Prosím o kontrolu logu

[jenic3k]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2016-09-18 23:00:00
Microsoft Windows 10 Home
System drive C: has 142 GB (37%) free of 382 GB
Total RAM: 3979 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:00:07, on 18.09.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\WINDOWS\SysWOW64\rundll32.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Jan\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com/?pc=ASJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\ASUSWSLoader.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKCU\..\Run: [Power2GoExpress] "C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jan\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @oem10.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Processor Participant Service Application (DptfParticipantProcessorService) - Unknown owner - C:\WINDOWS\system32\DptfParticipantProcessorService.exe (file missing)
O23 - Service: @oem10.inf,%WIN32_DPTF_POLICY_CONFIGTDP_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Config TDP Service Application (DptfPolicyConfigTDPService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyConfigTDPService.exe (file missing)
O23 - Service: @oem10.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Critical Service Application (DptfPolicyCriticalService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyCriticalService.exe (file missing)
O23 - Service: @oem10.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Low Power Mode Service Application (DptfPolicyLpmService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyLpmService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 11872 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
dashost.exe {2721fb3f-d1e2-4c6a-bb79a984a12cdbc5}
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\DptfParticipantProcessorService.exe
C:\WINDOWS\system32\DptfPolicyCriticalService.exe
"C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe"
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\DptfPolicyConfigTDPService.exe
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\WINDOWS\system32\DptfPolicyLpmService.exe
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\msdtc.exe
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{48DA6741-1BF0-4A44-8325-293086C79077}
C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
KBFiltr.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
rundll32 "C:\Program Files\ESET\ESET NOD32 Antivirus\x86\eplgHooks.dll",Proc32_HooksLoop
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4
igfxEM.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
igfxHK.exe
igfxTray.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe" -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Windows\System32\DptfPolicyLpmServiceHelper.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0x244
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3760.0.1149828204\273940044" --mojo-application-channel-token=FCF84CA5C95906B06D36E924BD7E5BA1 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-medium/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,18,31,48,56 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=20.19.15.4444 --gpu-driver-date=4-22-2016 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1140 --mojo-platform-channel-handle=1356 --ignored=" --type=renderer " /prefetch:2
/background /versionReinstalledUseForTraceOnly
"C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x204
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=BCFE333687CBCAAC24EDFF99F41AE217 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=214C8BF4BE11DF212464F223DFA89B98 --mojo-application-channel-token=BCFE333687CBCAAC24EDFF99F41AE217 --channel="3760.20.443739279\1729374267" --mojo-platform-channel-handle=4164 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --mojo-channel-token=BC87B893E875EF7C84B5622AA7ECFA80 --ppapi-flash-args --lang=cs --device-scale-factor=1 --mojo-platform-channel-handle=7008 --ignored=" --type=renderer " /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=9F90DB2518DD1AD426C595AB6BACF70B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=3788D46BD88DC67258E4D8FD799EB1A2 --mojo-application-channel-token=9F90DB2518DD1AD426C595AB6BACF70B --channel="3760.28.244698258\1843638464" --mojo-platform-channel-handle=6320 /prefetch:1

"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXk6exbv26fbcpfsexa259ysq621kjn5ya.mca
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 740 744 752 8192 748
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\Jan\Downloads\RSITx64 (1).exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d092188a728f8b.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-07-12 229072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-07-05 2348840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DptfPolicyLpmServiceHelper"=C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [2013-10-18 114048]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-01-21 2234144]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Power2GoExpress"=C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe [2014-01-15 2649664]
"OneDrive"=C:\Users\Jan\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-09-18 633024]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-05-13 8721624]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2014-05-15 1080992]
"WebStorage"=C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\ASUSWSLoader.exe [2014-02-25 63296]
"CLMLServer"=C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2013-03-06 110144]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableCAD"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-09-18 23:00:00 ----D---- C:\Program Files\trend micro
2016-09-18 22:59:59 ----D---- C:\rsit
2016-09-18 22:23:36 ----SHD---- C:\Recovery
2016-09-18 22:23:28 ----DC---- C:\WINDOWS\Panther
2016-09-18 22:20:49 ----HD---- C:\OneDriveTemp
2016-09-18 22:20:26 ----D---- C:\Windows.old
2016-09-18 22:19:03 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-09-18 22:19:03 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2016-09-18 22:19:03 ----A---- C:\WINDOWS\SYSWOW64\CloudBackupSettings.dll
2016-09-18 22:19:03 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-09-18 22:19:03 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-09-18 22:19:03 ----A---- C:\WINDOWS\system32\encapi.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-09-18 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\system32\mfps.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-09-18 22:18:58 ----A---- C:\WINDOWS\system32\CloudBackupSettings.dll
2016-09-18 22:18:57 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-09-18 22:18:57 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-09-18 22:18:57 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-09-18 22:18:57 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wpninprc.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\FSClient.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\dasHost.exe
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\das.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-09-18 22:18:56 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-09-18 22:18:55 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-09-18 22:18:55 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-09-18 22:18:55 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2016-09-18 22:18:55 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2016-09-18 22:18:55 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-09-18 22:18:55 ----A---- C:\WINDOWS\system32\wmp.dll
2016-09-18 22:18:55 ----A---- C:\WINDOWS\system32\spwmp.dll
2016-09-18 22:18:55 ----A---- C:\WINDOWS\system32\dxmasf.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\tcpipcfg.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\slcext.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\netiougc.exe
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\DscCoreConfProv.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-09-18 22:18:54 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-09-18 22:18:53 ----A---- C:\WINDOWS\system32\tsmf.dll
2016-09-18 22:18:53 ----A---- C:\WINDOWS\system32\shell32.dll
2016-09-18 22:18:53 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-09-18 22:18:53 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-18 22:18:53 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-09-18 22:18:53 ----A---- C:\WINDOWS\system32\msctf.dll
2016-09-18 22:18:53 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-09-18 22:18:53 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\SYSWOW64\pidgenx.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\winresume.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\winload.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\w32time.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\uReFS.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\twinui.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\tcpipcfg.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\sppcext.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\sppc.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\slcext.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\slc.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\pidgenx.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\netiougc.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\GenValObj.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\DscCoreConfProv.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\C_IS2022.DLL
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\c_GSM7.DLL
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\C_G18030.DLL
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-09-18 22:18:50 ----A---- C:\WINDOWS\system32\aclui.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.UXRes.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\storagewmi_passthru.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\MSAJApi.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\encapi.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\delegatorprovider.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\ClipboardServer.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\C_IS2022.DLL
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\c_GSM7.DLL
2016-09-18 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\C_G18030.DLL
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\wups2.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\winmde.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\wincorlib.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\wevtapi.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\usocore.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\user32.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\storagewmi_passthru.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\smphost.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\schannel.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\samlib.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\offlinesam.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\MSAJApi.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\mispace.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\mf.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\hvloader.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\hvix64.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\hvax64.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\delegatorprovider.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\dafpos.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\container.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\combase.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\ClipboardServer.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\cdd.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2016-09-18 22:18:46 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-09-18 22:16:13 ----D---- C:\ProgramData\Microsoft OneDrive
2016-09-18 22:14:11 ----D---- C:\WINDOWS\system32\Microsoft
2016-09-18 22:12:18 ----D---- C:\ProgramData\USOShared
2016-09-18 22:11:20 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2016-09-18 22:11:18 ----D---- C:\Program Files\Reference Assemblies
2016-09-18 22:11:18 ----D---- C:\Program Files\MSBuild
2016-09-18 22:11:18 ----D---- C:\Program Files (x86)\Reference Assemblies
2016-09-18 22:11:18 ----D---- C:\Program Files (x86)\MSBuild
2016-09-18 22:10:38 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2016-09-18 22:10:38 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2016-09-18 22:10:38 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-09-18 22:10:32 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-09-18 22:10:32 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-09-18 22:10:31 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-09-18 22:10:13 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2016-09-18 21:44:54 ----ASH---- C:\hiberfil.sys
2016-09-18 21:33:21 ----SD---- C:\Users\Jan\AppData\Roaming\Microsoft
2016-09-18 21:29:26 ----D---- C:\Program Files\Common Files\Atheros
2016-09-18 21:29:23 ----D---- C:\WINDOWS\SYSWOW64\sda
2016-09-18 21:29:20 ----A---- C:\WINDOWS\system32\drivers\rtwavesMFX.dat
2016-09-18 21:29:20 ----A---- C:\WINDOWS\system32\drivers\rtwavesEFX.dat
2016-09-18 21:29:16 ----A---- C:\WINDOWS\system32\drivers\RTWAVES40.dat
2016-09-18 21:29:00 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-09-18 21:29:00 ----D---- C:\Program Files\Realtek
2016-09-18 21:28:55 ----D---- C:\ProgramData\NVIDIA
2016-09-18 21:28:48 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2016-09-18 21:28:47 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2016-09-18 21:28:47 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2016-09-18 21:28:47 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2016-09-18 21:28:47 ----A---- C:\WINDOWS\system32\nvshext.dll
2016-09-18 21:28:47 ----A---- C:\WINDOWS\system32\nvmctray.dll
2016-09-18 21:28:47 ----A---- C:\WINDOWS\system32\nvcpl.dll
2016-09-18 21:28:47 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2016-09-18 21:28:28 ----D---- C:\ProgramData\NVIDIA Corporation
2016-09-18 21:28:07 ----D---- C:\Program Files (x86)\ASUS
2016-09-18 21:28:06 ----SHD---- C:\Config.Msi
2016-09-18 21:28:02 ----D---- C:\Program Files\NVIDIA Corporation
2016-09-18 21:27:55 ----HD---- C:\Program Files\Uninstall Information
2016-09-18 21:27:53 ----D---- C:\ProgramData\SetupTPDriver
2016-09-18 21:27:46 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2016-09-18 21:27:35 ----A---- C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-09-18 21:27:35 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-09-18 21:27:28 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2016-09-18 21:27:28 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2016-09-18 21:27:19 ----D---- C:\Program Files\Intel
2016-09-18 21:26:12 ----AS---- C:\WINDOWS\bootstat.dat
2016-09-18 21:25:16 ----D---- C:\WINDOWS\Prefetch
2016-09-18 21:24:52 ----D---- C:\WINDOWS\system32\SleepStudy
2016-09-18 21:24:52 ----D---- C:\WINDOWS\ServiceProfiles
2016-09-18 21:24:39 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT

======List of files/folders modified in the last 1 month======

2016-09-18 23:00:00 ----RD---- C:\Program Files
2016-09-18 22:59:46 ----HD---- C:\Program Files\WindowsApps
2016-09-18 22:59:44 ----D---- C:\WINDOWS\AppReadiness
2016-09-18 22:59:36 ----D---- C:\WINDOWS\Temp
2016-09-18 22:49:00 ----D---- C:\WINDOWS\system32\sru
2016-09-18 22:20:02 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-09-18 22:20:02 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-09-18 22:20:02 ----D---- C:\WINDOWS\system32\migration
2016-09-18 22:20:01 ----SD---- C:\WINDOWS\system32\dsc
2016-09-18 22:20:01 ----D---- C:\WINDOWS\system32\fr-CA
2016-09-18 22:20:01 ----D---- C:\WINDOWS\system32\es-MX
2016-09-18 22:20:01 ----D---- C:\WINDOWS\system32\Boot
2016-09-18 22:20:01 ----D---- C:\WINDOWS\system32\appraiser
2016-09-18 22:20:00 ----D---- C:\WINDOWS\ShellExperiences
2016-09-18 22:20:00 ----D---- C:\WINDOWS\Provisioning
2016-09-18 22:20:00 ----D---- C:\WINDOWS\AppPatch
2016-09-18 22:20:00 ----D---- C:\Program Files\Windows Media Player
2016-09-18 22:20:00 ----D---- C:\Program Files (x86)\Windows Media Player
2016-09-18 22:18:23 ----D---- C:\WINDOWS\INF
2016-09-18 22:16:13 ----HD---- C:\ProgramData
2016-09-18 22:16:06 ----D---- C:\WINDOWS\rescache
2016-09-18 22:13:19 ----D---- C:\WINDOWS\system32\WDI
2016-09-18 22:12:19 ----D---- C:\ProgramData\USOPrivate
2016-09-18 22:12:04 ----D---- C:\ProgramData\ASUS Smart Gesture
2016-09-18 22:12:02 ----D---- C:\WINDOWS\System32
2016-09-18 22:11:20 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-09-18 22:11:20 ----D---- C:\WINDOWS\system32\MUI
2016-09-18 22:10:28 ----D---- C:\Program Files\Windows NT
2016-09-18 22:10:01 ----D---- C:\WINDOWS\debug
2016-09-18 22:09:58 ----D---- C:\WINDOWS\SoftwareDistribution
2016-09-18 22:09:57 ----D---- C:\WINDOWS\Logs
2016-09-18 22:07:05 ----D---- C:\Windows
2016-09-18 22:06:04 ----D---- C:\WINDOWS\Registration
2016-09-18 22:05:47 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-09-18 22:05:47 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2016-09-18 22:05:46 ----RSD---- C:\WINDOWS\Fonts
2016-09-18 21:53:08 ----D---- C:\WINDOWS\system32\LogFiles
2016-09-18 21:53:00 ----D---- C:\WINDOWS\system32\Tasks
2016-09-18 21:52:39 ----D---- C:\WINDOWS\Tasks
2016-09-18 21:52:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-18 21:51:45 ----SD---- C:\ProgramData\Microsoft
2016-09-18 21:51:25 ----D---- C:\WINDOWS\system32\drivers\etc
2016-09-18 21:49:46 ----D---- C:\WINDOWS\system32\wbem
2016-09-18 21:48:56 ----D---- C:\WINDOWS\system32\DriverStore
2016-09-18 21:48:12 ----D---- C:\WINDOWS\system32\catroot2
2016-09-18 21:45:55 ----D---- C:\WINDOWS\system32\config
2016-09-18 21:44:16 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-09-18 21:44:16 ----D---- C:\WINDOWS\SysWOW64
2016-09-18 21:44:14 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-09-18 21:44:14 ----D---- C:\WINDOWS\system32\drivers
2016-09-18 21:44:13 ----SHD---- C:\WINDOWS\Installer
2016-09-18 21:44:13 ----D---- C:\WINDOWS\cs
2016-09-18 21:44:13 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-09-18 21:44:02 ----D---- C:\WINDOWS\WinSxS
2016-09-18 21:39:31 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2016-09-18 21:39:31 ----D---- C:\WINDOWS\SYSWOW64\zh-HK
2016-09-18 21:39:30 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2016-09-18 21:39:29 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2016-09-18 21:39:29 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2016-09-18 21:39:29 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2016-09-18 21:39:29 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2016-09-18 21:39:29 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2016-09-18 21:39:28 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2016-09-18 21:39:28 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-09-18 21:39:28 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2016-09-18 21:39:28 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2016-09-18 21:39:28 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2016-09-18 21:39:28 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2016-09-18 21:39:28 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2016-09-18 21:39:28 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2016-09-18 21:39:28 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2016-09-18 21:39:27 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-09-18 21:39:27 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2016-09-18 21:39:27 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2016-09-18 21:39:27 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2016-09-18 21:39:27 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2016-09-18 21:39:27 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2016-09-18 21:39:26 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2016-09-18 21:39:26 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2016-09-18 21:39:26 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2016-09-18 21:39:26 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2016-09-18 21:39:26 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2016-09-18 21:39:25 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2016-09-18 21:39:25 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2016-09-18 21:39:25 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-09-18 21:39:25 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2016-09-18 21:39:25 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2016-09-18 21:39:24 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2016-09-18 21:39:24 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2016-09-18 21:39:24 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-09-18 21:39:23 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2016-09-18 21:39:23 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2016-09-18 21:39:19 ----D---- C:\WINDOWS\system32\zh-TW
2016-09-18 21:39:19 ----D---- C:\WINDOWS\system32\zh-HK
2016-09-18 21:39:19 ----D---- C:\WINDOWS\system32\zh-CN
2016-09-18 21:39:17 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-09-18 21:39:17 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-09-18 21:39:17 ----D---- C:\WINDOWS\system32\uk-UA
2016-09-18 21:39:17 ----D---- C:\WINDOWS\system32\tr-TR
2016-09-18 21:39:17 ----D---- C:\WINDOWS\system32\th-TH
2016-09-18 21:39:17 ----D---- C:\WINDOWS\system32\sv-SE
2016-09-18 21:39:16 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2016-09-18 21:39:16 ----D---- C:\WINDOWS\system32\spool
2016-09-18 21:39:15 ----D---- C:\WINDOWS\system32\sl-SI
2016-09-18 21:39:15 ----D---- C:\WINDOWS\system32\sk-SK
2016-09-18 21:39:15 ----D---- C:\WINDOWS\system32\ru-RU
2016-09-18 21:39:15 ----D---- C:\WINDOWS\system32\ro-RO
2016-09-18 21:39:15 ----D---- C:\WINDOWS\system32\pt-PT
2016-09-18 21:39:14 ----D---- C:\WINDOWS\system32\pt-BR
2016-09-18 21:39:14 ----D---- C:\WINDOWS\system32\pl-PL
2016-09-18 21:39:14 ----D---- C:\WINDOWS\system32\oobe
2016-09-18 21:39:14 ----D---- C:\WINDOWS\system32\nl-NL
2016-09-18 21:39:14 ----D---- C:\WINDOWS\system32\NDF
2016-09-18 21:39:14 ----D---- C:\WINDOWS\system32\nb-NO
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\lv-LV
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\lt-LT
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\ko-KR
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\ja-jp
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\it-IT
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\InputMethod
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\hu-HU
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\hr-HR
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\he-IL
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\fr-FR
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\fi-FI
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\et-EE
2016-09-18 21:39:13 ----D---- C:\WINDOWS\system32\es-ES
2016-09-18 21:39:12 ----D---- C:\WINDOWS\system32\en-US
2016-09-18 21:39:12 ----D---- C:\WINDOWS\system32\en-GB
2016-09-18 21:39:12 ----D---- C:\WINDOWS\system32\el-GR
2016-09-18 21:39:11 ----D---- C:\WINDOWS\system32\de-DE
2016-09-18 21:39:11 ----D---- C:\WINDOWS\system32\da-DK
2016-09-18 21:39:10 ----D---- C:\WINDOWS\system32\cs-CZ
2016-09-18 21:37:28 ----D---- C:\WINDOWS\system32\bg-BG
2016-09-18 21:37:28 ----D---- C:\WINDOWS\system32\ar-SA
2016-09-18 21:37:20 ----D---- C:\WINDOWS\LiveKernelReports
2016-09-18 21:37:17 ----D---- C:\WINDOWS\InputMethod
2016-09-18 21:37:12 ----RD---- C:\WINDOWS\assembly
2016-09-18 21:37:08 ----RD---- C:\Users
2016-09-18 21:36:58 ----RD---- C:\Program Files (x86)
2016-09-18 21:36:58 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-18 21:36:57 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-09-18 21:36:56 ----D---- C:\Program Files (x86)\Common Files
2016-09-18 21:36:51 ----D---- C:\Program Files\Windows Mail
2016-09-18 21:36:50 ----D---- C:\Program Files\Common Files\microsoft shared
2016-09-18 21:36:50 ----D---- C:\Program Files\Common Files
2016-09-18 21:36:16 ----D---- C:\WINDOWS\system32\Recovery
2016-09-18 21:34:52 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-09-18 21:32:44 ----RD---- C:\WINDOWS\Microsoft.NET
2016-09-18 21:32:31 ----D---- C:\WINDOWS\system32\Sysprep
2016-09-18 21:30:00 ----RD---- C:\WINDOWS\PrintDialog
2016-09-18 21:29:59 ----RD---- C:\WINDOWS\MiracastView
2016-09-18 21:29:58 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-09-18 21:28:47 ----D---- C:\WINDOWS\Help
2016-09-18 21:00:11 ----SHD---- C:\System Volume Information
2016-09-18 20:44:53 ----HD---- C:\$WINDOWS.~BT
2016-09-07 17:58:23 ----HD---- C:\$SysReset
2016-08-24 13:39:18 ----D---- C:\Users\Jan\AppData\Roaming\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 BTATH_BUS;@oem27.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2014-02-25 35016]
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-03-10 241880]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-08-09 644968]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-07-16 45920]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2013-07-02 19768]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-08-08 227456]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2016-08-08 176288]
R1 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2016-08-08 67752]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2014-03-27 17152]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw8x.sys [2016-07-16 4233728]
R3 ATP;ASUS Input Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2015-08-23 97680]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2015-06-29 609992]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2016-09-18 84992]
R3 DptfDevDram;DptfDevDram; C:\WINDOWS\system32\DRIVERS\DptfDevDram.sys [2013-10-18 145640]
R3 DptfDevPch;DptfDevPch; C:\WINDOWS\system32\DRIVERS\DptfDevPch.sys [2013-10-18 116752]
R3 DptfDevProc;DptfDevProc; C:\WINDOWS\system32\DRIVERS\DptfDevProc.sys [2013-10-18 289744]
R3 DptfManager;DptfManager; C:\WINDOWS\system32\DRIVERS\DptfManager.sys [2013-10-18 494296]
R3 HIDSwitch;@oem25.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2015-05-13 19976]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-27 7936600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-04-15 3932120]
R3 kbfiltr;@oem23.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-06 17280]
R3 MEIx64;@oem13.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-10-23 99288]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-07-13 11139216]
R3 rt640x64;@oem6.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-08 895256]
R3 RTSUER;@oem7.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-01 410880]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2016-08-08 15488]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2016-09-18 965120]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-07-16 117248]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-18 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-03-01 38296]
S3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-03-17 450520]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2016-07-16 45568]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-07-16 263008]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [2014-03-26 115512]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe [2014-02-25 71680]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_3f479b;CDPUserSvc_3f479b; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2016-07-05 3189488]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DptfParticipantProcessorService;@oem10.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Processor Participant Service Application; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [2013-10-18 117704]
R2 DptfPolicyConfigTDPService;@oem10.inf,%WIN32_DPTF_POLICY_CONFIGTDP_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Config TDP Service Application; C:\WINDOWS\system32\DptfPolicyConfigTDPService.exe [2013-10-18 116680]
R2 DptfPolicyCriticalService;@oem10.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Critical Service Application; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [2013-10-18 148160]
R2 DptfPolicyLpmService;@oem10.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Low Power Mode Service Application; C:\WINDOWS\system32\DptfPolicyLpmService.exe [2013-10-18 126952]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-08-05 2816032]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-01-28 227904]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-27 374360]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-10-23 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-10-23 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-10-23 390616]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-01-21 1593632]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-07-13 937616]
R2 OneSyncSvc_3f479b;Hostitel synchronizace_3f479b; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-27 302176]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_3f479b;Data kontaktů_3f479b; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-09-02 827392]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_3f479b;Služba zasílání zpráv_3f479b; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 150600]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-07-16 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

[JaRon]

nevidim tam ziadny virovy problem

[jenic3k]

Počítač pomaly a disk na 100% vytizen tak jsem myslel ze bude nejaky problem..

[JaRon]

preventivne mozes prescanovat s ADWCleanerom a MBAM - nie vsetko vidiet v logu

[jenic3k]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 21.09.2016
Čas skenování: 22:58
Protokol: malware.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.09.21.12
Databáze rootkitů: v2016.08.15.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Jan

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 699613
Uplynulý čas: 4 hod, 19 min, 7 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 2
PUP.Optional.VideoAdBlocker.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bknbnapaddjdnbilpmlacdkjdkjmbjhd, , [f6da0c68633786b07d44cfdeb74de11f],
PUP.Optional.VideoAdBlocker.ChrPRST, HKU\S-1-5-21-3802890364-3006310852-2681347240-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\bknbnapaddjdnbilpmlacdkjdkjmbjhd, , [ddf3d79dedad61d50db5f6b728dc05fb],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[JaRon]

mozes zmazat, ak si tak neurobil

[jenic3k]

Smazano, restart a disk vytizen 100%..

[JaRon]

ako som pisal vyssie, toto nie je virovy problem
skus povypinat kdejake updatery, autom. aktualizacie, odinstalovat ESET
musis len skusat, ak nic nepomoze tak opravnu instalaciu OS ,,,

[jenic3k]

Oukej Diky

[JaRon]

za malo