SYSPROC zatížení procesoru na 99%

[AlexMr]

Dobrý den moc bych poprosil o radu...
Po spuštění pc se mi během pár okamžiků začne procesor zatěžovat na 99%
Dále tam mám pak spousty procesů: Hostitel služby: Host XXXX (X=různé). Níže výpis z Logu:

Logfile of random's system information tool 1.16 (written by random/random)
Run by Ajko at 2017-05-23 10:18:48
Microsoft Windows 10 Home
System drive C: has 127 GB (25%) free of 499 GB
Total RAM: 3959 MB (38% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:19:06, on 23.5.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Users\Ajko\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Ajko\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Users\Ajko\AppData\Local\Akamai\netsession_win.exe
C:\Users\Ajko\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Ajko\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Users\Ajko\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera_crashreporter.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Users\Public\Public\taskmgr.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
C:\Program Files\trend micro\Ajko_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... XXS1D7YWB4
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABlD4iy1KpNwJybB8vssiQMdOXDtB4yV4EtaBJMJxCfsC6TZnVJ55O_eL0Gs_mDNS6eYRnzXs6LzGAU9EecIHwvxoelvKTUctF1roHt5IJ0Ld8dg31iftfBi35f1BrprOp0vyVpWZgfqcG6eveNkJ0sfPNWKoiUM,&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABlD4iy1KpNwJybB8vssiQMdOXDtB4yV4EtaBJMJxCfsC6TZnVJ55O_eL0Gs_mDNS6eYRnzXs6LzGAU9EecIHwvxoelvKTUctF1roHt5IJ0Ld8dg31iftfBi35f1BrprOp0vyVpWZgfqcG6eveNkJ0sfPNWKoiUM,&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaVXAdGTZAYinpjQ7mEOZuRwbxZn7pNQWAE-o5rVOUrHGfX1kog74jhX2q4cB4ydPWFV4vQyAsmIP-aMDIJYdbVQPAWHzcPPk_jSI03hq0urVnfu38MCRAv_gqh3KMl2v1yBFh7Y3dPmsUNIFuRGS19DWrJGfxFo_33aKSu1gQX8,&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE13DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaVXAdGTZAYinpjQ7mEOZuRwbxZn7pNQWAE-o5rVOUrHGfX1kog74jhX2q4cB4ydPWFV4vQyAsmIP-aMDIJYdbVQPAWHzcPPk_jSI03hq0urVnfu38MCRAv_gqh3KMl2v1yBFh7Y3dPmsUNIFuRGS19DWrJGfxFo_33aKSu1gQX8,&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: (no name) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - (no file)
O2 - BHO: (no name) - {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll
O2 - BHO: (no name) - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - (no file)
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Ajko\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Ajko\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Ajko\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Ajko\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [AirDroid 3] C:\Program Files (x86)\AirDroid\AirDroid.exe /start
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Discord] C:\Users\Ajko\AppData\Local\Discord\app-0.0.296\Discord.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Ajko\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [BingSvc] C:\Users\Ajko\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKCU\..\Run: [MyComGames] "C:\Users\Ajko\AppData\Local\MyComGames\MyComGames.exe" -autostart
O4 - HKCU\..\Run: [ABUNINSTALLEX] c:\programdata\ab studio\ABUnInstallEx.exe
O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [WallpaperEngine] "D:\Alex\WTF!\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe" -silent
O4 - HKCU\..\Run: [SysProc] C:\Users\Public\Public\run.vbs
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: Wi-Fi MediaConnect.lnk = C:\Program Files (x86)\Philips\Wi-Fi MediaConnect\Wi-Fi MediaConnect.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.aeriagames.com
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: AbSoftMgr4 - AB Studio - C:\Program Files\Common Files\AB Studio Shared\AbSoftMgr4.exe
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BUILDpower S HW Agent v2 (BPSHWAgent) - RTS, a.s. - C:\BUILDpowerS\system\BPSHWAgentService.exe
O23 - Service: BitRaider Mini-Support Service Stub Loader (BRSptStub) - BitRaider, LLC - C:\ProgramData\BitRaider\BRSptStub.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: INFOpower SQL Agent (IPSQLAgent) - Unknown owner - C:\BUILDpowerS\system\IPSQLAgentService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NitroPDFDriverCreatorReadSpool10 (NitroDriverReadSpool10) - Nitro PDF Software - C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe
O23 - Service: NitroUpdateService - Unknown owner - C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\Windows\system32\nvwmi64.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - G:\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - G:\Origin\OriginWebHelperService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Remotr Service - RemoteMyApp sp. z o.o. - C:\Program Files (x86)\Remotr\RemotrService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 17923 bytes

====== Enumerating Processes ======

C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Windows\system32\nvwmi64.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\NLSSRV32.EXE
"C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe"
"C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\BUILDpowerS\system\IPSQLAgentService.exe
C:\WINDOWS\system32\mqsvc.exe
C:\BUILDpowerS\system\BPSHWAgentService.exe
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.BUILDPOWERS\MSSQL\Binn\sqlservr.exe" -sBUILDPOWERS
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Users\Ajko\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
C:\Users\Ajko\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
"C:\Users\Ajko\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Users\Ajko\AppData\Local\Akamai\netsession_win.exe"
"C:\Users\Ajko\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Users\Ajko\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
C:\Users\Ajko\AppData\Local\Akamai\netsession_win.exe
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\WINDOWS\System32\WScript.exe" "C:\Users\Public\Public\run.vbs"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Windows\System32\taskmgr.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\cmd.exe /c ""C:\Users\Public\Public\run.bat" "
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --ran-launcher --opener-id="kdAPpsU/QFmHOO/SC:\Windows\explorer.exe" 4 0
"C:\Program Files (x86)\Opera\45.0.2552.812\opera_crashreporter.exe" --ran-launcher --opener-id="kdAPpsU/QFmHOO/SC:\Windows\explorer.exe" --crash-reporter-parent-id=8648 4 0
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --type=gpu-process --field-trial-handle=1700 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,19,20,23,41,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x0f00 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8233 --gpu-driver-date=5-17-2017 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --service-request-channel-token=59418FFC3F09622F20F93FD678084063 --mojo-platform-channel-handle=1732 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1700 --primordial-pipe-token=46154B3DDFA0E0E139D14546A1B161EC --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=46154B3DDFA0E0E139D14546A1B161EC --renderer-client-id=3 --mojo-platform-channel-handle=2904 /prefetch:1
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1700 --primordial-pipe-token=4BAEAF7F216CBF75A16509827F4BCEE1 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=4BAEAF7F216CBF75A16509827F4BCEE1 --renderer-client-id=6 --mojo-platform-channel-handle=2364 /prefetch:1
"C:\WINDOWS\System32\WScript.exe" "C:\Users\Public\Public\gpu.vbs"
C:\Users\Public\Public\sysproc.exe -a yescrypt -o stratum+tcp://yescrypt.mine.zpool.ca:6233 -u 35yb8dqnRRFx8tbhkVpy2kDNKKeAjwYiFS -p x
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1700 --primordial-pipe-token=F74690B14FE246F1D938B88A1356786D --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=F74690B14FE246F1D938B88A1356786D --renderer-client-id=4 --mojo-platform-channel-handle=3660 /prefetch:1
C:\WINDOWS\system32\cmd.exe /c ""C:\Users\Public\Public\gpu.bat" "
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1700 --primordial-pipe-token=9C6B4BC2050691AE6D68AEE075B12449 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=9C6B4BC2050691AE6D68AEE075B12449 --renderer-client-id=11 --mojo-platform-channel-handle=5588 /prefetch:1
C:\Users\Public\Public\taskmgr.exe --algo=neoscrypt -o stratum+tcp://neoscrypt.mine.zpool.ca:4233 -u 35yb8dqnRRFx8tbhkVpy2kDNKKeAjwYiFS -p x
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1700 --primordial-pipe-token=FA4596E698BAC24FD19F4DB1FF376CF9 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=FA4596E698BAC24FD19F4DB1FF376CF9 --renderer-client-id=14 --mojo-platform-channel-handle=3772 /prefetch:1
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1700 --primordial-pipe-token=02CFB9A3461149A13B82FF5D8E43E879 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=02CFB9A3461149A13B82FF5D8E43E879 --renderer-client-id=15 --mojo-platform-channel-handle=4512 /prefetch:1
"C:\Program Files\Windows Defender\msascui.exe"
C:\WINDOWS\system32\fontdrvhost.exe
"C:\Program Files\CCleaner\CCleaner64.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\WINDOWS\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe" /update SCHEDULEDTASK displaylevel=False
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1700 --primordial-pipe-token=81BD6DDE12046D7B62D5F9B46D2B9494 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=81BD6DDE12046D7B62D5F9B46D2B9494 --renderer-client-id=25 --mojo-platform-channel-handle=8140 /prefetch:1
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXczjfc0bhqj9fy5ca1jbf927a5m10bydr.mca
"C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1700 --primordial-pipe-token=52F46C9CF86DEA628644C956ADAF505C --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=8668 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=52F46C9CF86DEA628644C956ADAF505C --renderer-client-id=26 --mojo-platform-channel-handle=8596 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 676 680 688 8192 684
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x3a0
"C:\Users\Ajko\AppData\Local\Temp\scoped_dir8648_1388\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

====== Scheduled tasks folder ======

C:\WINDOWS\tasks\BYAIAMUF.job - C:\Users\spravca\AppData\Roaming\BYAIAMUF.exe /infocmdline=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
C:\WINDOWS\tasks\GNOK.job - C:\Users\spravca\AppData\Roaming\GNOK.exe /infocmdline=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
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe -check pepperplugin
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\Anedochdokather Engine - "C:\Program Files (x86)\Jowleanurely\nrodom.exe" ee58489f-b959-46af-a871-2b57e4e050c5
C:\WINDOWS\system32\tasks\BYAIAMUF - C:\Users\spravca\AppData\Roaming\BYAIAMUF.exe /infocmdline=eeDDRocDiVbnABFJkwAS+Si08k6olHCePKyYWI3gKetui1t0KpuM96/KbNI5nRjoYJRU02g04GyH+HLLpUH0QxTsGaIoKKm2qEzuWNLyAi4qwXDpZO+3bvWWkzROe+A5g8K5ZerLWqlKWjjEag7KRTVhuEsMiap8sV/0fEJkPj7DHHkswWCMqlq8EuJW5FkHu6KhVkxEdLZP9DxL5+9PjVnyYkM2+5NRkqRV0iTs01Vbauy8msSZD1/tn6RZfzOc7Wug8FDGAAm17lSkIZ34RDvdyutDLL7DpooGwSeTGsBjyjuSue3BDpop0QSq+6XS+2v0sakJjh2OXSvuXM2m7qnDIAUemw2jScGMIFapC4OK5RUFHrggfChqixtrcIkZFpD+rq7hYPZC4HZOb0TGtYCY81Bk1XL/5LDSVzH7HqDBIcsBVGlP7StfFcxMET5ow+qC7OuldWgXJzhiRDLiLcQUtFrQr+MbtKEn96GypnKYhMGt13pWRp1o5QfjHRRgsZkLutK+wRg09MBTdV6esMVJAnVrHQ18v7KwLAnjHLQ6qygpZwcc4FRKmt288xLM80NNLghoNjL7A5LleUPNwEK91s0rHvKmd83SdnKb64/+DklNpVBvfiP1S7ufH9ZR3T06y0c1dfgiSyZsKto8dEXbr5D/fQu+D2xz3adWKyg=
C:\WINDOWS\system32\tasks\cba8af86-f611-46e6-9bcd-739a6ac14969-1-6 - C:\Program Files (x86)\iWebar\cba8af86-f611-46e6-9bcd-739a6ac14969-1-6.exe /rawdata=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
C:\WINDOWS\system32\tasks\cba8af86-f611-46e6-9bcd-739a6ac14969-1-7 - C:\Program Files (x86)\iWebar\cba8af86-f611-46e6-9bcd-739a6ac14969-1-7.exe /rawdata=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
C:\WINDOWS\system32\tasks\cba8af86-f611-46e6-9bcd-739a6ac14969-4 - C:\Program Files (x86)\iWebar\cba8af86-f611-46e6-9bcd-739a6ac14969-4.exe /rawdata=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
C:\WINDOWS\system32\tasks\cba8af86-f611-46e6-9bcd-739a6ac14969-5 - C:\Program Files (x86)\iWebar\cba8af86-f611-46e6-9bcd-739a6ac14969-5.exe /rawdata=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
C:\WINDOWS\system32\tasks\cba8af86-f611-46e6-9bcd-739a6ac14969-5_user - C:\Program Files (x86)\iWebar\cba8af86-f611-46e6-9bcd-739a6ac14969-5.exe /rawdata=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
C:\WINDOWS\system32\tasks\cba8af86-f611-46e6-9bcd-739a6ac14969-6 - C:\Program Files (x86)\iWebar\cba8af86-f611-46e6-9bcd-739a6ac14969-6.exe /rawdata=Dklk+QgPfTpJcA1iQ1Cb/9WJDjNBiYJSRFw/kQv5MObmYY8FGw/zG7j6syqRNRzfjbxTSR8ZXgF552oMGAkiYk4Z7fYgGJgpsZQrzMEKptoQT7vZ0PNxCA4MI3nYxA5eP5eqnD2qG02gO7XmfI3sHE+IdED+t7PTkTtfmF21+Is9JIeI00+ibnts7VQEOQwyWU3n8Z5o8DXF4yEhvri5QiA0I+rqazrnA4luoeir0RFcK+OXo4DtQM7Hu+MtYtRFhdYU1aIXv/XyXbnBnbUxJnrcJALmY7AxIxRlokvRZmXFl3SyFYLaeQ7tdImthLHlgZpA/HsoCs++qc/h/eIxt5Me8Vd6O6Y1XK/UwZvxcYQppVtgATXVT0L9MoIDhK/UhP0QCfA0PwBWLMtnyKb6mj+Y6wiZMz0dVixd+kigBZ8OrhwGOY9dHb/AiB+zOBEmNRBT7qctOq4rYjTWjN2TI82g7nSO91VNMShBJ6raqlgwzOcvzsfV5LN/w8I2UCBQV/x4M2Hs3j/LJ8U5Iwh4+yzg25w4+xhV5koDI2AEsMJ0m4RfY1zCGqu9K7E3Z1QKPEKbdoKXVusE/xiuuO68OJcaM4gtq0asSqJKisJPKL/t3ikLlmQT7xvD+uDTt2Y4H/63nPAkMst+kMG3cRozlK/1HDrA/GYGwaZidiS8MkdLVYkmcN60w2IopQpAn3Z64/TzO1Z4Lc//GFTLCIkGUVfe9LCQ4ex3gd27xCfFPmLwUtUlEFtt3BjFkq4O3BLJt9C6I4ka5CBMBXpszDyzKdtxgt87K0BG5THteWy+TI+fOv8ieuH560aD+ZsdyCQkTPqwulRQJbFn17imw0RXYyrbBTDUINfxG2uXea+GwVmoEcE4MJ0E4wNb9z3eWm+ofVK1vPLgZu2SmiL5ABA30S0b5d3GnxpFRzUs6KP3cpA9M4Yop5Pf03+UfA/w5yOSyo1kymcLaqMrmtZEdWFb/n3WSmVUBDNoiUjmy+TNF/6LZNSJVRQ8W5M4vEUsmk+3iX1Yegh2hQEcLE8TSpaAX6OwT+DE5qjBW1HqvRtbA9HERN2vkjtOi4YQDG5aA6qcYcNBE4ywyxiOJKF2vnVWUHwMtgNqG3bHRlkfR35/ZchymjOg4VteR57yXxUa7wo8UnnxW6na+djgf49ZNCoihFjXSAVzCOYfp1xUIz9EXidwJj3uno4RuPIVJ5GFGmi/ROnygYjZaBAb0d0RjFN4LPXY3xrD9/istbXSCC6x7n+l1YjmoEMS0V0bVgi4CCA8Zk35xG8eRmpCJhU1aehcS1cUidsqTgs7/huPR/zD4juwPJQB3hE4XdpYNnaUpY9yqcU/BGtIjL1JWhAh63frKWzbXp3a0zP28xmE2xU1Yb8UrQeeDh4wWPFwoyJ/Xz0AmCqTHweJczGteenGgJxVEN0IrFuQvdyikx2mjH9s9rl0YvqgglwNiEvYNJ5IZx2Rfckq9ybFqs1WZYMrMcCsrjB39KvN5EafgZxC3qRUyU7dnt7/K1On8//W4MfUr0S1CXQdGlw+v7PCmxKLvOpDUfp7is+hPnYQAHgYWaWzvA7ySZRHAax06AhYoybMB3VsNS9IWdnBHrvNB4Q7DBQG3b43ijxz6V71L0A1qVarKYtnF5R5DoaByz9NDxjcIypYubXgn63HaPhUgePXPsYteirSd3QLFKKkRc/IOgjiSjRwKbPdqpeu601ueI5KKhmAOK/HXszrugV8Zuq/sLEl/db2EumWn2BKuz0NSE2NYPBwwIUJ8OCXcvCGmvPEhkG85Kc3y5OagW7+9NEp0Mx5T+EhivYw0CuGbx7r78vZt7wdKDitRUtoUd80lYNq1UaxZpz4HjO5zA40DQNeveJalz1CtpSBtBYYi1VOoFTQCurJw7vlbkZgqRkzSCbjDAF47lE8CiDzOQn5razzeQq9lgb0/XESaO0IbPU0RrIUj7kIX63zG6dFV9Q4W7ASXg512a5td5Ubm/wQxS03sms2c7q/AA2VGssH8Z9244hrsfzSSmo2hjIuUMC84DNjUhUmNCtGfvfy55wPlkwwVGnly3qqn8zf6mQLdYA2KiZUSZotvGwJ8ivdaEgev2Ff2o8KAvXF6hJ7CQFKK1emTFH5Rmnjg/WohEwbPcGmPFXv1HcCMdD/Mo5JSssU5RXnvt7wDBn5jHFb3b2dNc2fa0j3K8+ru6v49AkEyNDvVL5Xgv1i52YU3frpsufve4nA0sLVmE9XNE5rJFgASph1tIjc/TomHZc17YtxKt3uJXSKyMJRXxJOud1zCDtt5+lMgcEgk+TID85inP3s73hwH0j1Pza3cNeo9vpejrshbUgha0jk6SY04W1K/VIzrtjkVlbF66DG4mPOx8q7WvWgYpSfIcYokqaT6dcxq+JzabMMncTmJMtEARMlGQtDVbZZoJtTmoGD7k+tMjoPdR4p6PrgHkGnyaD2pChEOADBC0CSmTd5lHKgAQz4Svrj+L2kObDPSCyUqECG24Lqez7DaoZyLEY0TSWLQgze7sA+KyGqHObIxtkx2BoXj6liMu8JTtEMu2umNkESmpqdbXdUwzEPm4IVfiu+Xgqy64HubYogmnxxjAmNTRlKUn4d1NSqsHP7F41RyykfHdWcDc9FSVxa0Mg4gjELmdIOqtVjbR73TYXx6S+Kdulh/46NwHAco+FnPGrgxcz5CpGVLHdAqVGtzihRCHhRX9OkYQxLBQiqNAI=
C:\WINDOWS\system32\tasks\cba8af86-f611-46e6-9bcd-739a6ac14969-7 - C:\Program Files (x86)\iWebar\cba8af86-f611-46e6-9bcd-739a6ac14969-7.exe /rawdata=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
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\GNOK - C:\Users\spravca\AppData\Roaming\GNOK.exe /infocmdline=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
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\grldbjx4 - C:\Program Files\Common Files\g2ygjt4x\60392ozsne352.exe
C:\WINDOWS\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\WINDOWS\system32\tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"
C:\WINDOWS\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\WINDOWS\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\WINDOWS\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\WINDOWS\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\spravca\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Opera scheduled Autoupdate 1454777867 - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\r3u1ytiq - C:\Program Files\Common Files\53qtywfj\9c33ey4fd50tk.exe
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{02D01604-8775-4BAB-827C-BB83C11D270E} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{321E981C-5575-42C4-A29B-DAB2C0A58764} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\{2EF6F65A-06F8-4499-A3A2-1A216323991B} - C:\Windows\system32\pcalua.exe -a C:\Users\spravca\Downloads\mctitan164.exe -d C:\Users\spravca\Downloads
C:\WINDOWS\system32\tasks\{39D65FF3-11C7-4632-8A78-1828B915BD34} - C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{9CCB3527-C033-415C-88B6-27173B5E3592}\setup.exe" -c -runfromtemp -l0x0409 -removeonly
C:\WINDOWS\system32\tasks\{4555C955-8BAD-4923-AA4C-E6C47DDB0531} - C:\Windows\system32\pcalua.exe -a C:\Users\spravca\AppData\Roaming\uTorrent\uninstall.exe -d C:\Users\spravca\AppData\Roaming\uTorrent
C:\WINDOWS\system32\tasks\{4DF45CB3-B96B-443C-A79B-EF1DA6DFBE68} - C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
C:\WINDOWS\system32\tasks\{52EBD550-257B-4C67-886B-546DA174BD91} - C:\Windows\system32\pcalua.exe -a C:\Users\spravca\Desktop\4B2015\fine_10.exe -d C:\Users\spravca\Desktop\4B2015
C:\WINDOWS\system32\tasks\{68A53A19-EDC0-4CD4-A797-EF0576CF907A} - C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Microsoft Games for Windows - LIVE\Client\dotnetfx3setup.exe" -d "C:\Program Files (x86)\Microsoft Games for Windows - LIVE\Client"
C:\WINDOWS\system32\tasks\{7313625F-81E0-41C6-938D-AFF558FB40B3} - C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Overwolf\\OWUninstaller.exe" -c /S
C:\WINDOWS\system32\tasks\{7358FEAD-CD07-4DA6-B4C5-E92E02879D24} - C:\Windows\system32\pcalua.exe -a "C:\Users\Ajko\Desktop\Ajko-Matematika\setup (PASSWORD = 2015).exe" -d C:\Users\Ajko\Desktop\Ajko-Matematika
C:\WINDOWS\system32\tasks\{BB3C2BA9-D753-4E47-BFFD-DEBF1C658B0F} - C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
C:\WINDOWS\system32\tasks\{DF0B162B-3D9C-4662-9C4E-625DC33DBB0D} - C:\Windows\system32\pcalua.exe -a H:\GAMES\trackmania-nations_0.1.7.9.exe -d H:\GAMES
C:\WINDOWS\system32\tasks\{E2A89452-3780-4D6C-A430-D910B07A76FB} - C:\Windows\system32\pcalua.exe -a C:\Users\Ajko\AppData\Local\Temp\jre-8u91-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1
C:\WINDOWS\system32\tasks\{EF2EB5F6-5AA0-4987-9F2B-D45AC02439BB} - C:\Windows\system32\pcalua.exe -a C:\Users\spravca\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=smt
C:\WINDOWS\system32\tasks\{F6EC06EC-46C2-4C20-8D1A-A76771ABFEAC} - C:\Windows\system32\pcalua.exe -a "E:\Divinity 2\Support\Larian\PhysXRegInstaller.exe" -d "E:\Divinity 2\Support\Larian"
C:\WINDOWS\system32\tasks\WPD\SqmUpload_S-1-5-21-4259762428-39508077-375051801-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\WINDOWS\system32\tasks\WPD\SqmUpload_S-1-5-21-4259762428-39508077-375051801-1012 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunCampaignManager - %windir%\System32\UNP\UNPCampaignManager.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Logon - %windir%\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger Logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\OnIdle - %windir%\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger OnIdle
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\OutOfIdle - %windir%\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger OutOfIdle
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\RunCampaignManager2 - C:\Windows\system32\UNP\UNPCampaignManager.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Time - %windir%\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger Time
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Unlock - %windir%\system32\UNP\UNPUXLauncher.exe /campaignId {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype scheduled /trigger Unlock
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Subscription Maintenance - C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe scan upload mininterval:2880
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe scan upload
C:\WINDOWS\system32\tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan - c:\Program Files\Microsoft Security Client\MpCmdRun.exe Scan -ScheduleJob -RestrictPrivileges
C:\WINDOWS\system32\tasks\Apple\AppleSoftwareUpdate - C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task

=========Google Chrome=========

C:\Users\Ajko\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake
Extension apdfllckaahabafndbhieahigkjlhalf
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension pjkljhegncpnkpknbcohdijeoejaedia
Homepage:
default_search_provider.search_url:
C:\Users\Ajko\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl]
"Path"=C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx


======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={33BB0A4E-99AF-4226-BDF6-49120163DE86}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\ielnksrch]
"URL"=http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABlD4iy1KpNwJybB8vssiQMdOXDtB4yV4EtaBJMJxCfsC6TZnVJ55O_eL0Gs_mDNS6eYRnzXs6LzGAU9EecIHwvxoelvKTUctF1roHt5IJ0Ld8dg31iftfBi35f1BrprOp0vyVpWZgfqcG6eveNkJ0sfPNWKoiUM,&q={searchTerms}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]
"URL"=http://www.bing.com/search?q={searchTer ... DF&pc=MSSE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-04 213704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-04 2948912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-05-04 150728]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-05 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-04 2003240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-05 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=TiltWheelMouse.exe []
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-05-11 176952]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-04-28 631808]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-05-03 1893496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.szndesktop"=C:\Users\Ajko\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"cz.seznam.software.autoupdate"=C:\Users\Ajko\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"Spotify Web Helper"=C:\Users\Ajko\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-03-10 1431664]
"Akamai NetSession Interface"=C:\Users\Ajko\AppData\Local\Akamai\netsession_win.exe [2017-01-03 4490200]
"AirDroid 3"=C:\Program Files (x86)\AirDroid\AirDroid.exe [2016-04-21 8684032]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Discord"=C:\Users\Ajko\AppData\Local\Discord\app-0.0.296\Discord.exe [2016-08-24 62471352]
"OneDrive"=C:\Users\Ajko\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-04-14 1518808]
"BingSvc"=C:\Users\Ajko\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-11-05 144008]
"MyComGames"=C:\Users\Ajko\AppData\Local\MyComGames\MyComGames.exe [2017-04-15 5377936]
"ABUNINSTALLEX"=c:\programdata\ab studio\ABUnInstallEx.exe [2011-11-21 258048]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2016-02-02 1283112]
"WallpaperEngine"=D:\Alex\WTF!\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe [2017-04-30 955904]
"SysProc"=C:\Users\Public\Public\run.vbs [2016-11-24 173]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-05-05 9772248]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2016-04-22 67384]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe [2014-05-01 832272]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Autodesk Desktop App"=C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [2017-03-10 704424]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-03-15 587288]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Wi-Fi MediaConnect.lnk - C:\Program Files (x86)\Philips\Wi-Fi MediaConnect\Wi-Fi MediaConnect.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\ProgramData\SecurityUtility\QKKPZC64.dll C:\ProgramData\Airtostrong\BioRonin.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv

[AlexMr]

ZBYTEK


====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
.txt - open - "C:\Program Files (x86)\PSPad editor\PSPad.exe" "%1"

====== List of files/folders created in the last 1 month ======

2017-05-23 10:18:52 ----D---- C:\Program Files\trend micro
2017-05-23 10:18:48 ----D---- C:\rsit
2017-05-23 10:09:40 ----D---- C:\Program Files\CCleaner
2017-05-23 09:53:10 ----D---- C:\WINDOWS\Minidump
2017-05-23 09:32:33 ----D---- C:\Users\Ajko\AppData\Roaming\.technic
2017-05-23 08:37:00 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2017-05-23 08:33:31 ----D---- C:\WINDOWS\LastGood.Tmp
2017-05-23 08:24:38 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2017-05-23 08:24:38 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-23 08:24:38 ----A---- C:\WINDOWS\system32\nvopencl.dll
2017-05-23 08:24:37 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2017-05-23 08:24:37 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2017-05-23 08:24:35 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2017-05-23 08:24:35 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2017-05-23 08:24:35 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2017-05-23 08:24:34 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2017-05-23 08:24:34 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2017-05-23 08:24:34 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-23 08:24:33 ----A---- C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-05-23 08:24:33 ----A---- C:\WINDOWS\system32\nvdispco6438233.dll
2017-05-23 08:24:30 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2017-05-23 08:24:30 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2017-05-23 08:24:25 ----A---- C:\WINDOWS\system32\nvcuda.dll
2017-05-23 08:24:24 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2017-05-23 08:24:24 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2017-05-23 08:24:23 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2017-05-19 20:16:27 ----D---- C:\WINDOWS\system32\UNP
2017-05-19 20:16:27 ----AD---- C:\Program Files\UNP
2017-05-19 19:40:20 ----HD---- C:\OneDriveTemp
2017-05-15 12:28:22 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2017-05-15 12:28:22 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-10 12:38:25 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-05-10 12:38:25 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-05-10 12:38:25 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-05-10 12:38:24 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-05-10 12:38:22 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-05-10 12:38:21 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-05-10 12:38:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-10 12:38:19 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-05-10 12:38:19 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-05-10 12:38:18 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-05-10 12:38:18 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-05-10 12:38:17 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-05-10 12:38:17 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-05-10 12:38:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-05-10 12:38:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-05-10 12:38:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-05-10 12:38:15 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-05-10 12:38:15 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-05-10 12:38:15 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-05-10 12:38:14 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-05-10 12:38:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-05-10 12:38:14 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-05-10 12:38:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-05-10 12:38:13 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-05-10 12:38:12 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-05-10 12:38:12 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-05-10 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-05-10 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-05-10 12:38:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-05-10 12:38:09 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-05-10 12:38:09 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-05-10 12:38:09 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-05-10 12:38:09 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-05-10 12:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-05-10 12:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-05-10 12:38:08 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-05-10 12:38:08 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-05-10 12:38:08 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-05-10 12:38:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-05-10 12:38:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-05-10 12:38:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-05-10 12:38:07 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-05-10 12:38:07 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-05-10 12:38:07 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-05-10 12:38:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-05-10 12:38:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-05-10 12:38:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-05-10 12:38:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-05-10 12:38:06 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-05-10 12:38:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-05-10 12:38:05 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-05-10 12:38:05 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-05-10 12:38:05 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-05-10 12:38:05 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-05-10 12:38:05 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2017-05-10 12:38:05 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-05-10 12:38:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 12:38:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-05-10 12:38:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-05-10 12:38:04 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-05-10 12:38:04 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-05-10 12:38:03 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-05-10 12:38:02 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-05-10 12:38:01 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-05-10 12:38:00 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-05-10 12:37:59 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-05-10 12:37:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-05-10 12:37:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-05-10 12:37:59 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-05-10 12:37:59 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-05-10 12:37:58 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-05-10 12:37:58 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-05-10 12:37:58 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-05-10 12:37:58 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-05-10 12:37:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-05-10 12:37:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-05-10 12:37:57 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-05-10 12:37:57 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-05-10 12:37:56 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-05-10 12:37:56 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-05-10 12:37:54 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-05-10 12:37:53 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-05-10 12:37:52 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-05-10 12:37:52 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-05-10 12:37:52 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-05-10 12:37:52 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-05-10 12:37:51 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-05-10 12:37:51 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-05-10 12:37:50 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-05-10 12:37:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-05-10 12:37:48 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-05-10 12:37:48 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-05-10 12:37:47 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-05-10 12:37:47 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-05-10 12:37:45 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-05-10 12:37:45 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-05-10 12:37:44 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-05-10 12:37:44 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2017-05-10 12:37:44 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-05-10 12:37:43 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-05-10 12:37:43 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2017-05-10 12:37:43 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-05-10 12:37:43 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2017-05-10 12:37:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-05-10 12:37:42 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-05-10 12:37:42 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2017-05-10 12:37:42 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-05-10 12:37:41 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-05-10 12:37:41 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-05-10 12:37:41 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-05-10 12:37:40 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsDesktopEngine.exe
2017-05-10 12:37:40 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-05-10 12:37:40 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-05-10 12:37:40 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-05-10 12:37:39 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-05-10 12:37:39 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-05-10 12:37:39 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-10 12:37:38 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-05-10 12:37:38 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2017-05-10 12:37:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-05-10 12:37:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2017-05-10 12:37:37 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2017-05-10 12:37:37 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-05-10 12:37:36 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2017-05-10 12:37:35 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2017-05-10 12:37:35 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-05-10 12:37:35 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-05-10 12:37:35 ----A---- C:\WINDOWS\SYSWOW64\adsnt.dll
2017-05-10 12:37:34 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-05-10 12:37:34 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2017-05-10 12:37:33 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2017-05-10 12:37:33 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-05-10 12:37:33 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2017-05-10 12:37:33 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2017-05-10 12:37:32 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2017-05-10 12:37:32 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-05-10 12:37:32 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-05-10 12:37:31 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-05-10 12:37:31 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2017-05-10 12:37:24 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-05-10 12:37:19 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-05-10 12:37:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-05-10 12:37:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2017-05-10 12:37:14 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2017-05-10 12:37:14 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2017-05-10 12:37:14 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2017-05-10 12:37:14 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2017-05-10 12:37:14 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2017-05-10 12:37:12 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-05-10 12:37:05 ----A---- C:\WINDOWS\SYSWOW64\BthTelemetry.dll
2017-05-10 12:37:03 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-05-10 12:37:00 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-05-10 12:36:59 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-05-10 12:36:58 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-10 12:36:58 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-05-10 12:36:58 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-05-10 12:36:57 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-05-10 12:36:57 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-10 12:36:57 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-10 12:36:56 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-10 12:36:56 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 12:36:56 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-10 12:36:56 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-10 12:36:56 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-10 12:36:56 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-05-10 12:36:55 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-05-10 12:36:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-10 12:36:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-10 12:36:55 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-10 12:36:55 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 12:36:55 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-05-10 12:36:51 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-10 12:36:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-05-10 12:36:49 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-05-10 12:36:41 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 12:36:34 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-10 12:36:30 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 12:36:30 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-10 12:36:28 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-05-10 12:36:28 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-10 12:36:28 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 12:36:28 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-10 12:36:27 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-10 12:36:27 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-10 12:36:27 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-05-10 12:36:27 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 12:36:26 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-10 12:36:26 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 12:36:26 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-10 12:36:26 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 12:36:25 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-05-10 12:36:25 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-10 12:36:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-10 12:36:25 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-05-10 12:36:24 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-05-10 12:36:24 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-05-10 12:36:24 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-10 12:36:23 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-10 12:36:23 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-10 12:36:22 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-10 12:36:22 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-10 12:36:21 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-10 12:36:20 ----A---- C:\WINDOWS\system32\localspl.dll
2017-05-10 12:36:20 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-05-10 12:36:20 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-10 12:36:19 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-05-10 12:36:18 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-10 12:36:18 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-10 12:36:18 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-10 12:36:17 ----A---- C:\WINDOWS\system32\shell32.dll
2017-05-10 12:36:16 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 12:36:14 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-10 12:36:13 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-10 12:36:13 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-10 12:36:12 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-05-10 12:36:12 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-10 12:36:11 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-10 12:36:11 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-10 12:36:11 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-10 12:36:10 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-10 12:36:10 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 12:36:10 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-10 12:36:07 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-10 12:36:07 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 12:36:07 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-05-10 12:36:06 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 12:36:06 ----A---- C:\WINDOWS\system32\services.exe
2017-05-10 12:36:06 ----A---- C:\WINDOWS\system32\mf.dll
2017-05-10 12:36:05 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-05-10 12:36:05 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-10 12:36:05 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-10 12:36:04 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-10 12:36:04 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-10 12:36:04 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-10 12:36:03 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-10 12:36:03 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-10 12:36:03 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-10 12:36:02 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-10 12:36:01 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-10 12:35:59 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-10 12:35:59 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-10 12:35:59 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-10 12:35:59 ----A---- C:\WINDOWS\system32\mfps.dll
2017-05-10 12:35:58 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-10 12:35:58 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-10 12:35:55 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-10 12:35:54 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-10 12:31:54 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-10 12:31:54 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-10 12:31:53 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-05-10 12:31:53 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-10 12:31:53 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2017-05-10 12:31:53 ----A---- C:\WINDOWS\system32\fvecpl.dll
2017-05-10 12:31:52 ----A---- C:\WINDOWS\system32\wksprt.exe
2017-05-10 12:31:52 ----A---- C:\WINDOWS\system32\rdpclip.exe
2017-05-10 12:31:52 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-10 12:31:51 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-05-10 12:31:51 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-10 12:31:51 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-10 12:31:50 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-05-10 12:31:50 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-05-10 12:31:50 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 12:31:49 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-05-10 12:31:48 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-05-10 12:31:47 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-05-10 12:31:47 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-10 12:31:47 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-10 12:31:47 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 12:31:46 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-05-10 12:31:44 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-05-10 12:31:43 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-05-10 12:31:43 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-10 12:31:43 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-05-10 12:31:43 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-10 12:31:42 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-05-10 12:31:42 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-10 12:31:42 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-05-10 12:31:42 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-05-10 12:31:42 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-05-10 12:31:41 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-10 12:31:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-05-10 12:31:41 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-05-10 12:31:41 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 12:31:40 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-10 12:31:40 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-10 12:31:39 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-10 12:31:39 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 12:31:39 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-10 12:31:39 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-10 12:31:38 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 12:31:38 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-10 12:31:38 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-10 12:31:38 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-10 12:31:38 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-05-10 12:31:37 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-10 12:31:37 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 12:31:37 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-05-10 12:31:37 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 12:31:36 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-10 12:31:36 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-10 12:31:36 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-10 12:31:36 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-10 12:31:36 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 12:31:36 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 12:31:35 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 12:31:35 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-05-10 12:31:33 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-10 12:31:32 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-10 12:31:31 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-10 12:31:31 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-10 12:31:31 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-10 12:31:31 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-05-10 12:31:31 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-10 12:31:31 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-10 12:31:31 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-10 12:31:30 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-10 12:31:29 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-05-10 12:31:28 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-05-10 12:31:28 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-10 12:31:28 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-10 12:31:28 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-10 12:31:27 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-05-10 12:31:27 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 12:31:27 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-05-10 12:31:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-10 12:31:26 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-10 12:31:26 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-05-10 12:31:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-10 12:31:25 ----A---- C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2017-05-10 12:31:24 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-05-10 12:31:24 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-05-10 12:31:24 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-10 12:31:24 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-10 12:31:23 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-10 12:31:23 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-10 12:31:22 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-10 12:31:22 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-10 12:31:22 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-10 12:31:21 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-10 12:31:21 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-05-10 12:31:21 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-10 12:31:20 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-10 12:31:20 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-10 12:31:19 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-10 12:31:18 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-05-10 12:31:18 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-10 12:31:18 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-05-10 12:31:18 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-10 12:31:18 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-10 12:31:18 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-10 12:31:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-05-10 12:31:17 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-10 12:31:17 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-10 12:31:17 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-10 12:31:17 ----A---- C:\WINDOWS\system32\catsrvps.dll
2017-05-10 12:31:16 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-05-10 12:31:16 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-05-10 12:31:16 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-10 12:31:16 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2017-05-10 12:31:13 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-05-10 12:31:13 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-10 12:31:13 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-10 12:31:11 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-10 12:31:11 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 12:31:11 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-10 12:31:10 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-10 12:31:10 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-10 12:31:10 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-10 12:31:10 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-05-10 12:31:09 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-10 12:31:09 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-05-10 12:31:09 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 12:31:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 12:31:08 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-05-10 12:31:08 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-05-10 12:31:08 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-10 12:31:07 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-05-10 12:31:07 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-10 12:31:07 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-10 12:31:07 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-10 12:31:06 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-10 12:31:03 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-05-10 12:31:02 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-10 12:31:02 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-05-10 12:31:02 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-10 12:31:02 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-10 12:31:02 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-10 12:31:02 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-05-10 12:31:02 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-10 12:31:01 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-10 12:31:01 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-05-10 12:31:01 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 12:31:00 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-05-10 12:31:00 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 12:31:00 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-10 12:31:00 ----A---- C:\WINDOWS\explorer.exe
2017-05-10 12:30:59 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-10 12:30:59 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-10 12:30:59 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-05-10 12:30:59 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-10 12:30:58 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-10 12:30:58 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-10 12:30:58 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-05-10 12:30:58 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-10 12:30:57 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-10 12:30:57 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-05-10 12:30:57 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-10 12:30:57 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-10 12:30:57 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-10 12:30:57 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-10 12:30:56 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-05-10 12:30:56 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 12:30:56 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 12:30:56 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-10 12:30:55 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-10 12:30:55 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-05-10 12:30:55 ----A---- C:\WINDOWS\system32\resutils.dll
2017-05-10 12:30:55 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-10 12:30:55 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-10 12:30:55 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-10 12:30:55 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-10 12:30:54 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-05-10 12:30:54 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-10 12:30:54 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 12:30:54 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-10 12:30:53 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-10 12:30:53 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-10 12:30:53 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-05-10 12:30:52 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-05-10 12:30:52 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-05-10 12:30:52 ----A---- C:\WINDOWS\system32\spwizeng.dll
2017-05-10 12:30:52 ----A---- C:\WINDOWS\system32\input.dll
2017-05-10 12:30:52 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-10 12:30:52 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-10 12:30:52 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-05-10 12:30:51 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-10 12:30:51 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-10 12:30:51 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-10 12:30:51 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-05-10 12:30:51 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 12:30:50 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-10 12:30:49 ----A---- C:\WINDOWS\system32\cryptui.dll
2017-05-10 12:30:49 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-10 12:30:48 ----A---- C:\WINDOWS\system32\vds.exe
2017-05-10 12:30:47 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-10 12:30:46 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-10 12:30:33 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-10 12:30:33 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-05-10 12:30:33 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-05-10 12:30:33 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-10 12:30:33 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-10 12:30:33 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-10 12:30:33 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-10 12:30:33 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-10 12:30:32 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-10 12:30:32 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-10 12:30:32 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-07 12:17:08 ----A---- C:\WINDOWS\SYSWOW64\d3d12warp.dll
2017-05-07 12:17:08 ----A---- C:\WINDOWS\SYSWOW64\d3d12SDKLayers.dll
2017-05-07 12:17:07 ----A---- C:\WINDOWS\SYSWOW64\VSD3DWARPDebug.dll
2017-05-07 12:17:07 ----A---- C:\WINDOWS\SYSWOW64\VSD3DWARP12Debug.dll
2017-05-07 12:17:07 ----A---- C:\WINDOWS\SYSWOW64\DXCpl.exe
2017-05-07 12:17:07 ----A---- C:\WINDOWS\system32\d3d12warp.dll
2017-05-07 12:17:07 ----A---- C:\WINDOWS\system32\d3d12SDKLayers.dll
2017-05-07 12:17:06 ----A---- C:\WINDOWS\system32\VSD3DWARPDebug.dll
2017-05-07 12:17:06 ----A---- C:\WINDOWS\system32\VSD3DWARP12Debug.dll
2017-05-07 12:17:06 ----A---- C:\WINDOWS\system32\DXCpl.exe
2017-05-07 11:12:56 ----AD---- C:\Program Files\dotnet
2017-05-07 11:11:29 ----D---- C:\Program Files (x86)\IIS
2017-05-07 11:11:29 ----AD---- C:\Program Files\IIS
2017-05-07 11:11:14 ----AD---- C:\Program Files\IIS Express
2017-05-07 11:11:14 ----AD---- C:\Program Files (x86)\IIS Express
2017-05-07 11:09:32 ----D---- C:\Program Files (x86)\Entity Framework Tools
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsRemoteEngine.exe
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsProxyStub.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsExperiment.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsCapture.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\perf_gputiming.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\DXToolsReporting.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\DxToolsReportGenerator.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\DXToolsOfflineAnalysis.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\DXToolsMonitor.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\DXGIDebug.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\DXCaptureReplay.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\DXCap.exe
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\d3d11_3SDKLayers.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\SYSWOW64\d2d1debug3.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\VsGraphicsExperiment.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\VsGraphicsCapture.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\perf_gputiming.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\DXToolsReporting.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\DxToolsReportGenerator.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\DXToolsMonitor.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\DXGIDebug.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\DXCaptureReplay.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\DXCap.exe
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2017-05-07 11:08:29 ----A---- C:\WINDOWS\system32\d2d1debug3.dll
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\3082
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\2052
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1055
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1049
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1046
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1045
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1042
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1041
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1040
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1036
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1031
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1029
2017-05-07 11:03:58 ----D---- C:\WINDOWS\system32\1028
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\3082
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\2052
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1055
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1049
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1046
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1045
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1042
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1041
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1040
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1036
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1031
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1029
2017-05-07 11:03:57 ----D---- C:\WINDOWS\SYSWOW64\1028
2017-05-07 11:02:01 ----D---- C:\Program Files (x86)\Windows Phone Kits
2017-05-07 10:59:34 ----AD---- C:\ProgramData\Windows App Certification Kit
2017-05-07 10:59:25 ----AD---- C:\Program Files\Application Verifier
2017-05-07 10:59:25 ----AD---- C:\Program Files (x86)\Application Verifier
2017-05-07 10:48:41 ----D---- C:\Program Files (x86)\NuGet
2017-05-07 10:28:47 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 14.0
2017-05-07 10:28:39 ----D---- C:\Program Files (x86)\Microsoft Web Tools
2017-05-07 10:20:52 ----D---- C:\Program Files (x86)\Windows Kits
2017-05-07 10:20:52 ----D---- C:\Program Files (x86)\Microsoft SDKs
2017-05-07 10:13:16 ----D---- C:\Users\Ajko\AppData\Roaming\vstelemetry
2017-05-07 10:13:16 ----D---- C:\Users\Ajko\AppData\Roaming\Visual Studio Setup
2017-05-07 10:12:51 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2017-05-05 10:27:56 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2017-05-05 10:27:53 ----A---- C:\WINDOWS\system32\nvdispgenco6438205.dll
2017-05-05 10:27:53 ----A---- C:\WINDOWS\system32\nvdispco6438205.dll

====== List of files/folders modified in the last 1 month ======

2017-05-23 10:18:52 ----RD---- C:\Program Files
2017-05-23 10:18:52 ----D---- C:\WINDOWS\Prefetch
2017-05-23 10:17:29 ----RD---- C:\Program Files (x86)
2017-05-23 10:17:26 ----D---- C:\WINDOWS\System32
2017-05-23 10:17:26 ----AD---- C:\WINDOWS\SysWOW64
2017-05-23 10:16:58 ----D---- C:\WINDOWS\Temp
2017-05-23 10:09:53 ----D---- C:\WINDOWS\system32\Tasks
2017-05-23 10:09:39 ----D---- C:\Program Files (x86)\Google
2017-05-23 10:03:18 ----HD---- C:\Program Files\WindowsApps
2017-05-23 10:03:16 ----D---- C:\WINDOWS\AppReadiness
2017-05-23 10:00:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-23 09:58:49 ----D---- C:\ProgramData\NVIDIA
2017-05-23 09:55:19 ----D---- C:\WINDOWS\INF
2017-05-23 09:53:11 ----D---- C:\WINDOWS\system32\SleepStudy
2017-05-23 09:53:10 ----D---- C:\Windows
2017-05-23 09:53:04 ----D---- C:\WINDOWS\system32\drivers
2017-05-23 09:49:16 ----D---- C:\Users\Ajko\AppData\Roaming\TS3Client
2017-05-23 09:43:02 ----D---- C:\WINDOWS\system32\sru
2017-05-23 09:39:47 ----D---- C:\Users\Ajko\AppData\Roaming\Origin
2017-05-23 09:13:35 ----RD---- C:\WINDOWS\Microsoft.NET
2017-05-23 08:44:47 ----D---- C:\ProgramData\Origin
2017-05-23 08:38:53 ----D---- C:\WINDOWS\system32\CatRoot
2017-05-23 08:38:51 ----D---- C:\WINDOWS\system32\DriverStore
2017-05-23 08:38:07 ----D---- C:\Temp
2017-05-23 08:38:03 ----D---- C:\ProgramData\NVIDIA Corporation
2017-05-23 08:36:04 ----RSD---- C:\WINDOWS\assembly
2017-05-23 08:31:04 ----SHD---- C:\System Volume Information
2017-05-23 08:28:12 ----D---- C:\ProgramData\Jagex
2017-05-23 08:11:53 ----D---- C:\WINDOWS\system32\config
2017-05-23 07:55:44 ----D---- C:\WINDOWS\system32\MRT
2017-05-23 07:51:27 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-19 21:57:05 ----D---- C:\WINDOWS\rescache
2017-05-19 21:36:40 ----D---- C:\WINDOWS\WinSxS
2017-05-19 21:24:10 ----D---- C:\WINDOWS\system32\catroot2
2017-05-19 20:29:07 ----SHDC---- C:\WINDOWS\Installer
2017-05-19 20:29:04 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-05-19 20:27:08 ----AD---- C:\Program Files (x86)\Microsoft Office
2017-05-19 20:16:42 ----D---- C:\WINDOWS\CbsTemp
2017-05-19 20:16:36 ----D---- C:\WINDOWS\system32\appraiser
2017-05-19 20:00:07 ----AD---- C:\Program Files (x86)\Opera
2017-05-18 09:35:05 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2017-05-18 09:35:05 ----A---- C:\WINDOWS\system32\nvapi64.dll
2017-05-18 09:35:05 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-18 07:55:25 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2017-05-18 07:48:51 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-05-18 07:48:51 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-05-15 12:30:15 ----D---- C:\Program Files\NVIDIA Corporation
2017-05-15 12:30:15 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-05-10 14:35:53 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-05-10 14:35:53 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-05-10 14:35:53 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-05-10 14:35:53 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2017-05-10 14:35:53 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-05-10 14:35:53 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-05-10 14:35:47 ----D---- C:\WINDOWS\system32\wbem
2017-05-10 14:35:47 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-05-10 14:35:47 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-05-10 14:35:47 ----D---- C:\WINDOWS\system32\oobe
2017-05-10 14:35:46 ----SD---- C:\WINDOWS\system32\F12
2017-05-10 14:35:46 ----D---- C:\WINDOWS\system32\migration
2017-05-10 14:35:46 ----D---- C:\WINDOWS\system32\inetsrv
2017-05-10 14:35:46 ----D---- C:\WINDOWS\system32\cs-CZ
2017-05-10 14:35:43 ----D---- C:\WINDOWS\ShellExperiences
2017-05-10 14:35:43 ----D---- C:\WINDOWS\Provisioning
2017-05-10 14:35:43 ----D---- C:\WINDOWS\PolicyDefinitions
2017-05-10 14:35:38 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-05-10 14:35:38 ----RD---- C:\Program Files\Windows Defender
2017-05-10 14:35:38 ----D---- C:\Program Files\Windows Photo Viewer
2017-05-10 14:35:38 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-05-10 14:35:38 ----D---- C:\Program Files (x86)\Windows Defender
2017-05-10 14:27:48 ----RD---- C:\Users
2017-05-10 14:08:35 ----D---- C:\WINDOWS\system32\LogFiles
2017-05-10 13:53:24 ----SHD---- C:\$Recycle.Bin
2017-05-10 11:32:48 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2017-05-10 10:16:47 ----D---- C:\Users\Ajko\AppData\Roaming\Seznam.cz
2017-05-10 10:13:07 ----D---- C:\WINDOWS\system32\Macromed
2017-05-10 10:12:29 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-05-07 11:26:12 ----D---- C:\ProgramData\Package Cache
2017-05-07 11:12:49 ----AD---- C:\Program Files\Common Files\microsoft shared
2017-05-07 11:12:45 ----AD---- C:\Program Files\Microsoft SQL Server
2017-05-07 11:12:38 ----D---- C:\WINDOWS\SYSWOW64\1033
2017-05-07 11:12:38 ----D---- C:\WINDOWS\system32\1033
2017-05-07 11:12:38 ----AD---- C:\Program Files (x86)\Microsoft SQL Server
2017-05-07 11:09:23 ----D---- C:\Program Files (x86)\Microsoft.NET
2017-05-07 11:01:54 ----SD---- C:\ProgramData\Microsoft
2017-05-07 10:59:39 ----D---- C:\Program Files (x86)\Common Files
2017-05-07 10:59:34 ----HD---- C:\ProgramData
2017-05-07 10:20:18 ----D---- C:\Program Files (x86)\MSBuild
2017-05-05 18:10:58 ----D---- C:\WINDOWS\SoftwareDistribution
2017-05-05 14:08:30 ----D---- C:\Users\Ajko\AppData\Roaming\obs-studio
2017-05-05 10:18:28 ----D---- C:\ProgramData\Oracle
2017-05-05 10:16:50 ----D---- C:\Program Files (x86)\Java
2017-05-05 10:15:25 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2017-05-05 10:03:03 ----RSD---- C:\WINDOWS\Fonts
2017-05-03 22:21:33 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2017-05-03 22:21:33 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2017-05-03 22:21:32 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2017-05-03 22:21:32 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2017-05-03 22:21:32 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-04-29 02:59:37 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-04-28 03:01:16 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R3 dtsoftbus01;@oem45.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2016-07-28 283064]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 HECIx64;@oem26.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface; C:\WINDOWS\System32\drivers\HECIx64.sys [2009-09-17 56344]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-09-29 175616]
R3 netr28ux;@netr28ux.inf,%Generic.Service.DispName%;RT2870 USB Extensible Wireless LAN Card Driver; C:\WINDOWS\System32\drivers\netr28ux.sys [2016-07-16 2224128]
R3 NVHDA;@oem77.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-04-02 218040]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7209bde3180ef5f7\nvlddmkm.sys [2017-05-19 14458264]
R3 nvvad_WaveExtensible;@oem79.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;@oem64.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-05-18 57792]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-07-16 589824]
R3 RTL85n64;@net8185.inf,%RTL8185.Service.DispName%;Realtek 8180/8185 Extensible 802.11 Wireless Device Driver; C:\WINDOWS\System32\drivers\RTL85n64.sys [2016-07-16 2055168]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-04-28 88416]
S2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [2014-05-01 123152]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 BRDriver64_1_3_3_E02B25FC;BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [2016-05-28 78088]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\system32\DRIVERS\dtlitescsibus.sys [2015-11-13 30264]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-01-20 22704]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-29 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 SgamingkbFltr;Gaming Keyboard 1; C:\WINDOWS\system32\drivers\GKS16Fltr.sys [2011-12-20 14848]
S3 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2009-11-12 5504]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll" = %windir%\system32\inetsrv\apphostsvc.dll
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [2015-02-05 31160]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 BPSHWAgent;BUILDpower S HW Agent v2; C:\BUILDpowerS\system\BPSHWAgentService.exe [2012-11-26 5660672]
R2 CDPUserSvc_70c79;CDPUserSvc_70c79; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-05-04 3705544]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2017-03-30 21312]
R2 IPSQLAgent;INFOpower SQL Agent; C:\BUILDpowerS\system\IPSQLAgentService.exe [2013-06-04 781312]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-09-29 26112]
R2 MSSQL$BUILDPOWERS;SQL Server (BUILDPOWERS); C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.BUILDPOWERS\MSSQL\Binn\sqlservr.exe [2011-06-17 43040096]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NitroDriverReadSpool10;NitroPDFDriverCreatorReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [2016-03-03 327320]
R2 NitroUpdateService;NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [2016-03-03 417944]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\NLSSRV32.EXE [2016-03-03 71832]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-18 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-05-18 449984]
R2 NVWMI;NVIDIA WMI Provider; C:\Windows\system32\nvwmi64.exe [2015-09-11 3171632]
R2 OneSyncSvc_70c79;Hostitel synchronizace_70c79; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2017-02-18 76152]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2016-04-30 131776]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-05-11 651576]
R3 PimIndexMaintenanceSvc_70c79;Data kontaktů_70c79; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S2 AdAppMgrSvc;Autodesk Desktop App Service; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2017-03-10 1309176]
S2 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files (x86)\BlueStacks\HD-Service.exe [2014-05-01 402192]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [2014-05-01 385808]
S2 BstHdUpdaterSvc;BlueStacks Updater Service; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [2014-05-01 774928]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S2 Origin Web Helper Service;Origin Web Helper Service; G:\Origin\OriginWebHelperService.exe [2017-05-23 3136920]
S2 Remotr Service;Remotr Service; C:\Program Files (x86)\Remotr\RemotrService.exe [2017-02-27 207480]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 AbSoftMgr4;AbSoftMgr4; C:\Program Files\Common Files\AB Studio Shared\AbSoftMgr4.exe [2015-06-29 2410248]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S3 BRSptStub;BitRaider Mini-Support Service Stub Loader; C:\ProgramData\BitRaider\BRSptStub.exe [2016-05-28 363208]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2017-04-15 1591264]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2017-04-15 1235912]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MessagingService_70c79;Služba zasílání zpráv_70c79; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\syswow64\GameMon.des [2016-01-17 3780544]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 Origin Client Service;Origin Client Service; G:\Origin\OriginClientService.exe [2017-05-23 2162064]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-01-29 207040]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-06-23 5132888]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-04-26 1590048]
S4 cmdidx;cmdidx; C:\Program Files\cmdidx\cmdidx.exe [2016-01-16 383488]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 44896]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
S4 SQLAgent$BUILDPOWERS;SQL Server Agent (BUILDPOWERS); C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.BUILDPOWERS\MSSQL\Binn\SQLAGENT.EXE [2011-06-17 370016]
S4 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-04-03 267616]

-----------------EOF-----------------

[JaRon]

ahoj,
vycisti PC s MBAM - vypada to na BCM

[AlexMr]

Ehm, tak zatim 912 identifikovanych hrozeb a z toho 5 malwerů

[AlexMr]

Bohužel můj log je více jak 490000 znaků dlouhý a nejde sem vložit, bohužel taky tento počítač skoro nejede, tak jestli by bylo možné poslat někam txt soubor

[JaRon]

Vloz log FRST aspon to co sa zmesti do prispevku