 ----A---- C:\Windows\system32\OLESVR.DLL
2017-12-29 16:35:00 ----A---- C:\Windows\system32\ntvdmd.dll
2017-12-29 16:35:00 ----A---- C:\Windows\system32\ntvdm.exe
2017-12-29 16:35:00 ----A---- C:\Windows\system32\mem.exe
2017-12-29 16:35:00 ----A---- C:\Windows\system32\lzexpand.dll
2017-12-29 16:35:00 ----A---- C:\Windows\system32\KB16.COM
2017-12-29 16:35:00 ----A---- C:\Windows\system32\GRAPHICS.COM
2017-12-29 16:35:00 ----A---- C:\Windows\system32\graftabl.com
2017-12-29 16:35:00 ----A---- C:\Windows\system32\GDI.EXE
2017-12-29 16:35:00 ----A---- C:\Windows\system32\edit.com
2017-12-29 16:35:00 ----A---- C:\Windows\system32\debug.exe
2017-12-29 16:35:00 ----A---- C:\Windows\system32\DDEML.DLL
2017-12-29 16:35:00 ----A---- C:\Windows\system32\COMMDLG.DLL
2017-12-29 16:35:00 ----A---- C:\Windows\system32\COMMAND.COM
2017-12-29 16:34:59 ----A---- C:\Windows\system32\WINNLS.DLL
2017-12-29 16:34:59 ----A---- C:\Windows\system32\win87em.dll
2017-12-29 16:34:59 ----A---- C:\Windows\system32\vdmredir.dll
2017-12-29 16:34:59 ----A---- C:\Windows\system32\setver.exe
2017-12-29 16:34:59 ----A---- C:\Windows\system32\olecli.dll
2017-12-29 16:34:59 ----A---- C:\Windows\system32\nlsfunc.exe
2017-12-29 16:34:59 ----A---- C:\Windows\system32\netapi.dll
2017-12-29 16:34:59 ----A---- C:\Windows\system32\MMSYSTEM.DLL
2017-12-29 16:34:59 ----A---- C:\Windows\system32\krnl386.exe
2017-12-29 16:34:59 ----A---- C:\Windows\system32\exe2bin.exe
2017-12-29 16:34:59 ----A---- C:\Windows\system32\edlin.exe
2017-12-29 16:34:59 ----A---- C:\Windows\system32\DRWATSON.EXE
2017-12-29 16:34:59 ----A---- C:\Windows\system32\dosx.exe
2017-12-29 16:34:59 ----A---- C:\Windows\system32\ctl3dv2.dll
2017-12-29 16:34:59 ----A---- C:\Windows\system32\append.exe
2017-12-29 16:33:01 ----SHD---- C:\$Recycle.Bin
2017-12-29 16:08:24 ----RD---- C:\Users
2017-12-29 15:54:47 ----D---- C:\Windows\system32\CodeIntegrity
2017-12-29 15:53:57 ----D---- C:\Windows\Help
2017-12-29 15:52:03 ----D---- C:\Windows\system32\restore
2017-12-29 15:49:19 ----D---- C:\Windows\twain_32
2017-12-29 15:48:38 ----D---- C:\Windows\system32\wbem
2017-12-29 15:48:16 ----D---- C:\ProgramData\USOPrivate
2017-12-29 15:46:38 ----D---- C:\Windows\system32\spool
2017-12-29 15:46:34 ----D---- C:\Windows\system32\FxsTmp
2017-12-29 15:44:27 ----D---- C:\Program Files\windows nt
2017-12-29 15:42:43 ----D---- C:\Windows\system32\Recovery
2017-12-29 15:42:41 ----D---- C:\Windows\system32\Sysprep
2017-12-29 15:40:24 ----RD---- C:\Windows\PrintDialog
2017-12-29 15:40:23 ----RD---- C:\Windows\ImmersiveControlPanel
2017-12-29 15:39:27 ----D---- C:\Windows\system32\drivers\UMDF
2017-12-29 15:39:10 ----D---- C:\Windows\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [2017-12-29 157376]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswblogx.sys [2017-12-29 276696]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [2017-12-29 50344]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-12-29 70832]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-12-29 294680]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\Windows\system32\drivers\iorate.sys [2017-09-29 43552]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\Windows\system32\drivers\mssecflt.sys [2017-09-30 210328]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2017-12-29 158224]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [2017-12-29 255584]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2017-12-29 118144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-12-29 99528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-12-29 783104]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-12-29 390272]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\Windows\system32\drivers\bam.sys [2017-09-29 49560]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2017-09-29 45056]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2017-09-29 7680]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-12-29 124408]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-12-29 151328]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\Windows\system32\drivers\cldflt.sys [2017-09-29 308224]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2017-09-29 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2017-09-29 62976]
R3 dtlitescsibus;@oem10.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\System32\drivers\dtlitescsibus.sys [2017-12-29 26168]
R3 dtliteusbbus;@oem11.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\Windows\System32\drivers\dtliteusbbus.sys [2017-12-29 40504]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBSta.sys [2005-01-31 22016]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2016-12-09 10720832]
R3 PID_0920;@oem2.inf,%PID_0920_DD%(PID_0920);Logitech QuickCam Express(PID_0920); C:\Windows\system32\DRIVERS\LV532AV.SYS [2005-01-31 163328]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2017-09-29 102808]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2017-09-29 84376]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2017-09-29 56728]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2017-09-29 51608]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2017-09-29 54680]
S0 Ramdisk;Windows RAM Disk Driver; C:\Windows\system32\DRIVERS\ramdisk.sys [2017-09-29 32152]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2017-09-29 38296]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2017-09-29 13312]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2017-09-29 13312]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\Windows\system32\drivers\AppvStrm.sys [2017-09-30 92056]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\Windows\system32\drivers\AppvVemgr.sys [2017-09-30 116632]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\Windows\system32\drivers\AppvVfs.sys [2017-09-30 109464]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-12-29 42824]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2017-09-29 27136]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\Windows\System32\drivers\CAD.sys [2017-09-29 51608]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2017-09-29 98816]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2017-09-29 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\Windows\System32\drivers\iaiogpio.sys [2017-09-29 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2017-09-29 38296]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\Windows\System32\Drivers\mshwnclx.sys [2017-09-29 18944]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2017-09-29 28672]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2017-09-29 74240]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\Windows\System32\drivers\iaioi2c.sys [2017-09-29 57856]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2017-09-29 30208]
S3 IPT;IPT; C:\Windows\System32\drivers\ipt.sys [2017-09-29 19456]
S3 irda;IrDA; C:\Windows\system32\drivers\irda.sys [2017-09-29 92672]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\Windows\System32\drivers\mausbhost.sys [2017-09-29 405024]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\Windows\System32\drivers\mausbip.sys [2017-09-29 42904]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2017-09-29 91648]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\Windows\System32\drivers\pnpmem.sys [2017-09-29 13312]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\Windows\System32\drivers\rhproxy.sys [2017-09-29 71680]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\Windows\System32\Drivers\UcmCx.sys [2017-09-29 79872]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\Windows\System32\Drivers\UcmTcpciCx.sys [2017-09-29 100864]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\Windows\System32\drivers\UcmUcsi.sys [2017-09-29 39424]
S3 UdeCx;USB Device Emulation Support Library; C:\Windows\system32\drivers\udecx.sys [2017-09-29 31744]
S3 Ufx01000;USB Function Class Extension; C:\Windows\system32\drivers\ufx01000.sys [2017-09-29 204696]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\Windows\System32\drivers\UfxChipidea.sys [2017-09-29 74272]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\Windows\System32\drivers\ufxsynopsys.sys [2017-09-29 107416]
S4 UevAgentDriver;@%systemroot%\system32\drivers\UevAgentDriver.sys,-101; C:\Windows\system32\drivers\UevAgentDriver.sys [2017-09-30 35736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST\AvastSvc.exe [2017-12-29 301168]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
R2 CDPUserSvc_40bad;Uživatelská služba platformy připojených zařízení_40bad; C:\Windows\system32\svchost.exe [2017-09-29 44520]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 44520]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2017-09-29 44520]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 44520]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\Windows\System32\svchost.exe [2017-09-29 44520]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-11-14 677312]
R2 OneSyncSvc_40bad;Hostitel synchronizace_40bad; C:\Windows\system32\svchost.exe [2017-09-29 44520]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\Windows\system32\SecurityHealthService.exe [2017-09-29 413936]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2016-11-14 426040]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST\aswidsagent.exe [2017-12-29 5906816]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2017-12-15 2933952]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2017-09-29 44520]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 PimIndexMaintenanceSvc_40bad;Data kontaktů_40bad; C:\Windows\system32\svchost.exe [2017-09-29 44520]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 44520]
R3 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 44520]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2017-09-29 44520]
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2017-12-29 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 DevicesFlowUserSvc_40bad;Tok zařízení_40bad; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 64000]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2017-12-30 651720]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2017-12-29 153168]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 MessagingService_40bad;Služba zasílání zpráv_40bad; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2017-12-21 175056]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 ose;Office  Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 PrintWorkflowUserSvc_40bad;PrintWorkflow_40bad; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-09-30 2867872]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2017-09-29 876544]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\Windows\system32\spectrum.exe [2017-09-29 661504]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\Windows\system32\TieringEngineService.exe [2017-09-29 265728]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\Windows\system32\AppVClient.exe [2017-09-30 635800]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 44520]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\Windows\system32\svchost.exe [2017-09-29 44520]
S4 UevAgentService;@%systemroot%\system32\AgentService.exe,-102; C:\Windows\system32\AgentService.exe [2017-09-30 836096]

-----------------EOF-----------------

[Rudy]

Zdravím!
Tento PC patří organizaci, nebo je váš soukromý?

[Ronnie Basic]

Soukromy, mam na nej admin prava.

[Rudy]

OK, já si jen všiml, že jeho název je Sokol-Holubice. Tak se ptám pro pořádek. Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

[Ronnie Basic]

Done, please find below:

Kód: Vybrat vše

# AdwCleaner 7.0.6.0 - Logfile created on Sat Dec 30 12:24:41 2017
# Updated on 2017/21/12 by Malwarebytes 
# Running on Windows 10 Pro (X86)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

No malicious registry entries deleted.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [944 B] - [2017/12/30 12:24:19]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

[Rudy]

Toto je OK. Teď dejte log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=152707 .

[Ronnie Basic]

FRST bellow, Addition.txt attached:

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 26-12-2017
Ran by Sokol-Holubice (administrator) on DESKTOP-DKASAE0 (30-12-2017 16:50:40)
Running from C:\Users\Sokol-Holubice\Desktop
Loaded Profiles: Sokol-Holubice (Available Profiles: Sokol-Holubice)
Platform: Microsoft Windows 10 Pro Version 1709 16299.125 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST\aswidsagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST\AvastUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [488344 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST\AvLaunch.exe [246120 2017-12-29] (AVAST Software)
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe Acrobat 9.0 Pro CZ\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe Acrobat 9.0 Pro CZ\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKU\S-1-5-21-1539977871-1764866808-1078093887-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4134080 2017-12-15] (Disc Soft Ltd)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{ea63575e-2c7b-46a0-b725-04cab0575e73}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1539977871-1764866808-1078093887-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-12-30] (Oracle Corporation)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-12-30] (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-12-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-12-30] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-29] (Google Inc.)

Chrome: 
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default [2017-12-30]
CHR Extension: (Prezentace) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-29]
CHR Extension: (Dokumenty) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-29]
CHR Extension: (Disk Google) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-29]
CHR Extension: (YouTube) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-29]
CHR Extension: (Tabulky) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-12-29]
CHR Extension: (Avast Online Security) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-12-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-12-29]
CHR Extension: (Gmail) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-29]
CHR Extension: (Chrome Media Router) - C:\Users\Sokol-Holubice\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-29]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST\aswidsagent.exe [5906816 2017-12-29] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST\AvastSvc.exe [301168 2017-12-29] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2933952 2017-12-15] (Disc Soft Ltd)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2017-12-30] (Macrovision Europe Ltd.) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2891976 2017-11-26] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [279408 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [86696 2017-09-29] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [158224 2017-12-29] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriverx.sys [255584 2017-12-29] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidshx.sys [157376 2017-12-29] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswblogx.sys [276696 2017-12-29] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbunivx.sys [50344 2017-12-29] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [118144 2017-12-29] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [42824 2017-12-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [124408 2017-12-29] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [99528 2017-12-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [70832 2017-12-29] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783104 2017-12-29] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [390272 2017-12-29] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [151328 2017-12-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [294680 2017-12-29] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [26168 2017-12-29] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [40504 2017-12-29] (Disc Soft Ltd)
R3 LVUSBSta; C:\Windows\system32\DRIVERS\LVUSBSta.sys [22016 2005-01-31] (Logitech Inc.)
R3 PID_0920; C:\Windows\system32\DRIVERS\LV532AV.SYS [163328 2005-01-31] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [37440 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [253848 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [98200 2017-09-29] (Microsoft Corporation)
R3 yukonw8; C:\Windows\System32\drivers\yk63x86.sys [242688 2017-09-29] (Marvell)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-12-30 16:50 - 2017-12-30 16:51 - 000011299 _____ C:\Users\Sokol-Holubice\Desktop\FRST.txt
2017-12-30 16:50 - 2017-12-30 16:50 - 000000000 ____D C:\FRST
2017-12-30 16:49 - 2017-12-30 16:49 - 001752064 _____ (Farbar) C:\Users\Sokol-Holubice\Desktop\FRST.exe
2017-12-30 13:28 - 2017-12-30 13:28 - 008198432 _____ (Malwarebytes) C:\Users\Sokol-Holubice\Downloads\adwcleaner_7.0.6.0 (1).exe
2017-12-30 13:26 - 2017-12-30 13:26 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-12-30 13:24 - 2017-12-30 13:24 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\PeerDistRepub
2017-12-30 13:21 - 2017-12-30 13:24 - 000000000 ____D C:\AdwCleaner
2017-12-30 13:20 - 2017-12-30 13:20 - 008198432 _____ (Malwarebytes) C:\Users\Sokol-Holubice\Downloads\adwcleaner_7.0.6.0.exe
2017-12-30 13:20 - 2017-12-30 13:20 - 008198432 _____ (Malwarebytes) C:\Users\Sokol-Holubice\Desktop\AdwCleaner.exe
2017-12-30 13:13 - 2017-12-03 23:38 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-12-30 13:13 - 2017-12-03 23:38 - 000177656 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-12-30 13:08 - 2017-12-30 13:08 - 000000000 ____D C:\ProgramData\NVIDIA
2017-12-30 13:08 - 2017-12-30 13:08 - 000000000 ____D C:\Program Files\AGEIA Technologies
2017-12-30 13:08 - 2016-11-14 13:35 - 000067520 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-12-30 13:08 - 2016-11-14 12:00 - 004395456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-12-30 13:08 - 2016-11-14 12:00 - 003069496 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2017-12-30 13:08 - 2016-11-14 12:00 - 002563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-12-30 13:08 - 2016-11-14 12:00 - 000677312 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2017-12-30 13:08 - 2016-11-14 12:00 - 000381888 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-12-30 13:08 - 2016-11-14 12:00 - 000070200 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-12-30 13:08 - 2016-11-11 20:51 - 007513855 _____ C:\Windows\system32\nvcoproc.bin
2017-12-30 13:07 - 2017-12-30 13:07 - 000000000 ____D C:\ProgramData\Package Cache
2017-12-30 13:06 - 2016-11-14 13:35 - 024208440 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 016128720 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 015301056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 014497712 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 011270656 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 011208312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 010711488 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-12-30 13:06 - 2016-11-14 13:35 - 003995192 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 002822384 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 001060216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3234201.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 000913856 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 000912248 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3234201.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 000876480 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll
2017-12-30 13:06 - 2016-11-14 13:35 - 000021016 _____ C:\Windows\system32\nvinfo.pb
2017-12-30 13:04 - 2017-12-30 13:04 - 000000000 ____D C:\NVIDIA
2017-12-30 13:03 - 2017-12-30 13:03 - 250574008 _____ (NVIDIA Corporation) C:\Users\Sokol-Holubice\Downloads\342.01-desktop-win10-32bit-international.exe
2017-12-30 12:27 - 2017-12-30 12:28 - 000000000 ____D C:\ProgramData\Oracle
2017-12-30 12:27 - 2017-12-30 12:27 - 000095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2017-12-30 12:27 - 2017-12-30 12:27 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\Sun
2017-12-30 12:27 - 2017-12-30 12:27 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\LocalLow\Sun
2017-12-30 12:27 - 2017-12-30 12:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-12-30 12:27 - 2017-12-30 12:27 - 000000000 ____D C:\Program Files\Java
2017-12-30 12:27 - 2017-12-30 12:27 - 000000000 ____D C:\Program Files\Common Files\Java
2017-12-30 12:26 - 2017-12-30 12:26 - 001852992 _____ (Oracle Corporation) C:\Users\Sokol-Holubice\Downloads\JavaSetup8u151.exe
2017-12-30 12:13 - 2017-12-30 12:17 - 000000000 ____D C:\Windows\system32\MRT
2017-12-30 12:13 - 2017-12-30 12:13 - 130448288 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-12-30 12:13 - 2017-12-30 12:13 - 130448288 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-12-30 12:09 - 2017-12-30 12:09 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2017-12-30 12:09 - 2017-12-30 12:09 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2017-12-30 12:06 - 2017-12-30 12:17 - 000000000 ____D C:\Program Files\trend micro
2017-12-30 12:05 - 2017-12-30 12:06 - 000000000 ____D C:\rsit
2017-12-30 12:05 - 2017-12-30 12:05 - 001107968 _____ C:\Users\Sokol-Holubice\Downloads\RSIT.exe
2017-12-30 12:00 - 2017-12-07 23:58 - 004145488 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2017-12-30 12:00 - 2017-12-07 23:39 - 006092664 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-12-30 12:00 - 2017-12-07 23:32 - 020286120 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-12-30 12:00 - 2017-12-07 23:23 - 006478528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-12-30 12:00 - 2017-12-07 23:10 - 018916352 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-12-30 12:00 - 2017-12-07 23:10 - 006466048 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-12-30 12:00 - 2017-12-07 23:08 - 019336192 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-12-30 12:00 - 2017-12-07 23:05 - 006037504 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-12-30 12:00 - 2017-11-26 11:36 - 013703168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-12-30 12:00 - 2017-11-26 11:32 - 011923456 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-12-30 12:00 - 2017-11-26 11:30 - 002645504 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-12-30 12:00 - 2017-10-25 04:30 - 005615968 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2017-12-30 12:00 - 2017-10-25 04:28 - 004648528 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-12-30 12:00 - 2017-10-25 04:27 - 001454568 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2017-12-30 12:00 - 2017-10-25 04:22 - 006015200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-12-30 12:00 - 2017-10-25 04:22 - 002465848 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-12-30 12:00 - 2017-10-25 04:01 - 012687360 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-12-30 12:00 - 2017-10-25 03:58 - 002174976 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2017-12-30 12:00 - 2017-10-25 03:58 - 001959424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-12-30 11:59 - 2017-12-07 23:57 - 001506712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-12-30 11:59 - 2017-12-07 23:57 - 000649304 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2017-12-30 11:59 - 2017-12-07 23:56 - 000049560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bam.sys
2017-12-30 11:59 - 2017-12-07 23:55 - 001490328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-12-30 11:59 - 2017-12-07 23:37 - 006403480 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-12-30 11:59 - 2017-12-07 23:37 - 001145104 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-12-30 11:59 - 2017-12-07 23:36 - 000769096 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2017-12-30 11:59 - 2017-12-07 23:36 - 000142640 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-12-30 11:59 - 2017-12-07 23:35 - 000454040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-12-30 11:59 - 2017-12-07 23:35 - 000445336 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2017-12-30 11:59 - 2017-12-07 23:34 - 003484840 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-12-30 11:59 - 2017-12-07 23:34 - 002192112 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-12-30 11:59 - 2017-12-07 23:33 - 000747416 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2017-12-30 11:59 - 2017-12-07 23:33 - 000592280 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2017-12-30 11:59 - 2017-12-07 23:33 - 000538760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-12-30 11:59 - 2017-12-07 23:33 - 000337304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2017-12-30 11:59 - 2017-12-07 23:32 - 000278936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2017-12-30 11:59 - 2017-12-07 23:32 - 000100248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvsocket.sys
2017-12-30 11:59 - 2017-12-07 23:31 - 004937224 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2017-12-30 11:59 - 2017-12-07 23:31 - 001522176 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-12-30 11:59 - 2017-12-07 23:31 - 001246432 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2017-12-30 11:59 - 2017-12-07 23:31 - 000982016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2017-12-30 11:59 - 2017-12-07 23:31 - 000456232 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2017-12-30 11:59 - 2017-12-07 23:31 - 000295488 _____ (Microsoft Corporation) C:\Windows\system32\vac.exe
2017-12-30 11:59 - 2017-12-07 23:30 - 000717464 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2017-12-30 11:59 - 2017-12-07 23:29 - 000131992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2017-12-30 11:59 - 2017-12-07 23:28 - 000612736 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2017-12-30 11:59 - 2017-12-07 23:25 - 000203672 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2017-12-30 11:59 - 2017-12-07 23:25 - 000108480 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-12-30 11:59 - 2017-12-07 23:21 - 000353688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2017-12-30 11:59 - 2017-12-07 23:13 - 002905600 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-12-30 11:59 - 2017-12-07 23:13 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2017-12-30 11:59 - 2017-12-07 23:12 - 000344576 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2017-12-30 11:59 - 2017-12-07 23:12 - 000202240 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2017-12-30 11:59 - 2017-12-07 23:12 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\msscript.ocx
2017-12-30 11:59 - 2017-12-07 23:10 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-30 11:59 - 2017-12-07 23:10 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc.sys
2017-12-30 11:59 - 2017-12-07 23:10 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2017-12-30 11:59 - 2017-12-07 23:10 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-30 11:59 - 2017-12-07 23:09 - 001663488 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2017-12-30 11:59 - 2017-12-07 23:09 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2017-12-30 11:59 - 2017-12-07 23:09 - 000187392 _____ (Microsoft Corporation) C:\Windows\system32\PushToInstall.dll
2017-12-30 11:59 - 2017-12-07 23:09 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2017-12-30 11:59 - 2017-12-07 23:09 - 000143360 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2017-12-30 11:59 - 2017-12-07 23:09 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcui.dll
2017-12-30 11:59 - 2017-12-07 23:09 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2017-12-30 11:59 - 2017-12-07 23:08 - 001130496 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2017-12-30 11:59 - 2017-12-07 23:08 - 000514560 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-30 11:59 - 2017-12-07 23:08 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2017-12-30 11:59 - 2017-12-07 23:08 - 000369152 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2017-12-30 11:59 - 2017-12-07 23:08 - 000296448 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2017-12-30 11:59 - 2017-12-07 23:08 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2017-12-30 11:59 - 2017-12-07 23:08 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2017-12-30 11:59 - 2017-12-07 23:07 - 000365568 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2017-12-30 11:59 - 2017-12-07 23:07 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-30 11:59 - 2017-12-07 23:07 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\hascsp.dll
2017-12-30 11:59 - 2017-12-07 23:06 - 003702784 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-12-30 11:59 - 2017-12-07 23:06 - 002022400 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-12-30 11:59 - 2017-12-07 23:06 - 000676352 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2017-12-30 11:59 - 2017-12-07 23:06 - 000559104 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-12-30 11:59 - 2017-12-07 23:06 - 000297472 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2017-12-30 11:59 - 2017-12-07 23:05 - 002062848 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2017-12-30 11:59 - 2017-12-07 23:05 - 000664576 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-12-30 11:59 - 2017-12-07 23:05 - 000533504 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2017-12-30 11:59 - 2017-12-07 23:05 - 000481792 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2017-12-30 11:59 - 2017-12-07 23:05 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-12-30 11:59 - 2017-12-07 23:05 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll
2017-12-30 11:59 - 2017-12-07 23:04 - 003678208 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-12-30 11:59 - 2017-12-07 23:04 - 001626112 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-12-30 11:59 - 2017-12-07 23:04 - 001321472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2017-12-30 11:59 - 2017-12-07 23:04 - 001132032 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-12-30 11:59 - 2017-12-07 23:04 - 000657920 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2017-12-30 11:59 - 2017-12-07 23:03 - 002467840 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-12-30 11:59 - 2017-12-07 23:03 - 002247168 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2017-12-30 11:59 - 2017-12-07 23:03 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-12-30 11:59 - 2017-12-07 23:03 - 001230848 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2017-12-30 11:59 - 2017-12-07 23:03 - 000841728 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2017-12-30 11:59 - 2017-12-07 23:02 - 002864640 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-12-30 11:59 - 2017-12-07 23:02 - 001288704 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-12-30 11:59 - 2017-12-07 23:02 - 000695808 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2017-12-30 11:59 - 2017-12-07 23:02 - 000604160 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2017-12-30 11:59 - 2017-12-07 23:01 - 001980928 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2017-12-30 11:59 - 2017-12-07 23:00 - 001509888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-12-30 11:59 - 2017-12-07 22:59 - 001982976 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2017-12-30 11:59 - 2017-12-07 22:59 - 001286144 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2017-12-30 11:59 - 2017-12-07 22:59 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2017-12-30 11:59 - 2017-11-26 17:43 - 000618496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2017-12-30 11:59 - 2017-11-26 12:23 - 000166632 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-12-30 11:59 - 2017-11-26 12:21 - 001474680 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2017-12-30 11:59 - 2017-11-26 12:21 - 000253144 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2017-12-30 11:59 - 2017-11-26 12:08 - 000233368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2017-12-30 11:59 - 2017-11-26 12:05 - 001115704 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-12-30 11:59 - 2017-11-26 12:05 - 000973648 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2017-12-30 11:59 - 2017-11-26 12:04 - 001995672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-12-30 11:59 - 2017-11-26 12:04 - 000368536 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2017-12-30 11:59 - 2017-11-26 12:04 - 000368536 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2017-12-30 11:59 - 2017-11-26 12:04 - 000300952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2017-12-30 11:59 - 2017-11-26 12:04 - 000065432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2017-12-30 11:59 - 2017-11-26 12:03 - 000965016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-12-30 11:59 - 2017-11-26 12:03 - 000155544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2017-12-30 11:59 - 2017-11-26 12:02 - 001124760 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2017-12-30 11:59 - 2017-11-26 12:01 - 002339296 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-12-30 11:59 - 2017-11-26 12:01 - 002116504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-12-30 11:59 - 2017-11-26 12:01 - 000791960 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-12-30 11:59 - 2017-11-26 12:01 - 000746904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Services.TargetedContent.dll
2017-12-30 11:59 - 2017-11-26 12:01 - 000608664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-12-30 11:59 - 2017-11-26 12:01 - 000590944 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-12-30 11:59 - 2017-11-26 12:01 - 000506256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Perception.Stub.dll
2017-12-30 11:59 - 2017-11-26 12:01 - 000354200 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2017-12-30 11:59 - 2017-11-26 12:00 - 001990160 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-12-30 11:59 - 2017-11-26 12:00 - 001851288 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2017-12-30 11:59 - 2017-11-26 12:00 - 000535448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2017-12-30 11:59 - 2017-11-26 12:00 - 000434072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-12-30 11:59 - 2017-11-26 12:00 - 000414824 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2017-12-30 11:59 - 2017-11-26 12:00 - 000353848 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2017-12-30 11:59 - 2017-11-26 12:00 - 000167832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-12-30 11:59 - 2017-11-26 12:00 - 000128408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2017-12-30 11:59 - 2017-11-26 11:59 - 000703568 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-12-30 11:59 - 2017-11-26 11:59 - 000353176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-12-30 11:59 - 2017-11-26 11:59 - 000040840 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-12-30 11:59 - 2017-11-26 11:58 - 001148216 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2017-12-30 11:59 - 2017-11-26 11:58 - 001057824 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2017-12-30 11:59 - 2017-11-26 11:58 - 000322968 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-12-30 11:59 - 2017-11-26 11:57 - 001490840 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems32.dll
2017-12-30 11:59 - 2017-11-26 11:57 - 001121176 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2017-12-30 11:59 - 2017-11-26 11:57 - 000635800 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2017-12-30 11:59 - 2017-11-26 11:57 - 000621976 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2017-12-30 11:59 - 2017-11-26 11:57 - 000533400 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2017-12-30 11:59 - 2017-11-26 11:56 - 001336544 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-12-30 11:59 - 2017-11-26 11:56 - 001270680 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2017-12-30 11:59 - 2017-11-26 11:56 - 000938392 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2017-12-30 11:59 - 2017-11-26 11:56 - 000577944 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2017-12-30 11:59 - 2017-11-26 11:56 - 000530152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-12-30 11:59 - 2017-11-26 11:56 - 000508848 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2017-12-30 11:59 - 2017-11-26 11:51 - 000661664 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2017-12-30 11:59 - 2017-11-26 11:50 - 000484248 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2017-12-30 11:59 - 2017-11-26 11:50 - 000482712 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2017-12-30 11:59 - 2017-11-26 11:42 - 000936960 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-12-30 11:59 - 2017-11-26 11:41 - 002393600 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll
2017-12-30 11:59 - 2017-11-26 11:41 - 001470976 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2017-12-30 11:59 - 2017-11-26 11:41 - 000372224 _____ (Microsoft Corporation) C:\Windows\system32\AcLayers.dll
2017-12-30 11:59 - 2017-11-26 11:41 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-12-30 11:59 - 2017-11-26 11:41 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-12-30 11:59 - 2017-11-26 11:41 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\DeviceUpdateAgent.dll
2017-12-30 11:59 - 2017-11-26 11:41 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2017-12-30 11:59 - 2017-11-26 11:40 - 002890240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-12-30 11:59 - 2017-11-26 11:40 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2017-12-30 11:59 - 2017-11-26 11:39 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2017-12-30 11:59 - 2017-11-26 11:38 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\SpatializerApo.dll
2017-12-30 11:59 - 2017-11-26 11:38 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2017-12-30 11:59 - 2017-11-26 11:38 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SIUF.dll
2017-12-30 11:59 - 2017-11-26 11:38 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2017-12-30 11:59 - 2017-11-26 11:37 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_ContentDeliveryManager.dll
2017-12-30 11:59 - 2017-11-26 11:37 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2017-12-30 11:59 - 2017-11-26 11:37 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2017-12-30 11:59 - 2017-11-26 11:37 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2017-12-30 11:59 - 2017-11-26 11:36 - 000539648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-12-30 11:59 - 2017-11-26 11:36 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2017-12-30 11:59 - 2017-11-26 11:36 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-12-30 11:59 - 2017-11-26 11:36 - 000351232 _____ (Microsoft Corporation) C:\Windows\system32\DictationManager.dll
2017-12-30 11:59 - 2017-11-26 11:36 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-12-30 11:59 - 2017-11-26 11:36 - 000298496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2017-12-30 11:59 - 2017-11-26 11:36 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe
2017-12-30 11:59 - 2017-11-26 11:36 - 000189952 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2017-12-30 11:59 - 2017-11-26 11:35 - 001171456 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2017-12-30 11:59 - 2017-11-26 11:35 - 000557056 _____ (Microsoft Corporation) C:\Windows\system32\d3d9on12.dll
2017-12-30 11:59 - 2017-11-26 11:35 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2017-12-30 11:59 - 2017-11-26 11:35 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2017-12-30 11:59 - 2017-11-26 11:35 - 000242176 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2017-12-30 11:59 - 2017-11-26 11:34 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-12-30 11:59 - 2017-11-26 11:31 - 001231872 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-12-30 11:59 - 2017-11-26 11:31 - 000660480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-12-30 11:59 - 2017-11-26 11:31 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2017-12-30 11:59 - 2017-11-26 11:30 - 004385280 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-12-30 11:59 - 2017-11-26 11:30 - 002859520 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2017-12-30 11:59 - 2017-11-26 11:30 - 002315776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2017-12-30 11:59 - 2017-11-26 11:30 - 001859584 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2017-12-30 11:59 - 2017-11-26 11:30 - 001771008 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-12-30 11:59 - 2017-11-26 11:30 - 001118208 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-12-30 11:59 - 2017-11-26 11:30 - 000900608 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2017-12-30 11:59 - 2017-11-26 11:29 - 002869760 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-12-30 11:59 - 2017-11-26 11:29 - 002342400 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-12-30 11:59 - 2017-11-26 11:29 - 000823808 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-12-30 11:59 - 2017-11-26 11:29 - 000365568 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-12-30 11:59 - 2017-11-26 11:29 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\aadjcsp.dll
2017-12-30 11:59 - 2017-11-26 11:28 - 004249600 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2017-12-30 11:59 - 2017-11-26 11:28 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-12-30 11:59 - 2017-11-26 11:27 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-12-30 11:59 - 2017-11-26 11:27 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2017-12-30 11:59 - 2017-11-26 11:24 - 000614912 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2017-12-30 11:59 - 2017-11-26 11:24 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2017-12-30 11:59 - 2017-11-19 03:20 - 002491112 _____ C:\Windows\system32\Windows.Mirage.dll
2017-12-30 11:59 - 2017-10-25 07:36 - 000661504 _____ (Microsoft Corporation) C:\Windows\system32\Spectrum.exe
2017-12-30 11:59 - 2017-10-25 04:59 - 000499608 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-12-30 11:59 - 2017-10-25 04:56 - 000213840 _____ C:\Windows\system32\FaceProcessorCore.dll
2017-12-30 11:59 - 2017-10-25 04:33 - 001627600 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-12-30 11:59 - 2017-10-25 04:33 - 000517528 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-12-30 11:59 - 2017-10-25 04:29 - 000478616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-12-30 11:59 - 2017-10-25 04:29 - 000433560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2017-12-30 11:59 - 2017-10-25 04:29 - 000038296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
2017-12-30 11:59 - 2017-10-25 04:28 - 000116120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2017-12-30 11:59 - 2017-10-25 04:27 - 001377080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-12-30 11:59 - 2017-10-25 04:27 - 001015008 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-12-30 11:59 - 2017-10-25 04:08 - 000817152 _____ C:\Windows\system32\FaceProcessor.dll
2017-12-30 11:59 - 2017-10-25 04:08 - 000487424 _____ (Microsoft Corporation) C:\Windows\system32\AcSpecfc.dll
2017-12-30 11:59 - 2017-10-25 04:08 - 000075776 _____ C:\Windows\system32\runexehelper.exe
2017-12-30 11:59 - 2017-10-25 04:07 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2017-12-30 11:59 - 2017-10-25 04:07 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2017-12-30 11:59 - 2017-10-25 04:06 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2017-12-30 11:59 - 2017-10-25 04:06 - 000079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmCx.sys
2017-12-30 11:59 - 2017-10-25 04:04 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\rdrleakdiag.exe
2017-12-30 11:59 - 2017-10-25 04:02 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2017-12-30 11:59 - 2017-10-25 03:58 - 001280000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-12-30 11:59 - 2017-10-25 03:56 - 000480768 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2017-12-30 11:59 - 2017-10-25 03:54 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\msdtcVSp1res.dll
2017-12-30 11:59 - 2017-10-25 03:52 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2017-12-30 11:59 - 2017-10-20 06:08 - 000339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2017-12-30 11:59 - 2017-10-10 07:31 - 001323840 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-12-30 11:59 - 2017-10-10 07:26 - 001448864 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-12-30 11:59 - 2017-10-10 07:11 - 000597160 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-12-30 11:59 - 2017-10-10 07:10 - 000271768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2017-12-30 11:59 - 2017-10-10 07:07 - 001261864 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-12-30 11:59 - 2017-10-10 07:06 - 000353688 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-12-30 11:59 - 2017-10-10 07:06 - 000043416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\urscx01000.sys
2017-12-30 11:59 - 2017-10-10 06:46 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-12-30 11:59 - 2017-10-10 06:45 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmUcsi.sys
2017-12-30 11:59 - 2017-10-10 06:45 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2017-12-30 11:59 - 2017-10-10 06:43 - 000566272 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-12-30 11:59 - 2017-10-10 06:43 - 000390656 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-12-30 11:59 - 2017-10-10 06:43 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthTokenBrokerExt.dll
2017-12-30 11:59 - 2017-10-10 06:43 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2017-12-30 11:59 - 2017-10-10 06:42 - 000374784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2017-12-30 11:59 - 2017-10-10 06:42 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2017-12-30 11:59 - 2017-10-10 06:42 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2017-12-30 11:59 - 2017-10-10 06:36 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2017-12-30 11:59 - 2017-10-10 06:35 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-12-30 11:59 - 2017-10-10 06:35 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-12-30 11:59 - 2017-10-03 23:42 - 000640512 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2017-12-30 11:59 - 2017-10-03 23:42 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2017-12-30 11:29 - 2017-12-30 11:29 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\LocalLow\Adobe
2017-12-30 11:28 - 2017-12-30 11:28 - 000000000 ____D C:\ProgramData\FLEXnet
2017-12-30 11:25 - 2017-12-30 11:28 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\Adobe
2017-12-30 11:25 - 2017-12-30 11:25 - 000002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Distiller 9.lnk
2017-12-30 11:25 - 2017-12-30 11:25 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat 9 Pro.lnk
2017-12-30 11:25 - 2017-12-30 11:25 - 000002192 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle Designer ES 8.2.lnk
2017-12-30 11:25 - 2017-12-30 11:25 - 000002042 _____ C:\Users\Public\Desktop\Adobe Acrobat 9 Pro.lnk
2017-12-30 11:25 - 2017-12-30 11:25 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared
2017-12-30 11:25 - 2008-04-07 05:38 - 000045392 ____R (Adobe Systems Inc) C:\Windows\system32\AdobePDF.dll
2017-12-30 11:25 - 2008-04-07 05:38 - 000022872 ____R (Adobe Systems Inc.) C:\Windows\system32\AdobePDFUI.dll
2017-12-30 11:22 - 2017-12-30 11:25 - 000000000 ____D C:\ProgramData\Adobe
2017-12-30 11:22 - 2017-12-30 11:25 - 000000000 ____D C:\Program Files\Common Files\Adobe
2017-12-30 11:22 - 2017-12-30 11:24 - 000000000 ____D C:\Program Files\Adobe Acrobat 9.0 Pro CZ
2017-12-30 11:02 - 2017-12-30 11:23 - 000000000 ____D C:\FOTKY
2017-12-30 10:51 - 2017-12-30 10:51 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\Samsung
2017-12-30 09:40 - 2017-12-30 09:40 - 000000000 ____D C:\ProgramData\Samsung
2017-12-29 18:07 - 2017-12-29 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-12-29 18:06 - 2017-12-29 18:06 - 000000000 ____D C:\Windows\PCHEALTH
2017-12-29 18:06 - 2017-12-29 18:06 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2017-12-29 18:01 - 2017-12-29 18:01 - 000000000 ____D C:\Program Files\Microsoft Analysis Services
2017-12-29 17:55 - 2006-10-26 19:56 - 000032592 _____ (Microsoft Corporation) C:\Windows\system32\msonpmon.dll
2017-12-29 17:53 - 2017-12-29 17:53 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\Disc_Soft_Ltd
2017-12-29 17:53 - 2017-12-29 17:53 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2017-12-29 17:52 - 2017-12-29 18:09 - 000000000 ____D C:\Windows\SHELLNEW
2017-12-29 17:52 - 2017-12-29 18:06 - 000000000 ____D C:\Program Files\Microsoft Office
2017-12-29 17:52 - 2017-12-29 17:52 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\Microsoft Help
2017-12-29 17:51 - 2017-12-29 17:51 - 000000000 __RHD C:\MSOCache
2017-12-29 17:48 - 2017-12-29 17:48 - 000000000 ____D C:\Users\Public\Documents\Catch!
2017-12-29 17:47 - 2017-12-29 17:53 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\DAEMON Tools Lite
2017-12-29 17:47 - 2017-12-29 17:47 - 000040504 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2017-12-29 17:47 - 2017-12-29 17:47 - 000026168 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2017-12-29 17:47 - 2017-12-29 17:47 - 000002004 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2017-12-29 17:47 - 2017-12-29 17:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2017-12-29 17:46 - 2017-12-29 17:47 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2017-12-29 17:46 - 2017-12-29 17:46 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2017-12-29 17:44 - 2017-12-29 17:44 - 000790488 _____ (Disc Soft Ltd.) C:\Users\Sokol-Holubice\Downloads\DTLiteInstaller.exe
2017-12-29 17:31 - 2017-12-30 11:16 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\LocalLow\Mozilla
2017-12-29 17:31 - 2017-12-29 17:31 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\Mozilla
2017-12-29 17:30 - 2017-12-29 17:30 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\Thunderbird
2017-12-29 17:30 - 2017-12-29 17:30 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\Thunderbird
2017-12-29 17:29 - 2017-12-28 15:45 - 000001156 _____ C:\Users\Sokol-Holubice\Documents\indexfile.txt
2017-12-29 17:27 - 2017-12-29 17:27 - 000000000 ____D C:\!_posta to restore
2017-12-29 17:26 - 2017-12-29 17:26 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MozBackup
2017-12-29 17:26 - 2017-12-29 17:26 - 000000000 ____D C:\Program Files\MozBackup
2017-12-29 17:24 - 2017-12-30 11:12 - 000001502 _____ C:\Users\Sokol-Holubice\Desktop\Skype.lnk
2017-12-29 17:12 - 2017-12-29 17:20 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\vlc
2017-12-29 17:10 - 2017-12-29 17:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-12-29 17:09 - 2017-12-29 17:10 - 000000000 ____D C:\Program Files\VLC
2017-12-29 17:08 - 2017-12-29 17:08 - 030863288 _____ C:\Users\Sokol-Holubice\Downloads\vlc-2.2.8-win32.exe
2017-12-29 17:08 - 2017-12-29 17:08 - 000001147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2017-12-29 17:08 - 2017-12-29 17:08 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2017-12-29 17:08 - 2017-12-29 17:08 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-12-29 17:07 - 2017-12-29 17:07 - 040357696 _____ (Mozilla) C:\Users\Sokol-Holubice\Downloads\Thunderbird Setup 52.5.2.exe
2017-12-29 16:47 - 2017-12-29 16:50 - 000001296 _____ C:\Users\Sokol-Holubice\Desktop\UCTO 2016.lnk
2017-12-29 16:44 - 2017-12-29 16:47 - 000000000 ____D C:\Users\Sokol-Holubice\Desktop\Dokumenty ze stare Plochy
2017-12-29 16:43 - 2017-12-29 18:06 - 000000000 ___RD C:\Filmy
2017-12-29 16:31 - 2017-12-29 16:31 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\NVIDIA
2017-12-29 16:26 - 2017-12-29 16:26 - 007172032 _____ (AVAST Software) C:\Users\Sokol-Holubice\Downloads\avast_free_antivirus_setup_online_a1l (2).exe
2017-12-29 16:25 - 2017-12-29 16:25 - 007172032 _____ (AVAST Software) C:\Users\Sokol-Holubice\Downloads\avast_free_antivirus_setup_online_a1l (1).exe
2017-12-29 16:20 - 2017-12-29 16:20 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\AVAST Software
2017-12-29 16:20 - 2017-12-29 16:20 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\CEF
2017-12-29 16:19 - 2017-12-29 16:19 - 000055160 _____ () C:\Windows\system32\Drivers\lpsport.sys
2017-12-29 16:19 - 2017-12-29 16:19 - 000001962 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2017-12-29 16:19 - 2017-12-29 16:19 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2017-12-29 16:18 - 2017-12-29 17:01 - 000000000 ____D C:\UCTO2017
2017-12-29 16:18 - 2017-12-29 17:00 - 000002124 _____ C:\Users\Sokol-Holubice\Desktop\UCTO 2017.lnk
2017-12-29 16:18 - 2017-12-29 16:18 - 001142072 _____ (Microsoft Corporation) C:\Windows\ucrtbase.dll
2017-12-29 16:18 - 2017-12-29 16:18 - 000390272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-12-29 16:18 - 2017-12-29 16:18 - 000294680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-12-29 16:18 - 2017-12-29 16:18 - 000158224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2017-12-29 16:18 - 2017-12-29 16:18 - 000151328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-12-29 16:18 - 2017-12-29 16:18 - 000124408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-12-29 16:18 - 2017-12-29 16:18 - 000099528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-12-29 16:18 - 2017-12-29 16:18 - 000070832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-12-29 16:18 - 2017-12-29 16:18 - 000042824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-12-29 16:18 - 2017-12-29 16:18 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\GHISLER
2017-12-29 16:18 - 2017-12-29 16:17 - 000783104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-12-29 16:18 - 2017-12-29 16:17 - 000305840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-12-29 16:18 - 2017-12-29 16:17 - 000276696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswblogx.sys
2017-12-29 16:18 - 2017-12-29 16:17 - 000255584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-12-29 16:18 - 2017-12-29 16:17 - 000157376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidshx.sys
2017-12-29 16:18 - 2017-12-29 16:17 - 000118144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2017-12-29 16:18 - 2017-12-29 16:17 - 000050344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbunivx.sys
2017-12-29 16:16 - 2017-12-30 13:14 - 000000000 ____D C:\Program Files\AVAST
2017-12-29 16:14 - 2017-12-29 16:18 - 000000000 ____D C:\ProgramData\AVAST Software
2017-12-29 16:14 - 2017-12-29 16:14 - 007172032 _____ (AVAST Software) C:\Users\Sokol-Holubice\Downloads\avast_free_antivirus_setup_online_a1l.exe
2017-12-29 16:12 - 2017-12-29 16:12 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\Google
2017-12-29 16:09 - 2017-12-30 10:56 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\PlaceholderTileLogoFolder
2017-12-29 16:07 - 2017-12-29 16:07 - 000002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-29 16:07 - 2017-12-29 16:07 - 000000000 ____D C:\Program Files\Google
2017-12-29 16:06 - 2017-12-29 16:16 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\Google
2017-12-29 16:02 - 2017-12-29 16:04 - 000000000 ____D C:\Program Files\Total Commander 7,50a CZ
2017-12-29 16:02 - 2017-12-29 16:02 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\GHISLER
2017-12-29 16:02 - 2017-12-29 16:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander
2017-12-29 16:02 - 2009-09-24 07:50 - 000000545 _____ C:\Windows\UC.PIF
2017-12-29 16:02 - 2009-09-24 07:50 - 000000545 _____ C:\Windows\RAR.PIF
2017-12-29 16:02 - 2009-09-24 07:50 - 000000545 _____ C:\Windows\PKZIP.PIF
2017-12-29 16:02 - 2009-09-24 07:50 - 000000545 _____ C:\Windows\PKUNZIP.PIF
2017-12-29 16:02 - 2009-09-24 07:50 - 000000545 _____ C:\Windows\NOCLOSE.PIF
2017-12-29 16:02 - 2009-09-24 07:50 - 000000545 _____ C:\Windows\LHA.PIF
2017-12-29 16:02 - 2009-09-24 07:50 - 000000545 _____ C:\Windows\ARJ.PIF
2017-12-29 15:57 - 2017-12-29 15:59 - 000002418 _____ C:\Users\Sokol-Holubice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-12-29 15:57 - 2017-12-29 15:59 - 000000000 ___RD C:\Users\Sokol-Holubice\OneDrive
2017-12-29 15:54 - 2017-12-29 15:54 - 000000000 ____D C:\ProgramData\USOShared
2017-12-29 15:53 - 2017-12-30 13:08 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-12-29 15:53 - 2017-12-30 13:08 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-12-29 15:53 - 2017-12-29 18:26 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\Comms
2017-12-29 15:52 - 2017-12-29 15:52 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-12-29 15:50 - 2017-12-29 16:17 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\Publishers
2017-12-29 15:50 - 2017-12-29 15:50 - 000000000 ___HD C:\Users\Sokol-Holubice\MicrosoftEdgeBackups
2017-12-29 15:50 - 2017-12-29 15:50 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\MicrosoftEdge
2017-12-29 15:49 - 2017-12-30 13:30 - 001852932 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-29 15:49 - 2017-12-30 13:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-12-29 15:49 - 2017-12-30 13:14 - 000000000 ___RD C:\Users\Sokol-Holubice\3D Objects
2017-12-29 15:49 - 2017-12-30 11:30 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\Packages
2017-12-29 15:49 - 2017-12-30 11:28 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Roaming\Adobe
2017-12-29 15:49 - 2017-12-29 16:39 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\VirtualStore
2017-12-29 15:49 - 2017-12-29 15:57 - 000000000 ____D C:\Users\Sokol-Holubice
2017-12-29 15:49 - 2017-12-29 15:49 - 000000020 ___SH C:\Users\Sokol-Holubice\ntuser.ini
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\Ĺ ablony
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\Soubory cookie
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\PoslednĂ­
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\Okolní tiskárny
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\OkolnĂ­ sĂ­ĹĄ
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\NabĂ­dka Start
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\Dokumenty
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\Documents\Obrázky
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\Documents\Hudba
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\Documents\Filmy
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\Data aplikacĂ­
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 _SHDL C:\Users\Sokol-Holubice\AppData\Local\Data aplikacĂ­
2017-12-29 15:49 - 2017-12-29 15:49 - 000000000 ____D C:\Users\Sokol-Holubice\AppData\Local\ConnectedDevicesPlatform
2017-12-29 15:46 - 2017-12-29 15:46 - 000000000 ____D C:\Windows\CSC
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\Ĺ ablony
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\PoslednĂ­
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\OkolnĂ­ sĂ­ĹĄ
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\NabĂ­dka Start
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\Dokumenty
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\Data aplikacĂ­
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikacĂ­
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikacĂ­
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\ProgramData\Ĺ ablony
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\ProgramData\Plocha
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\ProgramData\NabĂ­dka Start
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\ProgramData\Dokumenty
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\ProgramData\Data aplikacĂ­
2017-12-29 15:44 - 2017-12-29 15:44 - 000000000 _SHDL C:\Documents and Settings
2017-12-29 15:39 - 2017-12-30 13:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-29 15:39 - 2017-12-29 15:39 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-12-29 15:38 - 2017-12-30 13:12 - 000325072 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-29 15:38 - 2017-12-30 12:51 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-12-29 15:38 - 2017-12-29 15:38 - 000000000 ____D C:\Windows\ServiceProfiles
2017-12-29 15:37 - 2017-12-29 15:43 - 000000000 ____D C:\Windows\Panther
2017-12-29 15:37 - 2017-12-29 15:37 - 000008192 __RSH C:\BOOTSECT.BAK
2017-12-29 15:37 - 2017-11-26 12:19 - 000397754 __RSH C:\bootmgr
2017-12-29 15:37 - 2017-09-29 12:49 - 000000001 ___SH C:\BOOTNXT

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-12-30 16:48 - 2017-09-29 12:55 - 000000167 _____ C:\Windows\win.ini
2017-12-30 16:48 - 2017-09-29 12:55 - 000000000 ____D C:\Program Files\Common Files\system
2017-12-30 13:30 - 2017-09-30 13:07 - 000800540 _____ C:\Windows\system32\perfh005.dat
2017-12-30 13:30 - 2017-09-30 13:07 - 000168282 _____ C:\Windows\system32\perfc005.dat
2017-12-30 13:25 - 2017-09-29 06:31 - 000524288 _____ C:\Windows\system32\config\BBI
2017-12-30 13:24 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\DeliveryOptimization
2017-12-30 13:19 - 2017-09-29 12:55 - 000000000 ___HD C:\Program Files\WindowsApps
2017-12-30 13:19 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\AppReadiness
2017-12-30 13:16 - 2017-09-29 12:52 - 000000000 ____D C:\Windows\INF
2017-12-30 13:09 - 2017-09-30 13:08 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\zu-ZA
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\yo-NG
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\xh-ZA
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\wo-SN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\vi-VN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\uz-Latn-UZ
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ur-PK
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ug-CN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\tt-RU
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\tn-ZA
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\tk-TM
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ti-ET
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\tg-Cyrl-TJ
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\te-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ta-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sw-KE
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sr-Cyrl-RS
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sr-Cyrl-BA
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sq-AL
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\si-LK
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sd-Arab-PK
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\rw-RW
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\quz-PE
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\quc-Latn-GT
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\prs-AF
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\pa-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\pa-Arab-PK
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\or-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\nso-ZA
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\nn-NO
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ne-NP
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mt-MT
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mr-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mn-MN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ml-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mk-MK
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mi-NZ
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\lo-LA
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\lb-LU
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ky-KG
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ku-Arab-IQ
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\kok-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\kn-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\km-KH
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\kk-KZ
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ka-GE
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\is-IS
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ig-NG
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\id-ID
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\chr-CHER-US
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\hy-AM
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ha-Latn-NG
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\gu-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\gd-GB
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ga-IE
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\fil-PH
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\fa-IR
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\cy-GB
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ca-ES-valencia
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\bs-Latn-BA
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\bn-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\bn-BD
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\be-BY
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\az-Latn-AZ
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\as-IN
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\am-ET
2017-12-30 13:09 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\af-ZA
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ___SD C:\Windows\system32\F12
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\TextInput
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\WinMetadata
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\oobe
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\appraiser
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\ShellExperiences
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\Provisioning
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ____D C:\Program Files\Windows Defender
2017-12-30 13:09 - 2017-09-29 12:55 - 000000000 ____D C:\PerfLogs
2017-12-30 13:09 - 2017-09-29 06:31 - 000000000 ____D C:\Windows\system32\Dism
2017-12-30 13:08 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\Help
2017-12-30 12:38 - 2017-09-29 12:45 - 000000000 ____D C:\Windows\CbsTemp
2017-12-30 12:12 - 2017-09-29 12:55 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-12-30 09:36 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2017-12-30 09:35 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\appcompat
2017-12-29 16:35 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\System
2017-12-29 16:35 - 2017-09-29 12:49 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm.exe
2017-12-29 16:35 - 2017-09-29 12:49 - 000256192 _____ (Microsoft Corporation) C:\Windows\winhelp.exe
2017-12-29 16:35 - 2017-09-29 12:49 - 000221600 _____ (Microsoft Corporation) C:\Windows\system32\lanman.drv
2017-12-29 16:35 - 2017-09-29 12:49 - 000177856 _____ (Microsoft Corporation) C:\Windows\system32\typelib.dll
2017-12-29 16:35 - 2017-09-29 12:49 - 000169520 _____ (Microsoft Corporation) C:\Windows\system32\ole2disp.dll
2017-12-29 16:35 - 2017-09-29 12:49 - 000153008 _____ (Microsoft Corporation) C:\Windows\system32\ole2nls.dll
2017-12-29 16:35 - 2017-09-29 12:49 - 000127213 _____ C:\Windows\system32\ega.cpi
2017-12-29 16:35 - 2017-09-29 12:49 - 000069886 _____ C:\Windows\system32\edit.com
2017-12-29 16:35 - 2017-09-29 12:49 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\graftabl.com
2017-12-29 16:35 - 2017-09-29 12:49 - 000050648 _____ C:\Windows\system32\COMMAND.COM
2017-12-29 16:35 - 2017-09-29 12:49 - 000047840 _____ (Microsoft Corporation) C:\Windows\system32\USER.EXE
2017-12-29 16:35 - 2017-09-29 12:49 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\pmspl.dll
2017-12-29 16:35 - 2017-09-29 12:49 - 000042592 _____ (Microsoft Corporation) C:\Windows\system32\ole2.dll
2017-12-29 16:35 - 2017-09-29 12:49 - 000042537 _____ C:\Windows\system32\KEYBOARD.SYS
2017-12-29 16:35 - 2017-09-29 12:49 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\DDEML.DLL
2017-12-29 16:35 - 2017-09-29 12:49 - 000039274 _____ C:\Windows\system32\mem.exe
2017-12-29 16:35 - 2017-09-29 12:49 - 000033968 _____ C:\Windows\system32\NTIO.SYS
2017-12-29 16:35 - 2017-09-29 12:49 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\COMMDLG.DLL
2017-12-29 16:35 - 2017-09-29 12:49 - 000027866 _____ C:\Windows\system32\NTDOS.SYS
2017-12-29 16:35 - 2017-09-29 12:49 - 000027792 _____ (Microsoft Corporation) C:\Windows\system32\compobj.dll
2017-12-29 16:35 - 2017-09-29 12:49 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\GDI.EXE
2017-12-29 16:35 - 2017-09-29 12:49 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\OLESVR.DLL
2017-12-29 16:35 - 2017-09-29 12:49 - 000021232 _____ C:\Windows\system32\graphics.pro
2017-12-29 16:35 - 2017-09-29 12:49 - 000020634 _____ C:\Windows\system32\debug.exe
2017-12-29 16:35 - 2017-09-29 12:49 - 000019694 _____ C:\Windows\system32\GRAPHICS.COM
2017-12-29 16:35 - 2017-09-29 12:49 - 000018896 _____ (Microsoft Corporation) C:\Windows\system32\sysedit.exe
2017-12-29 16:35 - 2017-09-29 12:49 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdmd.dll
2017-12-29 16:35 - 2017-09-29 12:49 - 000014710 _____ C:\Windows\system32\KB16.COM
2017-12-29 16:35 - 2017-09-29 12:49 - 000013888 _____ (Microsoft Corporation) C:\Windows\system32\TOOLHELP.DLL
2017-12-29 16:35 - 2017-09-29 12:49 - 000010790 _____ C:\Windows\system32\EDIT.HLP
2017-12-29 16:35 - 2017-09-29 12:49 - 000009936 _____ (Microsoft Corporation) C:\Windows\system32\lzexpand.dll
2017-12-29 16:35 - 2017-09-29 12:49 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\WIFEMAN.DLL
2017-12-29 16:35 - 2017-09-29 12:49 - 000009008 _____ (Microsoft Corporation) C:\Windows\system32\ver.dll
2017-12-29 16:35 - 2017-09-29 12:49 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\win.com
2017-12-29 16:35 - 2017-09-29 12:49 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\SHELL.DLL
2017-12-29 16:35 - 2017-09-29 12:49 - 000004208 _____ (Microsoft Corporation) C:\Windows\system32\storage.dll
2017-12-29 16:34 - 2017-09-29 12:49 - 000108464 _____ (Microsoft Corporation) C:\Windows\system32\netapi.dll
2017-12-29 16:34 - 2017-09-29 12:49 - 000092320 _____ (Microsoft Corporation) C:\Windows\system32\krnl386.exe
2017-12-29 16:34 - 2017-09-29 12:49 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\olecli.dll
2017-12-29 16:34 - 2017-09-29 12:49 - 000082944 _____ (Microsoft Corporation) C:\Windows\system\olecli.dll
2017-12-29 16:34 - 2017-09-29 12:49 - 000068992 _____ (Microsoft Corporation) C:\Windows\system32\MMSYSTEM.DLL
2017-12-29 16:34 - 2017-09-29 12:49 - 000068992 _____ (Microsoft Corporation) C:\Windows\system\MMSYSTEM.DLL
2017-12-29 16:34 - 2017-09-29 12:49 - 000053600 _____ C:\Windows\system32\dosx.exe
2017-12-29 16:34 - 2017-09-29 12:49 - 000042809 _____ C:\Windows\system32\KEY01.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000035776 _____ C:\Windows\system32\NTIO411.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000035552 _____ C:\Windows\system32\NTIO412.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000034688 _____ C:\Windows\system32\NTIO804.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000034688 _____ C:\Windows\system32\NTIO404.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000032816 _____ (Microsoft Corporation) C:\Windows\system\COMMDLG.DLL
2017-12-29 16:34 - 2017-09-29 12:49 - 000029370 _____ C:\Windows\system32\NTDOS411.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000029274 _____ C:\Windows\system32\NTDOS412.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000029146 _____ C:\Windows\system32\NTDOS804.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000029146 _____ C:\Windows\system32\NTDOS404.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000028420 _____ C:\Windows\system32\bios1.rom
2017-12-29 16:34 - 2017-09-29 12:49 - 000028112 _____ (Microsoft Corporation) C:\Windows\system32\DRWATSON.EXE
2017-12-29 16:34 - 2017-09-29 12:49 - 000027200 _____ (Microsoft Corporation) C:\Windows\system32\ctl3dv2.dll
2017-12-29 16:34 - 2017-09-29 12:49 - 000027097 _____ C:\Windows\system32\country.sys
2017-12-29 16:34 - 2017-09-29 12:49 - 000024064 _____ (Microsoft Corporation) C:\Windows\system\OLESVR.DLL
2017-12-29 16:34 - 2017-09-29 12:49 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\vdmredir.dll
2017-12-29 16:34 - 2017-09-29 12:49 - 000018832 _____ C:\Windows\system32\v7vga.rom
2017-12-29 16:34 - 2017-09-29 12:49 - 000013312 _____ C:\Windows\system32\win87em.dll
2017-12-29 16:34 - 2017-09-29 12:49 - 000012704 _____ (Microsoft Corporation) C:\Windows\system32\WFWNET.DRV
2017-12-29 16:34 - 2017-09-29 12:49 - 000012704 _____ (Microsoft Corporation) C:\Windows\system\WFWNET.DRV
2017-12-29 16:34 - 2017-09-29 12:49 - 000012642 _____ C:\Windows\system32\edlin.exe
2017-12-29 16:34 - 2017-09-29 12:49 - 000012498 _____ C:\Windows\system32\append.exe
2017-12-29 16:34 - 2017-09-29 12:49 - 000011753 _____ C:\Windows\system32\setver.exe
2017-12-29 16:34 - 2017-09-29 12:49 - 000010544 _____ (Microsoft Corporation) C:\Windows\system32\COMM.drv
2017-12-29 16:34 - 2017-09-29 12:49 - 000009936 _____ (Microsoft Corporation) C:\Windows\system\lzexpand.dll
2017-12-29 16:34 - 2017-09-29 12:49 - 000009029 _____ C:\Windows\system32\ANSI.SYS
2017-12-29 16:34 - 2017-09-29 12:49 - 000009008 _____ (Microsoft Corporation) C:\Windows\system\ver.dll
2017-12-29 16:34 - 2017-09-29 12:49 - 000008424 _____ C:\Windows\system32\exe2bin.exe
2017-12-29 16:34 - 2017-09-29 12:49 - 000008191 _____ C:\Windows\system32\bios4.rom
2017-12-29 16:34 - 2017-09-29 12:49 - 000007052 _____ C:\Windows\system32\nlsfunc.exe
2017-12-29 16:34 - 2017-09-29 12:49 - 000005532 _____ (Microsoft Corporation) C:\Windows\system\stdole.tlb
2017-12-29 16:34 - 2017-09-29 12:49 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\WINNLS.DLL
2017-12-29 16:34 - 2017-09-29 12:49 - 000005120 _____ (Microsoft Corporation) C:\Windows\system\SHELL.DLL
2017-12-29 16:34 - 2017-09-29 12:49 - 000004768 _____ C:\Windows\system32\HIMEM.SYS
2017-12-29 15:48 - 2017-09-29 12:55 - 000000000 ____D C:\ProgramData\USOPrivate
2017-12-29 15:46 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\spool
2017-12-29 15:46 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\FxsTmp
2017-12-29 15:44 - 2017-09-29 12:55 - 000000000 ____D C:\Program Files\windows nt
2017-12-29 15:42 - 2017-09-29 06:31 - 000000000 ____D C:\Windows\system32\Sysprep
2017-12-29 15:40 - 2017-09-29 12:55 - 000000000 ___RD C:\Windows\PrintDialog
2017-12-29 15:40 - 2017-09-29 12:55 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2017-12-29 15:39 - 2017-09-29 06:31 - 000032768 _____ C:\Windows\system32\config\ELAM
2017-12-29 15:37 - 2017-09-29 12:55 - 000028672 _____ C:\Windows\system32\config\BCD-Template

Some files in TEMP:
====================
2017-12-29 17:45 - 2017-12-29 17:46 - 031208512 _____ (Disc Soft Ltd) C:\Users\Sokol-Holubice\AppData\Local\Temp\DTLite1070-0333.exe
2017-12-29 15:56 - 2016-11-14 10:46 - 000795368 _____ (NVIDIA Corporation) C:\Users\Sokol-Holubice\AppData\Local\Temp\npnv3dv.dll
2017-12-29 15:56 - 2016-11-14 10:45 - 001220424 _____ (NVIDIA Corporation) C:\Users\Sokol-Holubice\AppData\Local\Temp\nvSCPAPI.dll
2017-12-30 13:06 - 2016-11-14 10:45 - 000834104 _____ (NVIDIA Corporation) C:\Users\Sokol-Holubice\AppData\Local\Temp\nvStInst.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-12-29 15:38

==================== End of FRST.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [] => [X]
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
C:\Users\Sokol-Holubice\AppData\Local\Temp
HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched"

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Ronnie Basic]

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x86) Version: 26-12-2017
Ran by Sokol-Holubice (30-12-2017 17:10:14) Run:1
Running from C:\Users\Sokol-Holubice\Desktop
Loaded Profiles: Sokol-Holubice (Available Profiles: Sokol-Holubice)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
HKLM\...\Run: [] => [X]
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
C:\Users\Sokol-Holubice\AppData\Local\Temp
HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched"

EmptyTemp:
End
*****************

"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully.
C:\Users\Sokol-Holubice\AppData\Local\Temp => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\SunJavaUpdateSched" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 6578176 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 27620716 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 6357346 B
Edge => 3252762 B
Chrome => 186329268 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 4954 B
NetworkService => 1956 B
Sokol-Holubice => 2962915 B

RecycleBin => 43174372 B
EmptyTemp: => 263.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:10:36 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Ronnie Basic]

Je to vazne lepsi, se priznam. Budu dal monitorovat. V cem byl podle vas root cause, update utilitka Javy?

Na kazdy pad dekuji za pomoc!! Klikam vpravo dole tlacitko Donate, budte zdrav pristi rok.

[Rudy]

SunJavaUpdateSched je plánovač updatů. Je to zbytečnost, i bez ní se Java updatuje (pouze bez naplánování času). Za příspěvek děkujeme a vy nemáte zač!