Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu ntb

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
feroo40
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 22 lis 2013 19:52

Prosím o kontrolu ntb

#1 Příspěvek od feroo40 »

Logfile of random's system information tool 1.10 (written by random/random)
Run by David at 2017-07-20 19:39:29
Microsoft Windows 10 Home
System drive C: has 365 GB (79%) free of 460 GB
Total RAM: 3978 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:39:39 PM, on 7/20/2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\VPNetwork LLC\TorGuard\TorGuardDesktopQt.exe
C:\Users\David\AppData\Roaming\uTorrent\updates\3.5.0_43916.exe
C:\Users\David\AppData\Roaming\uTorrent\updates\updates\3.5.0_43916\utorrentie.exe
C:\Users\David\AppData\Roaming\uTorrent\updates\updates\3.5.0_43916\utorrentie.exe
C:\Program Files\trend micro\David.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
O4 - HKCU\..\Run: [OneDrive] "C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{e46fb643-b2e1-4dac-967d-615b90f6bb6c}: NameServer = 10.9.0.1,10.8.0.1
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10234 bytes

======Listing Processes======







winlogon.exe


C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\WINDOWS\System32\spoolsv.exe
dashost.exe {a8213896-6a43-40fb-9a6cc411e80dfcd0}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel


"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe"
igfxHK.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
igfxTray.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\system32\igfxEM.exe" -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
AvastUI.exe /nogui
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"fontdrvhost.exe"
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="4580.0.29856666\1371470811" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 4580 "\\.\pipe\gecko-crash-server-pipe.4580" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="4580.2.1122731592\242864832" -childID 1 -isForBrowser -intPrefs 5:50|6:-1|28:1000|33:20|34:10|43:128|44:10000|48:0|50:400|51:1|52:0|53:0|58:0|59:120|60:120|133:2|134:1|147:5000|157:0|159:0|170:10000|182:-1|187:128|188:10000|189:0|195:24|196:32768|198:0|199:0|207:5|211:1048576|212:100|213:5000|215:600|217:1|226:1|231:0|241:60000| -boolPrefs 1:0|2:0|4:0|26:1|27:1|30:0|35:1|36:0|37:0|38:0|39:1|40:0|41:1|42:1|45:0|46:0|47:0|49:0|54:1|55:1|56:0|57:1|61:1|62:1|63:0|64:1|65:1|66:0|67:1|70:0|71:0|74:1|75:1|79:1|80:1|81:0|82:0|84:0|85:0|86:1|87:0|90:0|91:1|92:1|93:1|94:1|95:1|96:0|97:0|98:1|99:0|100:0|101:0|102:1|103:1|104:0|105:1|106:1|107:0|108:0|109:1|110:1|111:1|112:0|113:1|114:1|115:1|116:1|117:1|118:1|119:1|120:1|122:0|123:0|124:0|125:1|126:0|127:1|131:1|132:1|135:1|136:0|141:0|146:0|149:1|152:1|154:1|158:0|161:1|164:1|165:1|171:0|172:0|173:1|175:0|181:0|183:1|184:0|185:0|186:0|193:0|194:0|197:1|200:0|202:0|204:1|205:0|210:0|214:1|219:0|220:0|221:0|222:1|224:1|225:1|228:0|233:0|234:0|235:1|236:1|237:0|238:1|239:1|240:0|242:0|243:0|245:0|253:1|254:1|255:0|256:0|257:0| -stringPrefs "3:7;release|174:3;1.0|191:332;  ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵           ​‎‏‐’․‧

‪‫‬‭‮ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|192:8;moderate|227:38;{1ff0100b-9d70-478d-903d-7e60a4c512a6}|" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 4580 "\\.\pipe\gecko-crash-server-pipe.4580" tab
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
taskhostw.exe
"C:\Program Files (x86)\VPNetwork LLC\TorGuard\TorGuardDesktopQt.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Users\David\AppData\Roaming\uTorrent\updates\3.5.0_43916.exe" /LAUNCHED
"C:\Users\David\AppData\Roaming\uTorrent\updates\updates\3.5.0_43916\utorrentie.exe" uTorrent_8288_03728D08_496396828 µTorrent4823DF041B09 uTorrent
"C:\Users\David\AppData\Roaming\uTorrent\updates\updates\3.5.0_43916\utorrentie.exe" uTorrent_8288_03728AA8_475295517 µTorrent4823DF041B09 uTorrent
wimserv.exe 9709d18c-04b8-45e2-a224-52b962703aca
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1439_none_7efe016621f50bd0\TiWorker.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x34c
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\Windows\System32\smartscreen.exe -Embedding

"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 624 628 636 8192 632
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\David\Desktop\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\b6h1fq88.default

prefs.js - "browser.startup.homepage" - "http://www.google.cz/"

"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 26.0.0.137 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 26.0.0.137 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-04-11 229064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-03-14 2351920]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2017-04-11 163528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-03-14 1744176]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-07-10 213832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-02-01 1517280]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2017-03-21 23819304]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-07-20 19:39:29 ----D---- C:\rsit
2017-07-20 19:39:29 ----D---- C:\Program Files\trend micro
2017-07-13 14:16:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-07-13 14:16:11 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-07-13 14:16:11 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-07-13 14:16:11 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-07-13 14:16:10 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-07-13 14:16:09 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-07-13 14:16:09 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-07-13 14:16:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2017-07-13 14:16:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-07-13 14:16:09 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-07-13 14:16:08 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-07-13 14:16:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-07-13 14:16:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-07-13 14:16:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2017-07-13 14:16:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-07-13 14:16:07 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-07-13 14:16:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-07-13 14:16:06 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-07-13 14:16:05 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-07-13 14:16:05 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-07-13 14:16:04 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-07-13 14:16:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-07-13 14:16:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-07-13 14:16:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-07-13 14:16:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-07-13 14:16:04 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-07-13 14:16:04 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-07-13 14:16:04 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-07-13 14:16:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-07-13 14:16:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2017-07-13 14:16:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-07-13 14:16:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-07-13 14:16:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-07-13 14:16:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-07-13 14:16:03 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-07-13 14:16:03 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-07-13 14:16:02 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-07-13 14:16:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2017-07-13 14:16:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-07-13 14:16:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-07-13 14:16:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2017-07-13 14:16:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-07-13 14:16:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-07-13 14:16:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-07-13 14:16:02 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-07-13 14:16:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2017-07-13 14:16:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-07-13 14:16:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-07-13 14:16:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-07-13 14:16:01 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-07-13 14:16:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-07-13 14:16:00 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-07-13 14:16:00 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-07-13 14:15:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-07-13 14:15:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-07-13 14:15:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-07-13 14:15:59 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-07-13 14:15:58 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-07-13 14:15:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-07-13 14:15:58 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-07-13 14:15:58 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-07-13 14:15:58 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-07-13 14:15:58 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-07-13 14:15:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-07-13 14:15:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-07-13 14:15:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-07-13 14:15:57 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-07-13 14:15:57 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-07-13 14:15:55 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-07-13 14:15:54 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-07-13 14:15:54 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-07-13 14:15:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-07-13 14:15:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-07-13 14:15:52 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-07-13 14:15:52 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-07-13 14:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2017-07-13 14:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-07-13 14:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-07-13 14:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-07-13 14:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-07-13 14:15:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-07-13 14:15:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-07-13 14:15:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-07-13 14:15:50 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-07-13 14:15:50 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-07-13 14:15:50 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-07-13 14:15:50 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-07-13 14:15:49 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-07-13 14:15:49 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-07-13 14:15:49 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-07-13 14:15:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-07-13 14:15:48 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-07-13 14:15:47 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-07-13 14:15:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-07-13 14:15:47 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-07-13 14:15:46 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-07-13 14:15:46 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-07-13 14:15:46 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2017-07-13 14:15:46 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-07-13 14:15:45 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-07-13 14:15:45 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-07-13 14:15:45 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-07-13 14:15:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-07-13 14:15:44 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-07-13 14:15:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-07-13 14:15:42 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-07-13 14:15:42 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2017-07-13 14:15:42 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-07-13 14:15:42 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2017-07-13 14:15:41 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-07-13 14:15:41 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-07-13 14:15:41 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-07-13 14:15:40 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-07-13 14:15:40 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-07-13 14:15:39 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-07-13 14:15:39 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-07-13 14:15:38 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2017-07-13 14:15:38 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-07-13 14:15:37 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-07-13 14:15:37 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-07-13 14:15:35 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-07-13 14:15:32 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-07-13 14:15:32 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-07-13 14:15:31 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-07-13 14:15:31 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-07-13 14:15:30 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-07-13 14:15:29 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-07-13 14:15:29 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-07-13 14:15:28 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-07-13 14:15:28 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2017-07-13 14:15:28 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2017-07-13 14:15:28 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-07-13 14:15:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-07-13 14:15:27 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-07-13 14:15:26 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-07-13 14:15:26 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-07-13 14:15:25 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2017-07-13 14:15:25 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-07-13 14:15:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-07-13 14:15:24 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-07-13 14:15:23 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-07-13 14:15:22 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-07-13 14:15:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-07-13 14:15:22 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-07-13 14:15:21 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2017-07-13 14:15:21 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2017-07-13 14:15:21 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2017-07-13 14:15:20 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2017-07-13 14:15:20 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-07-13 14:15:19 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2017-07-13 14:15:19 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-07-13 14:15:19 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-07-13 14:15:18 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-07-13 14:15:18 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2017-07-13 14:15:18 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-07-13 14:15:18 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2017-07-13 14:15:18 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2017-07-13 14:15:17 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2017-07-13 14:15:17 ----A---- C:\WINDOWS\SYSWOW64\uudf.dll
2017-07-13 14:15:17 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-07-13 14:15:17 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll
2017-07-13 14:15:17 ----A---- C:\WINDOWS\SYSWOW64\ifsutil.dll
2017-07-13 14:15:17 ----A---- C:\WINDOWS\system32\drivers\bthpan.sys
2017-07-13 14:15:16 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2017-07-13 14:15:16 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-07-13 14:15:16 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2017-07-13 14:15:16 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2017-07-13 14:15:16 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2017-07-13 14:15:16 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2017-07-13 14:15:15 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-07-13 14:15:15 ----A---- C:\WINDOWS\SYSWOW64\ntmarta.dll
2017-07-13 14:15:15 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2017-07-13 14:15:15 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-07-13 14:15:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-07-13 14:15:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-07-13 14:15:14 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-07-13 14:15:14 ----A---- C:\WINDOWS\SYSWOW64\ufat.dll
2017-07-13 14:15:14 ----A---- C:\WINDOWS\SYSWOW64\uexfat.dll
2017-07-13 14:15:14 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2017-07-13 14:15:14 ----A---- C:\WINDOWS\SYSWOW64\azroleui.dll
2017-07-13 14:15:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2017-07-13 14:15:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2017-07-13 14:15:13 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2017-07-13 14:15:13 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2017-07-13 14:15:13 ----A---- C:\WINDOWS\SYSWOW64\cnvfat.dll
2017-07-13 14:15:13 ----A---- C:\WINDOWS\system32\drivers\scmdisk0101.sys
2017-07-13 14:15:12 ----A---- C:\WINDOWS\SYSWOW64\XpsDocumentTargetPrint.dll
2017-07-13 14:15:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-07-13 14:15:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2017-07-13 14:15:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2017-07-13 14:15:12 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-07-13 14:15:12 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2017-07-13 14:15:12 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2017-07-13 14:15:11 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2017-07-13 14:15:11 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2017-07-13 14:15:11 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2017-07-13 14:15:10 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2017-07-13 14:15:10 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2017-07-13 14:15:10 ----A---- C:\WINDOWS\SYSWOW64\uReFSv1.dll
2017-07-13 14:15:10 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2017-07-13 14:15:09 ----A---- C:\WINDOWS\SYSWOW64\regsvr32.exe
2017-07-13 14:15:09 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-07-13 14:15:09 ----A---- C:\WINDOWS\SYSWOW64\raschap.dll
2017-07-13 14:15:09 ----A---- C:\WINDOWS\SYSWOW64\onex.dll
2017-07-13 14:15:09 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2017-07-13 14:15:09 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2017-07-13 14:15:09 ----A---- C:\WINDOWS\SYSWOW64\eapprovp.dll
2017-07-13 14:15:08 ----A---- C:\WINDOWS\SYSWOW64\fdProxy.dll
2017-07-13 14:14:59 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-07-13 14:14:59 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-07-13 14:14:59 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2017-07-13 14:14:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-07-13 14:14:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-07-13 14:14:59 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-07-13 14:14:58 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-07-13 14:14:58 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-07-13 14:14:58 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-07-13 14:14:58 ----A---- C:\WINDOWS\system32\tquery.dll
2017-07-13 14:14:57 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-07-13 14:14:57 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-07-13 14:14:55 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-07-13 14:14:55 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-07-13 14:14:55 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-07-13 14:14:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-07-13 14:14:55 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-07-13 14:14:55 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-07-13 14:14:55 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-07-13 14:14:54 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-07-13 14:14:54 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-07-13 14:14:53 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-07-13 14:14:53 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-07-13 14:14:53 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-07-13 14:14:52 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2017-07-13 14:14:52 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-07-13 14:14:52 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2017-07-13 14:14:52 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2017-07-13 14:14:52 ----A---- C:\WINDOWS\system32\tdlrecover.exe
2017-07-13 14:14:52 ----A---- C:\WINDOWS\system32\drivers\rootmdm.sys
2017-07-13 14:14:51 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-07-13 14:14:51 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-07-13 14:14:51 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-07-13 14:14:50 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-07-13 14:14:49 ----A---- C:\WINDOWS\system32\wksprt.exe
2017-07-13 14:14:49 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-07-13 14:14:49 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-07-13 14:14:49 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-13 14:14:48 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-07-13 14:14:48 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-07-13 14:14:47 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-07-13 14:14:47 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-07-13 14:14:46 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-07-13 14:14:46 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-07-13 14:14:45 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-07-13 14:14:45 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-07-13 14:14:44 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-07-13 14:14:44 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-07-13 14:14:44 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-07-13 14:14:43 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-07-13 14:14:43 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-07-13 14:14:43 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-07-13 14:14:43 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-07-13 14:14:42 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-07-13 14:14:41 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-07-13 14:14:41 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-07-13 14:14:40 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-07-13 14:14:39 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-07-13 14:14:39 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-07-13 14:14:38 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-07-13 14:14:38 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-07-13 14:14:37 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-07-13 14:14:37 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-07-13 14:14:37 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-07-13 14:14:36 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-07-13 14:14:36 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-07-13 14:14:36 ----A---- C:\WINDOWS\system32\mos.dll
2017-07-13 14:14:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-07-13 14:14:35 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-07-13 14:14:34 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-07-13 14:14:33 ----A---- C:\WINDOWS\system32\shell32.dll
2017-07-13 14:14:30 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-07-13 14:14:30 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-07-13 14:14:30 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-07-13 14:14:29 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-07-13 14:14:29 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-07-13 14:14:29 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-07-13 14:14:29 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-07-13 14:14:29 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-07-13 14:14:29 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-07-13 14:14:28 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-07-13 14:14:28 ----A---- C:\WINDOWS\system32\mfps.dll
2017-07-13 14:14:28 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-07-13 14:14:28 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-07-13 14:14:27 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-07-13 14:14:27 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-07-13 14:14:23 ----A---- C:\WINDOWS\system32\wdc.dll
2017-07-13 14:14:23 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-07-13 14:14:23 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-07-13 14:14:23 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-07-13 14:14:22 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-07-13 14:14:21 ----A---- C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-07-13 14:14:20 ----A---- C:\WINDOWS\system32\wvc.dll
2017-07-13 14:14:17 ----A---- C:\WINDOWS\system32\lsass.exe
2017-07-13 14:14:15 ----A---- C:\WINDOWS\system32\tlscsp.dll
2017-07-13 14:14:09 ----A---- C:\WINDOWS\system32\rastls.dll
2017-07-13 14:14:09 ----A---- C:\WINDOWS\system32\ProvisioningHandlers.dll
2017-07-13 14:14:09 ----A---- C:\WINDOWS\system32\onex.dll
2017-07-13 14:14:08 ----A---- C:\WINDOWS\system32\raschap.dll
2017-07-13 14:14:08 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2017-07-13 14:14:08 ----A---- C:\WINDOWS\system32\eapprovp.dll
2017-07-13 14:14:08 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-07-13 14:14:06 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-07-13 14:14:06 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-07-13 14:14:05 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-07-13 14:14:05 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-07-13 14:14:01 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-07-13 14:14:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-07-13 14:14:01 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-07-13 14:14:01 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-07-13 14:14:00 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-07-13 14:14:00 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-07-13 14:14:00 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-07-13 14:14:00 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-07-13 14:14:00 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-07-13 14:13:59 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-07-13 14:13:58 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-07-13 14:13:57 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-07-13 14:13:56 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-07-13 14:13:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-07-13 14:13:56 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-07-13 14:13:56 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-07-13 14:13:56 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-07-13 14:13:56 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-07-13 14:13:56 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-07-13 14:13:55 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-07-13 14:13:55 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-07-13 14:13:55 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-07-13 14:13:55 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-07-13 14:13:55 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-07-13 14:13:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-07-13 14:13:54 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-07-13 14:13:52 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-07-13 14:13:51 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-07-13 14:13:51 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-07-13 14:13:50 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-07-13 14:13:50 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-07-13 14:13:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-07-13 14:13:50 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-07-13 14:13:50 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-07-13 14:13:49 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-07-13 14:13:49 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-07-13 14:13:49 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-07-13 14:13:49 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-07-13 14:13:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-07-13 14:13:47 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-07-13 14:13:46 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-07-13 14:13:46 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2017-07-13 14:13:46 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-07-13 14:13:46 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-07-13 14:13:45 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-07-13 14:13:45 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-07-13 14:13:44 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-07-13 14:13:44 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-07-13 14:13:43 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-07-13 14:13:43 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-07-13 14:13:42 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-07-13 14:13:42 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-07-13 14:13:42 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-07-13 14:13:42 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-07-13 14:13:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-07-13 14:13:40 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-07-13 14:13:39 ----A---- C:\WINDOWS\system32\wininet.dll
2017-07-13 14:13:39 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-07-13 14:13:38 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-07-13 14:13:38 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-07-13 14:13:38 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-07-13 14:13:37 ----A---- C:\WINDOWS\system32\ole32.dll
2017-07-13 14:13:37 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-07-13 14:13:36 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-07-13 14:13:36 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-07-13 14:13:36 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-07-13 14:13:35 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-13 14:13:35 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-13 14:13:34 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-07-13 14:13:34 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-07-13 14:13:34 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-07-13 14:13:33 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-13 14:13:32 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-07-13 14:13:32 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-07-13 14:13:32 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-07-13 14:13:31 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-07-13 14:13:31 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-07-13 14:13:31 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-07-13 14:13:31 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-07-13 14:13:30 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-07-13 14:13:30 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-07-13 14:13:25 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-07-13 14:13:24 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-07-13 14:13:24 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-13 14:13:24 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-07-13 14:13:21 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-07-13 14:13:20 ----A---- C:\WINDOWS\system32\msinfo32.exe
2017-07-13 14:13:20 ----A---- C:\WINDOWS\system32\dcomp.dll
2017-07-13 14:13:19 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-07-13 14:13:19 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2017-07-13 14:13:19 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-07-13 14:13:18 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-07-13 14:13:18 ----A---- C:\WINDOWS\system32\hal.dll
2017-07-13 14:13:18 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-07-13 14:13:17 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-07-13 14:13:17 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2017-07-13 14:13:17 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-07-13 14:13:16 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2017-07-13 14:13:15 ----A---- C:\WINDOWS\system32\snmptrap.exe
2017-07-13 14:13:14 ----A---- C:\WINDOWS\system32\wlidprov.dll
2017-07-13 14:13:14 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2017-07-13 14:13:14 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-07-13 14:13:14 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-07-13 14:13:14 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2017-07-13 14:13:14 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-07-13 14:13:10 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-07-13 14:13:10 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-07-13 14:13:10 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-07-13 14:13:10 ----A---- C:\WINDOWS\system32\mispace.dll
2017-07-13 14:13:09 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-07-13 14:13:09 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-07-13 14:13:09 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-07-13 14:13:09 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-07-13 14:13:08 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-07-13 14:13:06 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-07-13 14:13:05 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-07-13 14:13:05 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-07-13 14:13:05 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-07-13 14:13:05 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-07-13 14:13:05 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-07-13 14:13:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-07-13 14:13:05 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-07-13 14:13:05 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-07-13 14:13:05 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-07-13 14:13:04 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-07-13 14:13:04 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-07-13 14:13:04 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-07-13 14:13:04 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-07-13 14:13:03 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2017-07-13 14:13:03 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-07-13 14:13:03 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-07-13 14:13:02 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-07-13 14:13:02 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-07-13 14:13:02 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-07-13 14:13:01 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-07-13 14:13:01 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-07-13 14:13:01 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-07-13 14:13:01 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-07-13 14:13:00 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-07-13 14:13:00 ----A---- C:\WINDOWS\system32\qmgr.dll
2017-07-13 14:13:00 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-07-13 14:13:00 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-07-13 14:12:59 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-07-13 14:12:59 ----A---- C:\WINDOWS\explorer.exe
2017-07-13 14:12:58 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-07-13 14:12:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-07-13 14:12:57 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-07-13 14:12:57 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-07-13 14:12:57 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-07-13 14:12:56 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-07-13 14:12:56 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-07-13 14:12:55 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-07-13 14:12:55 ----A---- C:\WINDOWS\system32\combase.dll
2017-07-13 14:12:54 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-13 14:12:54 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-07-13 14:12:53 ----A---- C:\WINDOWS\system32\twinui.dll
2017-07-13 14:12:53 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-07-13 14:12:48 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-07-13 14:12:47 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-07-13 14:12:46 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-07-13 14:12:46 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-07-13 14:12:45 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-07-13 14:12:45 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-13 14:12:45 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-07-13 14:12:44 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-07-13 14:12:43 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2017-07-13 14:12:43 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-07-13 14:12:42 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-07-13 14:12:41 ----A---- C:\WINDOWS\system32\Wldap32.dll
2017-07-13 14:12:40 ----A---- C:\WINDOWS\system32\untfs.dll
2017-07-13 14:12:40 ----A---- C:\WINDOWS\system32\autofmt.exe
2017-07-13 14:12:40 ----A---- C:\WINDOWS\system32\autoconv.exe
2017-07-13 14:12:40 ----A---- C:\WINDOWS\system32\autochk.exe
2017-07-13 14:12:39 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-07-13 14:12:39 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-07-13 14:12:39 ----A---- C:\WINDOWS\system32\certutil.exe
2017-07-13 14:12:38 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2017-07-13 14:12:38 ----A---- C:\WINDOWS\system32\ifsutil.dll
2017-07-13 14:12:37 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2017-07-13 14:12:37 ----A---- C:\WINDOWS\system32\uudf.dll
2017-07-13 14:12:37 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2017-07-13 14:12:37 ----A---- C:\WINDOWS\system32\certprop.dll
2017-07-13 14:12:37 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-07-13 14:12:36 ----A---- C:\WINDOWS\system32\ufat.dll
2017-07-13 14:12:36 ----A---- C:\WINDOWS\system32\uexfat.dll
2017-07-13 14:12:36 ----A---- C:\WINDOWS\system32\sendmail.dll
2017-07-13 14:12:35 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2017-07-13 14:12:35 ----A---- C:\WINDOWS\system32\KdsCli.dll
2017-07-13 14:12:35 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2017-07-13 14:12:35 ----A---- C:\WINDOWS\system32\cnvfat.dll
2017-07-13 14:12:34 ----A---- C:\WINDOWS\system32\uReFSv1.dll
2017-07-13 14:12:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2017-07-13 14:12:34 ----A---- C:\WINDOWS\system32\fdProxy.dll
2017-07-13 14:12:34 ----A---- C:\WINDOWS\system32\easwrt.dll
2017-07-13 14:12:34 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-07-13 14:12:33 ----A---- C:\WINDOWS\system32\XamlTileRender.dll
2017-07-13 14:12:33 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2017-07-10 21:46:11 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-06-25 16:17:23 ----DC---- C:\WINDOWS\system32\DRVSTORE
2017-06-25 16:17:23 ----D---- C:\Program Files\DIFX
2017-06-25 16:17:23 ----A---- C:\WINDOWS\system32\drivers\YSDrv.sys
2017-06-21 11:58:03 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2017-06-21 11:58:00 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2017-06-21 11:57:41 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2017-06-21 11:57:41 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-06-21 11:57:41 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-06-21 11:57:34 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2017-06-21 11:57:23 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2017-06-21 11:57:23 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll

======List of files/folders modified in the last 1 month======

2017-07-20 19:39:41 ----D---- C:\Users\David\AppData\Roaming\uTorrent
2017-07-20 19:39:36 ----D---- C:\WINDOWS\Prefetch
2017-07-20 19:39:29 ----RD---- C:\Program Files
2017-07-20 19:39:24 ----D---- C:\WINDOWS\Temp
2017-07-20 19:35:25 ----DC---- C:\WINDOWS\Panther
2017-07-20 19:31:39 ----D---- C:\WINDOWS\system32\SleepStudy
2017-07-20 19:27:31 ----RD---- C:\WINDOWS\Microsoft.NET
2017-07-20 19:25:06 ----D---- C:\WINDOWS\system32\config
2017-07-20 19:22:01 ----D---- C:\WINDOWS\system32\sru
2017-07-20 19:10:39 ----HD---- C:\$WINDOWS.~BT
2017-07-20 17:30:15 ----D---- C:\škola
2017-07-20 17:22:52 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-07-20 17:21:20 ----D---- C:\WINDOWS\AppReadiness
2017-07-20 12:10:57 ----HD---- C:\ProgramData
2017-07-20 11:52:27 ----D---- C:\WINDOWS\Logs
2017-07-20 11:51:25 ----D---- C:\WINDOWS\system32\drivers
2017-07-20 11:50:36 ----D---- C:\WINDOWS\System32
2017-07-20 11:50:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-20 11:47:50 ----D---- C:\WINDOWS\WinSxS
2017-07-20 11:45:38 ----D---- C:\WINDOWS\INF
2017-07-20 11:44:23 ----D---- C:\WINDOWS\system32\DriverStore
2017-07-20 11:43:58 ----D---- C:\WINDOWS\system32\Tasks
2017-07-20 11:42:48 ----D---- C:\Windows
2017-07-20 11:42:04 ----D---- C:\WINDOWS\system32\catroot2
2017-07-20 11:40:19 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-07-20 11:40:19 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-07-20 11:40:19 ----D---- C:\WINDOWS\SysWOW64
2017-07-20 11:40:09 ----D---- C:\WINDOWS\system32\wbem
2017-07-20 11:40:09 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-07-20 11:40:08 ----D---- C:\WINDOWS\system32\oobe
2017-07-20 11:40:08 ----D---- C:\WINDOWS\system32\en-US
2017-07-20 11:40:07 ----D---- C:\WINDOWS\system32\cs-CZ
2017-07-20 11:40:07 ----D---- C:\WINDOWS\system32\appraiser
2017-07-20 11:40:00 ----D---- C:\WINDOWS\ShellExperiences
2017-07-20 11:39:59 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-07-20 11:39:59 ----D---- C:\Program Files\Windows Photo Viewer
2017-07-20 11:39:59 ----D---- C:\Program Files\Windows Mail
2017-07-20 11:39:59 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-07-20 10:55:53 ----HD---- C:\Program Files\WindowsApps
2017-07-13 14:49:42 ----D---- C:\WINDOWS\CbsTemp
2017-07-13 14:29:37 ----D---- C:\WINDOWS\system32\MRT
2017-07-13 14:23:41 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-07-13 14:23:08 ----SHD---- C:\System Volume Information
2017-07-13 13:27:19 ----AD---- C:\KMPlayer
2017-07-11 21:43:49 ----D---- C:\WINDOWS\system32\Macromed
2017-07-11 21:43:47 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-07-11 21:05:47 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2017-07-08 13:36:29 ----D---- C:\WINDOWS\rescache
2017-07-08 10:39:12 ----SHD---- C:\WINDOWS\Installer
2017-07-08 10:39:07 ----D---- C:\WINDOWS\system32\UNP
2017-07-08 10:39:06 ----AD---- C:\Program Files\UNP
2017-07-02 19:59:08 ----RD---- C:\WINDOWS\assembly
2017-07-02 19:58:56 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-07-02 19:55:32 ----AD---- C:\Program Files\Microsoft Office 15
2017-06-30 16:58:22 ----D---- C:\ProgramData\Skype
2017-06-30 16:58:18 ----D---- C:\Program Files (x86)\Common Files
2017-06-30 15:46:35 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-06-21 10:40:41 ----D---- C:\WINDOWS\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-07-10 198944]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-07-10 343264]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-07-10 57704]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-07-10 84392]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-07-10 361336]
R0 BTATH_BUS;@oem17.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2014-04-29 35016]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-06-21 88416]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-07-10 319984]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-07-10 41800]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-07-10 110352]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-07-10 1015848]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-07-10 585608]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-07-20 146696]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-07-10 198768]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw8x.sys [2016-07-16 4233728]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-07-13 610336]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-10-05 84992]
R3 GPIO;@oem5.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpioe.sys [2014-06-09 31232]
R3 iaioi2c;@oem8.inf,%Driver_Service.Desc%;I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2ce.sys [2014-06-09 69632]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-10-18 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem21.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 LMDriver;@oem20.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2013-07-18 21360]
R3 RadioShim;@oem20.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2013-07-18 14680]
R3 RTL8168;@oem12.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2014-05-29 873176]
R3 RTSUER;@oem18.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
R3 tap0901;@oem3.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2016-04-21 27136]
R3 TXEIx64;@oem4.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\WINDOWS\System32\drivers\TXEIx64.sys [2014-01-15 88592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHdsKe;aswHdsKe; \??\C:\WINDOWS\system32\drivers\aswHdsKe.sys [2017-03-21 85552]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-07-10 46984]
S3 aswTap;@oem3.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\WINDOWS\System32\drivers\aswTap.sys [2016-12-20 44640]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2016-10-05 168448]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-10-05 114176]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2017-04-28 249856]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-07-07 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2017-04-28 967680]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 dg_ssudbus;@oem10.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-08 122160]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-10-05 73568]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2017-06-21 124928]
S3 ssudmdm;@oem14.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-04-24 221824]
S3 tap-tb-0901;@oem0.inf,%DeviceDescription%;TunnelBear Adapter V9; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [2016-10-17 38656]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2016-07-16 45568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-04-25 83056]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-07-10 263312]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2014-06-27 3053312]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_24a53e;CDPUserSvc_24a53e; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2017-03-14 3042544]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-12-09 349728]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-10-18 328624]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-06-10 466664]
R2 OneSyncSvc_24a53e;Hostitel synchronizace_24a53e; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-07-10 7430992]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_24a53e;Data kontaktů_24a53e; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-11 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-06-01 317400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-11 272384]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-10-18 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2015-12-09 209952]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-11 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_24a53e;Služba zasílání zpráv_24a53e; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 150600]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-04 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

Uživatelský avatar
Roli
VIP
VIP
Příspěvky: 13399
Registrován: 26 lis 2006 13:37
Bydliště: ČR

Re: Prosím o kontrolu ntb

#2 Příspěvek od Roli »

Zdravím,

stiskni klávesy Windows + R do okna Spustit >> napiš - services.msc >> Enter. Najdi službu :

GamesAppIntegrationService - WildTangent
GamesAppService - WildTangent
Služba Google Update (gupdate)
Služba Google Update (gupdatem)


dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:

feroo40
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 22 lis 2013 19:52

Re: Prosím o kontrolu ntb

#3 Příspěvek od feroo40 »

# AdwCleaner 7.0.0.0 - Logfile created on Sun Jul 23 19:46:43 2017
# Updated on 2017/17/07 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

Deleted: C:\ProgramData\Pokki
Deleted: C:\Users\All Users\Pokki
Deleted: C:\Users\David\AppData\Local\Pokki
Deleted: C:\Users\Default\AppData\Local\Pokki
Deleted: C:\Users\Default User\AppData\Local\Pokki
Deleted: C:\Users\Public\Pokki
Deleted: C:\Program Files\Booking.com


***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted: Pokki


***** [ Registry ] *****

Deleted: [Key] - HKU\S-1-5-21-3450662634-344478255-2683967808-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
Deleted: [Key] - HKLM\SOFTWARE\Conduit
Deleted: [Key] - HKU\S-1-5-21-3450662634-344478255-2683967808-1001\Software\Conduit
Deleted: [Key] - HKCU\Software\Conduit


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [1987 B] - [2017/7/23 19:14:15]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

Uživatelský avatar
Roli
VIP
VIP
Příspěvky: 13399
Registrován: 26 lis 2006 13:37
Bydliště: ČR

Re: Prosím o kontrolu ntb

#4 Příspěvek od Roli »

Bezva,

uklizeno, promazáno a jak se PC chová ?
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:

feroo40
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 22 lis 2013 19:52

Re: Prosím o kontrolu ntb

#5 Příspěvek od feroo40 »

vypadá to v pohodě..díky :)

Uživatelský avatar
Roli
VIP
VIP
Příspěvky: 13399
Registrován: 26 lis 2006 13:37
Bydliště: ČR

Re: Prosím o kontrolu ntb

#6 Příspěvek od Roli »

Není zač a :closed:
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:

Zamčeno