Preventivní prohlídka

[micky.m]

Dobrý den,
poslední dobou se mi zdá počítač nějaký "zasekaný".... odezva dlouhá atd.... Projel jsem si to antivirem a něco mi to našlo a vyléčilo. Nicméně chování stroje je stále líné. Můžete se mi na to prosím podívat, jestli tam přecijen něco nezbylo?

Díky, Michal

Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2016-10-28 14:39:54
Microsoft Windows 10 Home
System drive C: has 141 GB (62%) free of 226 GB
Total RAM: 3998 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:40:07, on 28.10.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\LockKey\LockKey.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera_crashreporter.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe
C:\Program Files\trend micro\Michal.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: PXCIEaddin5 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O3 - Toolbar: PDFXChange 2012 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s
O4 - HKLM\..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
O4 - HKLM\..\Run: [LockKey] C:\Program Files (x86)\LockKey\LockKey.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-550771722-881670278-3369189280-1000\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-550771722-881670278-3369189280-1000\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O4 - Global Startup: CodeMeter Control Center.lnk = C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
O4 - Global Startup: Network Server.lnk = C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) - WIBU-SYSTEMS AG - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NitroPDFDriverCreatorReadSpool2 (NitroDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13216 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\igfxCUIService.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k apphost
dashost.exe {2d6fc907-60e3-4b38-8e8b1882792c3158}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\WINDOWS\system32\CxAudMsg64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Elantech\ETDService.exe"
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\mqsvc.exe
C:\Windows\SysWOW64\NLSSRV32.EXE
"C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
explorer.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
igfxEM.exe
igfxHK.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
igfxTray.exe
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\LockKey\LockKey.exe"
"C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe /client=Personal
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"fontdrvhost.exe"
C:\Windows\System32\LockAppHost.exe -Embedding
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -scheduled
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\41.0.2353.46\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=1100
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=gpu-process --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,15,19,33,50,59 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4358 --gpu-driver-date=12-21-2015 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1140 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --mojo-application-channel-token=290E7E4CA72474147049CABE23599AB9 --mojo-platform-channel-handle=1536 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --primordial-pipe-token=985D13919FB9BD22DA4C521145C948A2 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=985D13919FB9BD22DA4C521145C948A2 --channel="1100.1.1144739324\983233958" --mojo-platform-channel-handle=2444 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --primordial-pipe-token=F83C0F33A0936400729307CABBC89C26 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=F83C0F33A0936400729307CABBC89C26 --channel="1100.2.1618169062\358525947" --mojo-platform-channel-handle=2644 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --primordial-pipe-token=28CBACD3C62901DB9C6BE4BB0E2BAF44 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=28CBACD3C62901DB9C6BE4BB0E2BAF44 --channel="1100.3.438982937\1451266906" --mojo-platform-channel-handle=2784 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --primordial-pipe-token=A09C1FA6B235E4A5763BFD9D6A5323AF --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=A09C1FA6B235E4A5763BFD9D6A5323AF --channel="1100.4.1733711252\1291093892" --mojo-platform-channel-handle=2984 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --primordial-pipe-token=BCFDD6ABECB2876C44E6289B20AF8555 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=BCFDD6ABECB2876C44E6289B20AF8555 --channel="1100.6.586399997\839674533" --mojo-platform-channel-handle=4728 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --primordial-pipe-token=768DDEBA82FE2621E1E9DD4800AE37BC --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=768DDEBA82FE2621E1E9DD4800AE37BC --channel="1100.7.2044303894\838791662" --mojo-platform-channel-handle=2736 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --primordial-pipe-token=ED4C5653356320D1BC4C5AA04987B9BB --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=ED4C5653356320D1BC4C5AA04987B9BB --channel="1100.8.511942877\931148133" --mojo-platform-channel-handle=3332 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --primordial-pipe-token=987E2A5CFDC852A76080B11FA9A9498F --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=987E2A5CFDC852A76080B11FA9A9498F --channel="1100.9.1270950878\1787377119" --mojo-platform-channel-handle=6496 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.46\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --primordial-pipe-token=94BAF17F7D6603EFD94B310E8C030562 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=1040 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=94BAF17F7D6603EFD94B310E8C030562 --channel="1100.10.1014224341\1323527894" --mojo-platform-channel-handle=6308 /prefetch:1

C:\WINDOWS\system32\AUDIODG.EXE 0x3d0
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe25_ Global\UsGthrCtrlFltPipeMssGthrPipe25 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 620 640 648 8192 644
"C:\Users\Michal\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_23_0_0_205_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A}]
PDFXChange 2012 - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll [2013-01-19 423488]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-26 462400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-26 173120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - PDFXChange 2012 - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll [2013-01-19 423488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-07 3242696]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2016-02-21 8079408]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2016-02-21 6202416]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-01-15 8619224]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2015-06-12 561672]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-21 291648]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2011-01-29 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [2011-01-29 228448]
"VeriFaceManager"=C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [2012-09-04 329056]
"UpdatePRCShortCut"=C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [2009-05-14 222504]
"LockKey"=C:\Program Files (x86)\LockKey\LockKey.exe [2011-08-26 337776]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2014-09-11 2087264]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-04-01 596504]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
CodeMeter Control Center.lnk - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
Network Server.lnk - C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"="C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe:*:Enabled:CodeMeter Runtime Server"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"="C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe:*:Enabled:CodeMeter Runtime Server"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.ac3filter"=ac3filter64.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-28 14:39:55 ----D---- C:\Program Files\trend micro
2016-10-28 14:39:54 ----D---- C:\rsit
2016-10-20 22:35:34 ----D---- C:\Users\Michal\AppData\Roaming\Abvent_Artlantis5
2016-10-20 22:27:40 ----D---- C:\Program Files\Artlantis Studio 5
2016-10-15 21:28:58 ----D---- C:\WINDOWS\PCHEALTH
2016-10-15 21:06:14 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-15 21:06:13 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-10-15 21:06:13 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-10-15 21:06:12 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-15 21:06:12 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-10-15 21:06:11 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-15 21:06:11 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-15 21:06:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-15 21:06:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-15 21:06:08 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2016-10-15 21:06:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-10-15 21:06:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-10-15 21:06:05 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-15 21:06:03 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-10-15 21:06:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-10-15 21:06:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-10-15 21:06:02 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-10-15 21:06:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-15 21:06:00 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-15 21:05:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-10-15 21:05:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-10-15 21:05:59 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2016-10-15 21:05:59 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2016-10-15 21:05:59 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2016-10-15 21:05:59 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-10-15 21:05:59 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2016-10-15 21:05:59 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2016-10-15 21:05:59 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-10-15 21:05:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-10-15 21:05:58 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-15 21:05:58 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-10-15 21:05:58 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2016-10-15 21:05:58 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-10-15 21:05:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2016-10-15 21:05:57 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-15 21:05:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-15 21:05:57 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-15 21:05:57 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2016-10-15 21:05:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-10-15 21:05:56 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-10-15 21:05:56 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-10-15 21:05:56 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-10-15 21:05:54 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-10-15 21:05:54 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2016-10-15 21:05:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-15 21:05:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2016-10-15 21:05:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-10-15 21:05:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-10-15 21:05:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-15 21:05:53 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-10-15 21:05:52 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-10-15 21:05:52 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-10-15 21:05:52 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-10-15 21:05:52 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-10-15 21:05:51 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-10-15 21:05:51 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-10-15 21:05:51 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-10-15 21:05:51 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-10-15 21:05:50 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-10-15 21:05:49 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-10-15 21:05:48 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-15 21:05:47 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-10-15 21:05:46 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-15 21:05:46 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-15 21:05:45 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-10-15 21:05:44 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-15 21:05:44 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2016-10-15 21:05:43 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2016-10-15 21:05:43 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-10-15 21:05:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-10-15 21:05:42 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-10-15 21:05:42 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-10-15 21:05:42 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-10-15 21:05:41 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2016-10-15 21:05:41 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-10-15 21:05:41 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2016-10-15 21:05:40 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2016-10-15 21:01:42 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-15 21:01:42 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-15 21:01:42 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-15 21:01:36 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-15 21:01:32 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-10-15 21:01:30 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-10-15 21:01:29 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-10-15 21:01:29 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-10-15 21:01:29 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-10-15 21:01:29 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-15 21:01:28 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-15 21:01:28 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-15 21:01:28 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-10-15 21:01:26 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-15 21:01:25 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-15 21:01:25 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-15 21:01:25 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-15 21:01:25 ----A---- C:\WINDOWS\system32\dsreg.dll
2016-10-15 21:01:24 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-15 21:01:23 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-15 21:01:23 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-15 21:01:20 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-15 21:01:20 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-10-15 21:01:20 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-10-15 21:01:20 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-15 21:01:20 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-10-15 21:01:20 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-10-15 21:01:19 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-10-15 21:01:19 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-15 21:01:19 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-10-15 21:01:18 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-15 21:01:18 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2016-10-15 21:01:17 ----A---- C:\WINDOWS\system32\smartscreen.exe
2016-10-15 21:01:16 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-15 21:01:15 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-15 21:01:15 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-15 21:01:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-10-15 21:01:14 ----A---- C:\WINDOWS\system32\cloudAP.dll
2016-10-15 21:01:14 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-10-15 21:01:13 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-15 21:01:13 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-15 21:01:13 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-10-15 21:01:12 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-15 21:01:11 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-10-15 21:01:10 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-15 21:01:06 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-15 21:01:03 ----A---- C:\WINDOWS\system32\wpx.dll
2016-10-15 21:01:02 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-10-15 21:01:01 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-15 21:01:01 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-15 21:01:01 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-15 21:01:00 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-15 21:01:00 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-10-15 21:00:59 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-15 21:00:59 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-15 21:00:59 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-15 21:00:59 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-10-15 21:00:59 ----A---- C:\WINDOWS\system32\netshell.dll
2016-10-15 21:00:59 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-10-15 21:00:59 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-10-15 21:00:58 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-15 21:00:58 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-15 21:00:58 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-10-15 21:00:58 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-10-15 21:00:55 ----A---- C:\WINDOWS\system32\mfps.dll
2016-10-15 21:00:55 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-10-15 21:00:55 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-10-15 21:00:54 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-15 21:00:54 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-15 21:00:54 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-15 21:00:54 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-15 21:00:53 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-15 21:00:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-15 21:00:53 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-10-15 21:00:53 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-10-15 21:00:52 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-10-15 21:00:51 ----A---- C:\WINDOWS\system32\msi.dll
2016-10-15 21:00:49 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-15 21:00:48 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-15 21:00:47 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-15 21:00:47 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-10-15 21:00:46 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-15 21:00:45 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-15 21:00:43 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-15 21:00:41 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-10-15 21:00:33 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-15 21:00:33 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-15 21:00:32 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-15 21:00:32 ----A---- C:\WINDOWS\system32\dialclient.dll
2016-10-15 21:00:28 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-10-15 21:00:27 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-15 21:00:22 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-10-15 21:00:22 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-10-15 21:00:22 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-10-15 21:00:17 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-15 21:00:17 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-15 21:00:13 ----A---- C:\WINDOWS\system32\bcdedit.exe
2016-10-15 21:00:10 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-15 21:00:10 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-15 21:00:10 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-15 21:00:10 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-15 21:00:10 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-15 21:00:10 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-10-15 21:00:10 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-10-15 21:00:05 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-15 21:00:05 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-10-15 21:00:05 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-10-15 21:00:05 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-15 21:00:04 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-15 21:00:02 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2016-10-15 21:00:02 ----A---- C:\WINDOWS\system32\drivers\MegaSas2i.sys
2016-10-15 20:59:52 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-10-15 20:59:52 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-10-09 21:15:40 ----A---- C:\WINDOWS\system32\drivers\ekbdflt.sys
2016-09-30 11:39:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-09-30 11:39:00 ----A---- C:\WINDOWS\SYSWOW64\LicenseManagerApi.dll
2016-09-30 11:39:00 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-09-30 11:38:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.UXRes.dll
2016-09-30 11:38:59 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-09-30 11:38:59 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-09-30 11:38:57 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-09-30 11:38:57 ----A---- C:\WINDOWS\system32\tquery.dll
2016-09-30 11:38:57 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2016-09-30 11:38:56 ----A---- C:\WINDOWS\system32\nettrace.dll
2016-09-30 11:38:56 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-09-30 11:38:55 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-09-30 11:38:54 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2016-09-30 11:38:54 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-09-30 11:38:54 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-09-30 11:38:54 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-09-30 11:38:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2016-09-30 11:38:53 ----A---- C:\WINDOWS\SYSWOW64\TempSignedLicenseExchangeTask.dll
2016-09-30 11:38:53 ----A---- C:\WINDOWS\system32\mprdim.dll
2016-09-30 11:38:53 ----A---- C:\WINDOWS\system32\ci.dll
2016-09-30 11:38:52 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-09-30 11:38:52 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-09-30 11:38:52 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-09-30 11:38:52 ----A---- C:\WINDOWS\system32\SessEnv.dll
2016-09-30 11:38:52 ----A---- C:\WINDOWS\system32\offlinesam.dll
2016-09-30 11:38:52 ----A---- C:\WINDOWS\system32\hal.dll
2016-09-30 11:38:52 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-09-30 11:38:51 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2016-09-30 11:38:51 ----A---- C:\WINDOWS\system32\wkssvc.dll
2016-09-30 11:38:51 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-09-30 11:38:51 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-09-30 11:38:51 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-09-30 11:38:50 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2016-09-30 11:38:50 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-09-30 11:38:50 ----A---- C:\WINDOWS\system32\webio.dll
2016-09-30 11:38:50 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-09-30 11:38:50 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-09-30 11:38:50 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-09-30 11:38:49 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-09-30 11:38:49 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-09-30 11:38:49 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-30 11:38:49 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2016-09-30 11:38:48 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-09-30 11:38:48 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2016-09-30 11:38:48 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-09-30 11:38:48 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-09-30 11:38:47 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-09-30 11:38:47 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-09-30 11:38:46 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-09-30 11:38:46 ----A---- C:\WINDOWS\system32\securekernel.exe
2016-09-30 11:38:45 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-09-30 11:38:45 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-09-30 11:38:45 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-09-30 11:38:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2016-09-30 11:38:42 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-30 11:38:41 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2016-09-30 11:38:40 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-09-30 11:38:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-09-30 11:38:40 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-09-30 11:38:40 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-09-30 11:38:40 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-09-30 11:38:40 ----A---- C:\WINDOWS\system32\lsm.dll
2016-09-30 11:38:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-09-30 11:38:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2016-09-30 11:38:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2016-09-30 11:38:39 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-09-30 11:38:38 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-09-30 11:38:37 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-09-30 11:38:36 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-09-30 11:38:36 ----A---- C:\WINDOWS\system32\puiobj.dll
2016-09-30 11:38:36 ----A---- C:\WINDOWS\system32\NetworkUXBroker.dll
2016-09-30 11:38:36 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-09-30 11:38:36 ----A---- C:\WINDOWS\system32\credprovslegacy.dll
2016-09-30 11:38:36 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2016-09-30 11:38:35 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-09-30 11:38:35 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2016-09-30 11:38:35 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2016-09-30 11:38:35 ----A---- C:\WINDOWS\SYSWOW64\credprovslegacy.dll
2016-09-30 11:38:35 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-09-30 11:38:35 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-09-30 11:38:34 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-09-30 11:38:34 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-09-30 11:38:23 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2016-09-30 11:38:22 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-09-30 11:38:22 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-09-30 11:38:22 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2016-09-30 11:38:22 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-09-30 11:38:22 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-30 11:38:22 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-09-30 11:38:21 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-30 11:38:21 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-09-30 11:38:21 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-09-30 11:38:20 ----A---- C:\WINDOWS\system32\cdp.dll
2016-09-30 11:38:18 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-09-30 11:38:18 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-09-30 11:38:17 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-09-30 11:38:16 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2016-09-30 11:38:16 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-09-30 11:38:16 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-09-30 11:38:16 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-09-30 11:38:15 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-09-30 11:38:15 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-09-30 11:38:14 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-09-30 11:38:14 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-09-30 11:38:14 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-09-30 11:38:14 ----A---- C:\WINDOWS\system32\tdh.dll
2016-09-30 11:38:13 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-09-30 11:38:13 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-09-30 11:38:13 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-09-30 11:38:12 ----A---- C:\WINDOWS\system32\devinv.dll
2016-09-30 11:38:12 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-09-30 11:38:12 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-09-30 11:38:12 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-09-30 11:38:11 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-09-30 11:38:11 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-09-30 11:38:10 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2016-09-30 11:38:10 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2016-09-30 11:38:10 ----A---- C:\WINDOWS\system32\resutils.dll
2016-09-30 11:38:10 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-09-30 11:38:10 ----A---- C:\WINDOWS\system32\localspl.dll
2016-09-30 11:38:09 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2016-09-30 11:38:09 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-09-30 11:38:09 ----A---- C:\WINDOWS\system32\sppcext.dll
2016-09-30 11:38:09 ----A---- C:\WINDOWS\system32\pdh.dll
2016-09-30 11:38:09 ----A---- C:\WINDOWS\system32\manage-bde.exe
2016-09-30 11:38:09 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2016-09-30 11:38:08 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2016-09-30 11:38:08 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-09-30 11:38:08 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-09-30 11:38:08 ----A---- C:\WINDOWS\system32\icsvc.dll
2016-09-30 11:38:08 ----A---- C:\WINDOWS\system32\discan.dll
2016-09-30 11:38:07 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-09-30 11:38:07 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-09-30 11:38:07 ----A---- C:\WINDOWS\system32\ReAgent.dll
2016-09-30 11:38:07 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-09-30 11:38:07 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-09-30 11:38:06 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-09-30 11:38:06 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2016-09-30 11:38:06 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-09-30 11:38:06 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-09-30 11:38:06 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2016-09-30 11:38:06 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-30 11:38:05 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-09-30 11:38:05 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-09-30 11:38:05 ----A---- C:\WINDOWS\system32\Sens.dll
2016-09-30 11:38:05 ----A---- C:\WINDOWS\system32\fveui.dll
2016-09-30 11:38:04 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2016-09-30 11:38:04 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-30 11:38:04 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2016-09-30 11:38:04 ----A---- C:\WINDOWS\splwow64.exe
2016-09-30 11:38:03 ----A---- C:\WINDOWS\SYSWOW64\wlancfg.dll
2016-09-30 11:38:03 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-09-30 11:38:03 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2016-09-30 11:38:03 ----A---- C:\WINDOWS\system32\bdeui.dll
2016-09-30 11:38:02 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-09-30 11:38:02 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-09-30 11:38:02 ----A---- C:\WINDOWS\system32\fvenotify.exe
2016-09-30 11:38:01 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2016-09-30 11:38:01 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-09-30 11:38:01 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2016-09-30 11:38:01 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-09-30 11:38:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2016-09-30 11:38:00 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-09-30 11:37:59 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2016-09-30 11:37:59 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2016-09-30 11:37:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-09-30 11:37:59 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2016-09-30 11:37:59 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-09-30 11:37:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2016-09-30 11:37:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-09-30 11:37:58 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-09-30 11:37:58 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-09-30 11:37:58 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-09-30 11:37:58 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-30 11:37:58 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-09-30 11:37:57 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-09-30 11:37:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2016-09-30 11:37:57 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-09-30 11:37:57 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2016-09-30 11:37:56 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-09-30 11:37:56 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-09-30 11:37:56 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-09-30 11:37:55 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2016-09-30 11:37:55 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-09-30 11:37:55 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2016-09-30 11:37:55 ----A---- C:\WINDOWS\system32\ffbroker.dll
2016-09-30 11:37:36 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-09-30 11:37:31 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-09-30 11:37:27 ----A---- C:\WINDOWS\system32\spaceman.exe
2016-09-30 11:37:27 ----A---- C:\WINDOWS\system32\mispace.dll
2016-09-30 11:37:26 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-09-30 11:37:25 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-09-30 11:37:25 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-09-30 11:37:25 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-09-30 11:37:24 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-09-30 11:37:24 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-09-30 11:37:24 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-09-30 11:37:23 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2016-09-30 11:37:23 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-09-30 11:37:23 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-09-30 11:37:22 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-09-30 11:37:22 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-09-30 11:37:22 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-09-30 11:37:20 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-09-30 11:37:20 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2016-09-30 11:37:20 ----A---- C:\WINDOWS\explorer.exe
2016-09-30 11:37:19 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-09-30 11:37:18 ----A---- C:\WINDOWS\system32\uReFS.dll
2016-09-30 11:37:16 ----A---- C:\WINDOWS\system32\rascustom.dll
2016-09-30 11:37:16 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-09-30 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-09-30 11:37:15 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-09-30 11:37:15 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-09-30 11:37:15 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2016-09-30 11:37:15 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-09-30 11:37:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-09-30 11:37:14 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-09-30 11:37:14 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-09-30 11:37:14 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-09-30 11:37:14 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-09-30 11:37:14 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-09-30 11:37:14 ----A---- C:\WINDOWS\system32\RMapi.dll
2016-09-30 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-09-30 11:37:13 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-09-30 11:37:13 ----A---- C:\WINDOWS\system32\mprapi.dll
2016-09-30 11:37:13 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-09-30 11:37:13 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-09-30 11:37:12 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-09-30 11:37:12 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-09-30 11:37:12 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-09-30 11:37:12 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2016-09-30 11:37:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-09-30 11:37:11 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2016-09-30 11:37:11 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2016-09-30 11:37:11 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-09-30 11:37:11 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2016-09-30 11:37:11 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-09-30 11:37:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2016-09-30 11:37:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-09-30 11:37:10 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-09-30 11:37:10 ----A---- C:\WINDOWS\system32\nltest.exe
2016-09-30 11:37:10 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-09-30 11:37:09 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-09-30 11:37:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-09-30 11:37:09 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-30 11:37:09 ----A---- C:\WINDOWS\system32\cngkeyhelper.dll
2016-09-30 11:37:08 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2016-09-30 11:37:08 ----A---- C:\WINDOWS\SYSWOW64\cngkeyhelper.dll
2016-09-30 11:37:08 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-09-30 11:37:08 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-09-30 11:37:08 ----A---- C:\WINDOWS\system32\devenum.dll
2016-09-30 11:37:08 ----A---- C:\WINDOWS\system32\DataExchange.dll
2016-09-30 11:37:08 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-09-30 11:37:07 ----A---- C:\WINDOWS\SYSWOW64\DataExchange.dll
2016-09-30 11:37:07 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-09-30 11:37:07 ----A---- C:\WINDOWS\system32\RelPost.exe
2016-09-30 11:37:07 ----A---- C:\WINDOWS\system32\rasmans.dll
2016-09-30 11:37:06 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2016-09-30 11:37:06 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-09-30 11:37:06 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-09-30 11:37:06 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2016-09-30 11:37:06 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2016-09-30 11:37:06 ----A---- C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-09-30 11:37:05 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-09-30 11:37:05 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-09-30 11:37:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-09-30 11:37:05 ----A---- C:\WINDOWS\system32\setupugc.exe
2016-09-30 11:37:05 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-09-30 11:37:05 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-09-30 11:37:05 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2016-09-30 11:37:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-09-30 11:37:04 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-09-30 11:37:04 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-30 11:37:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-09-30 11:37:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-09-30 11:37:03 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-09-30 11:37:03 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-09-30 11:37:03 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2016-09-30 11:37:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2016-09-30 11:37:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-09-30 11:37:02 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-09-30 11:37:02 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-09-30 11:37:02 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-09-30 11:37:02 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-09-30 11:37:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-09-30 11:37:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2016-09-30 11:37:01 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-09-30 11:37:01 ----A---- C:\WINDOWS\system32\bootux.dll
2016-09-30 11:37:01 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-09-30 11:37:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2016-09-30 11:37:00 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2016-09-30 11:37:00 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-09-30 11:37:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-09-30 11:37:00 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-09-30 11:37:00 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-09-30 11:36:59 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-09-30 11:36:59 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2016-09-30 11:36:59 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-09-30 11:36:59 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-09-30 11:36:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2016-09-30 11:36:58 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-09-30 11:36:58 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-09-30 11:36:58 ----A---- C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-09-30 11:36:58 ----A---- C:\WINDOWS\system32\Family.Client.dll
2016-09-30 11:36:57 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2016-09-30 11:36:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-09-30 11:36:57 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-09-30 11:36:57 ----A---- C:\WINDOWS\system32\imapi2.dll
2016-09-30 11:36:57 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2016-09-30 11:36:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2016-09-30 11:36:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2016-09-30 11:36:56 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-09-30 11:36:56 ----A---- C:\WINDOWS\system32\smphost.dll
2016-09-30 11:36:56 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-09-30 11:36:56 ----A---- C:\WINDOWS\system32\appinfo.dll
2016-09-30 11:36:55 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-09-30 11:36:54 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-09-30 11:36:49 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-09-30 11:36:48 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-09-30 11:36:47 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-09-30 11:36:46 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-09-30 11:36:46 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-09-30 11:36:45 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2016-09-30 11:36:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-09-30 11:36:44 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-09-30 11:36:43 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-09-30 11:36:43 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-09-30 11:36:43 ----A---- C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-09-30 11:36:43 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-09-30 11:36:42 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-09-30 11:36:42 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2016-09-30 11:36:42 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-09-30 11:36:42 ----A---- C:\WINDOWS\SYSWOW64\NetworkCollectionAgent.dll
2016-09-30 11:36:42 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-09-30 11:36:41 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-09-30 11:36:41 ----A---- C:\WINDOWS\system32\provops.dll
2016-09-30 11:36:40 ----A---- C:\WINDOWS\system32\hvix64.exe
2016-09-30 11:36:40 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-09-30 11:36:39 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-09-30 11:36:38 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-09-30 11:36:38 ----A---- C:\WINDOWS\system32\hvax64.exe
2016-09-30 11:36:37 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-09-30 11:36:37 ----A---- C:\WINDOWS\system32\hvloader.exe
2016-09-30 11:36:36 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-09-30 11:36:36 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-09-30 11:36:36 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-09-30 11:36:36 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-09-30 11:36:36 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-09-30 11:36:35 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-09-30 11:36:35 ----A---- C:\WINDOWS\system32\mprddm.dll
2016-09-30 11:36:35 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-09-30 11:36:35 ----A---- C:\WINDOWS\system32\biwinrt.dll
2016-09-30 11:36:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-09-30 11:36:34 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2016-09-30 11:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2016-09-30 11:36:33 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-09-30 11:36:33 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-09-30 11:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-09-30 11:36:32 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2016-09-30 11:36:32 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2016-09-30 11:36:32 ----A---- C:\WINDOWS\system32\wlancfg.dll
2016-09-30 11:36:32 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-09-30 11:36:32 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-09-30 11:36:32 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-09-30 11:36:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2016-09-30 11:36:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-09-30 11:36:31 ----A---- C:\WINDOWS\SYSWOW64\pwrshplugin.dll
2016-09-30 11:36:31 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-09-30 11:36:30 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-30 11:36:30 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-09-30 11:36:30 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-09-30 11:36:29 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2016-09-30 11:36:29 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2016-09-30 11:36:29 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-09-30 11:36:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-09-30 11:36:29 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-09-30 11:36:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2016-09-30 11:36:28 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-09-30 11:36:28 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2016-09-30 11:36:28 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-09-30 11:36:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-09-30 11:36:27 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2016-09-30 11:36:27 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-09-30 11:36:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-09-30 11:36:26 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2016-09-30 11:36:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-09-30 11:36:26 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2016-09-30 11:36:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-09-30 11:36:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-09-30 11:36:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2016-09-30 11:36:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2016-09-30 11:36:25 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-09-30 11:36:23 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2016-09-30 11:36:23 ----A---- C:\WINDOWS\system32\MSAC3ENC.DLL
2016-09-30 11:36:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-09-30 11:36:17 ----A---- C:\WINDOWS\system32\msctf.dll
2016-09-30 11:36:13 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-09-30 11:36:13 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-09-30 11:36:12 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-09-30 11:36:12 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-09-30 11:36:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-09-30 11:36:08 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-09-30 11:36:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-09-30 11:36:07 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-09-30 11:36:06 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-09-30 11:36:06 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-09-30 11:36:05 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-09-30 11:36:05 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-09-30 11:36:05 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-09-30 11:36:04 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-09-30 11:36:04 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-09-30 11:36:04 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-09-30 11:36:03 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-09-30 11:36:03 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-09-30 11:36:03 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-09-30 11:36:02 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-09-30 11:36:02 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-30 11:36:02 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-09-30 11:36:01 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-09-30 11:36:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-09-30 11:36:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-09-30 11:36:01 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2016-09-30 11:36:01 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2016-09-30 11:36:00 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2016-09-30 11:36:00 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-09-30 11:36:00 ----A---- C:\WINDOWS\system32\skci.dll
2016-09-30 11:36:00 ----A---- C:\WINDOWS\system32\icsvcext.dll
2016-09-30 11:35:59 ----A---- C:\WINDOWS\system32\qedit.dll
2016-09-30 11:35:59 ----A---- C:\WINDOWS\system32\dwmapi.dll
2016-09-30 11:35:59 ----A---- C:\WINDOWS\system32\bdeunlock.exe
2016-09-30 11:35:58 ----A---- C:\WINDOWS\SYSWOW64\mprapi.dll
2016-09-30 11:35:58 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-09-30 11:35:58 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-09-30 11:35:58 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-09-30 11:35:57 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-09-30 11:35:57 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-09-30 11:35:57 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-09-30 11:35:57 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2016-09-30 11:35:56 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-09-30 11:35:56 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-09-30 11:35:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-09-30 11:35:55 ----A---- C:\WINDOWS\SYSWOW64\BackgroundMediaPolicy.dll
2016-09-30 11:35:55 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-30 11:35:55 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-30 11:35:55 ----A---- C:\WINDOWS\system32\pwrshplugin.dll
2016-09-30 11:35:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-09-30 11:35:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2016-09-30 11:35:54 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-09-30 11:35:54 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-09-30 11:35:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2016-09-30 11:35:53 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-09-30 11:35:53 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-30 11:35:53 ----A---- C:\WINDOWS\system32\sbe.dll
2016-09-30 11:35:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2016-09-30 11:35:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-09-30 11:35:52 ----A---- C:\WINDOWS\SYSWOW64\ClipboardServer.dll
2016-09-30 11:35:52 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-09-30 11:35:51 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2016-09-30 11:35:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2016-09-30 11:35:51 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2016-09-30 11:35:51 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-09-30 11:35:50 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-09-30 11:35:50 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-09-30 11:35:50 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-09-30 11:35:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2016-09-30 11:35:49 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-09-30 11:35:49 ----A---- C:\WINDOWS\system32\rshx32.dll
2016-09-30 11:35:49 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-09-30 11:35:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2016-09-30 11:35:48 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2016-09-30 11:35:48 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-09-30 11:35:48 ----A---- C:\WINDOWS\system32\odbcconf.dll

======List of files/folders modified in the last 1 month======

2016-10-28 14:39:55 ----RD---- C:\Program Files
2016-10-28 14:37:47 ----D---- C:\WINDOWS\Temp
2016-10-28 14:33:09 ----D---- C:\WINDOWS\CbsTemp
2016-10-28 14:19:05 ----D---- C:\WINDOWS\system32\SleepStudy
2016-10-28 14:04:04 ----D---- C:\WINDOWS\system32\sru
2016-10-28 13:54:56 ----D---- C:\WINDOWS\Prefetch
2016-10-28 13:40:07 ----D---- C:\WINDOWS\system32\Macromed
2016-10-28 13:40:03 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-10-27 23:17:24 ----D---- C:\WINDOWS\system32\config
2016-10-27 23:12:08 ----HD---- C:\Program Files\WindowsApps
2016-10-27 23:12:08 ----D---- C:\WINDOWS\AppReadiness
2016-10-27 22:59:06 ----D---- C:\WINDOWS\system32\catroot2
2016-10-27 22:54:53 ----D---- C:\WINDOWS\WinSxS
2016-10-27 22:54:28 ----HD---- C:\ProgramData
2016-10-27 22:11:52 ----RD---- C:\WINDOWS\Microsoft.NET
2016-10-27 22:00:00 ----D---- C:\WINDOWS\INF
2016-10-27 21:58:57 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-10-26 16:43:22 ----D---- C:\WINDOWS\system32\Tasks
2016-10-26 16:43:22 ----AD---- C:\Program Files (x86)\Opera
2016-10-24 09:05:45 ----D---- C:\WINDOWS\System32
2016-10-24 09:05:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-23 10:15:28 ----SHD---- C:\System Volume Information
2016-10-22 23:56:11 ----D---- C:\WINDOWS\system32\FxsTmp
2016-10-22 23:56:10 ----D---- C:\Users\Michal\AppData\Roaming\Nitro PDF
2016-10-22 17:32:28 ----D---- C:\Users\Michal\AppData\Roaming\Adobe
2016-10-20 22:42:00 ----D---- C:\WINDOWS\SoftwareDistribution
2016-10-20 22:41:59 ----AD---- C:\Windows
2016-10-20 22:29:41 ----D---- C:\ProgramData\Abvent
2016-10-20 22:28:01 ----SHD---- C:\WINDOWS\Installer
2016-10-20 22:23:26 ----DC---- C:\WINDOWS\Panther
2016-10-20 22:23:26 ----D---- C:\WINDOWS\debug
2016-10-20 22:20:48 ----D---- C:\Users\Michal\AppData\Roaming\Abvent_Artlantis6
2016-10-17 19:47:55 ----D---- C:\WINDOWS\rescache
2016-10-17 19:17:05 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-16 21:43:57 ----RD---- C:\WINDOWS\assembly
2016-10-15 23:23:16 ----D---- C:\WINDOWS\system32\CatRoot
2016-10-15 23:18:58 ----AD---- C:\Program Files\Microsoft Silverlight
2016-10-15 23:18:58 ----AD---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-15 23:18:55 ----D---- C:\WINDOWS\system32\drivers
2016-10-15 23:17:31 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-10-15 23:17:31 ----D---- C:\WINDOWS\SysWOW64
2016-10-15 23:17:26 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-10-15 23:17:26 ----D---- C:\WINDOWS\system32\wbem
2016-10-15 23:17:26 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-10-15 23:17:26 ----D---- C:\WINDOWS\system32\migwiz
2016-10-15 23:17:25 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-10-15 23:17:25 ----D---- C:\WINDOWS\system32\cs-CZ
2016-10-15 23:17:25 ----D---- C:\WINDOWS\system32\Boot
2016-10-15 23:17:23 ----D---- C:\WINDOWS\ShellExperiences
2016-10-15 23:17:22 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-10-15 23:17:22 ----D---- C:\Program Files\Windows Photo Viewer
2016-10-15 23:17:22 ----D---- C:\Program Files\Windows Mail
2016-10-15 23:17:22 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-10-15 21:30:13 ----D---- C:\ProgramData\Microsoft Help
2016-10-15 21:26:02 ----D---- C:\WINDOWS\system32\MRT
2016-10-15 21:17:45 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-10-15 19:54:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2016-10-15 19:54:31 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2016-10-03 22:09:37 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-09-30 21:26:43 ----D---- C:\WINDOWS\system32\WDI
2016-09-30 21:18:42 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-09-30 21:18:42 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-09-30 21:18:42 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2016-09-30 21:18:42 ----D---- C:\WINDOWS\SYSWOW64\setup
2016-09-30 21:18:42 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-09-30 21:18:42 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-09-30 21:18:26 ----D---- C:\WINDOWS\system32\Sysprep
2016-09-30 21:18:26 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2016-09-30 21:18:26 ----D---- C:\WINDOWS\system32\setup
2016-09-30 21:18:26 ----D---- C:\WINDOWS\system32\oobe
2016-09-30 21:18:26 ----D---- C:\WINDOWS\system32\migration
2016-09-30 21:18:25 ----SD---- C:\WINDOWS\system32\F12
2016-09-30 21:18:25 ----D---- C:\WINDOWS\system32\en-US
2016-09-30 21:18:25 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-09-30 21:18:25 ----D---- C:\WINDOWS\system32\Dism
2016-09-30 21:18:24 ----D---- C:\WINDOWS\system32\appraiser
2016-09-30 21:18:09 ----D---- C:\WINDOWS\Provisioning
2016-09-30 21:18:08 ----D---- C:\WINDOWS\bcastdvr
2016-09-30 21:18:08 ----D---- C:\WINDOWS\AppPatch
2016-09-30 21:18:08 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-30 21:18:07 ----D---- C:\Program Files\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2016-10-09 84640]
R0 fbfmon;fbfmon; C:\WINDOWS\system32\drivers\fbfmon.sys [2012-09-04 57952]
R0 iaStor;@oem15.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-11-29 568600]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-07-16 45920]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2016-02-21 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2016-09-12 57400]
R1 BPntDrv;BPntDrv; C:\WINDOWS\system32\drivers\BPntDrv.sys [2012-09-04 13408]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-10-09 263296]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2016-10-09 197288]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2016-10-09 208552]
R1 EpfwLWF;@oem9.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2016-10-09 61608]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2016-10-09 153248]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 ACPIVPC;@oem29.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2016-02-21 30816]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2016-07-16 7585280]
R3 clwvd;@oem18.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys [2011-01-29 31088]
R3 CnxtHdAudService;@oem34.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-08-05 1317096]
R3 dtlitescsibus;@oem20.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-12 30264]
R3 dtliteusbbus;@oem26.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-12 46392]
R3 ETD;@oem5.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-10-07 525512]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-03 3811288]
R3 IntcDAud;@oem3.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem33.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-17 62784]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-09-21 175616]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_7abb66182eb8ed83\nvlddmkm.sys [2016-09-12 13754936]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2016-10-09 15488]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-07-16 117248]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-21 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2016-07-16 121344]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 RSUSBVSTOR;@oem36.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2011-11-15 313960]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S4 DamageGuard;DamageGuard; C:\WINDOWS\system32\DRIVERS\DamageGuardX64.sys [2012-02-11 217392]
S4 dgFltr;dgFltr; C:\WINDOWS\system32\drivers\dgFltrX64.sys [2011-12-13 23648]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

[micky.m]

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-16 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_34668;CDPUserSvc_34668; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CodeMeter.exe;CodeMeter Runtime Server; C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2015-01-21 3523448]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-10-09 2780160]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-07 144072]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-03 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-02-28 161560]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-02-28 277784]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-09-21 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NitroDriverReadSpool2;NitroPDFDriverCreatorReadSpool2; C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe [2012-06-21 216072]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\NLSSRV32.EXE [2012-06-21 69640]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-08-01 1365048]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-01 2458944]
R2 OneSyncSvc_34668;Hostitel synchronizace_34668; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_34668;Data kontaktů_34668; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S2 NovaPdfServer;novaPDF Server; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [2016-01-21 51824]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-28 270016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-03 299488]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-03-17 654848]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_34668;Služba zasílání zpráv_34668; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-21 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S4 DamageGuardSvc;Lenovo Instant Reset Service; C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe [2012-03-26 572976]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

[Roli]

Zdravím, smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.


Nakonec použij Mbam z mého podpisu a dej mi sem z něj log po smazání nepořádku.

[micky.m]

# AdwCleaner v6.020 - Log soubor vytvořen 28/10/2016 na 17:37:05
# Aktualizováno dne 14/09/2016 z ToolsLib
# Databáze : 2016-10-28.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Michal - MICHAL-NTB
# Beží od : C:\Users\Michal\Desktop\adwcleaner (1).exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum



***** [ Služby ] *****



***** [ Adresáře ] *****

[-] Adresář smazán:C:\ProgramData\Partner
[-] Adresář smazán:C:\Program Files (x86)\Amazon Browser Bar
[-] Adresář smazán:C:\Program Files (x86)\Amazon\ABB


***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****

[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Klíč smazán:HKU\S-1-5-21-550771722-881670278-3369189280-1001\Software\Alexa Internet
[-] Klíč smazán:HKU\S-1-5-21-550771722-881670278-3369189280-1001\Software\wondershare
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-550771722-881670278-3369189280-1001\Software\Alexa Internet
[#] Klíč smazán po restartování:HKCU\Software\Alexa Internet
[#] Klíč smazán po restartování:HKCU\Software\wondershare
[-] Klíč smazán:HKLM\SOFTWARE\wondershare
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-550771722-881670278-3369189280-1001\Software\Alexa Internet
[#] Klíč smazán po restartování:[x64] HKCU\Software\Alexa Internet
[#] Klíč smazán po restartování:[x64] HKCU\Software\wondershare
[-] Klíč smazán:HKLM\SOFTWARE\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam


***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1968 Bajtů] - [28/10/2016 17:37:05]
C:\AdwCleaner\AdwCleaner[S0].txt - [2339 Bajtů] - [28/10/2016 17:36:30]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2116 Bajtů] ##########

[micky.m]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 28.10.2016
Čas skenování: 19:00
Protokol: mlwb log.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.10.28.09
Databáze rootkitů: v2016.09.26.02
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Michal

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 680025
Uplynulý čas: 2 hod, 51 min, 4 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 3
RiskWare.Tool.HCK, D:\$RECYCLE.BIN\S-1-5-21-550771722-881670278-3369189280-1001\$R2HC661.rar, , [b7e28519d6c4b97dc88de21a90707d83],
RiskWare.Tool.HCK, D:\$RECYCLE.BIN\S-1-5-21-550771722-881670278-3369189280-1001\$RFQ4IQM.exe, , [bddc3866475349ed5cf98e6edd23b24e],
RiskWare.Tool.CK, D:\$RECYCLE.BIN\S-1-5-21-550771722-881670278-3369189280-1001\$RXT8NST\xf-autocad-kg_x32.exe, , [7a1f88167921f046e1f56a2460a0e020],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Roli]

Bezva a jak se chová PC nyní ?

[micky.m]

Ono těžko říci, přecijen už je to několik let starý notebook a z lenosti prodělal pouze upgrade na win 10, nikoli čistou instalaci... takže tu a tam mu něco hapruje a nefunguje... ale možná na to má nárok.

Asi je to ale lepší... neúměrně dlouhá odezva, se kterou jsem se trápil poslední dobou zmizla..

[Roli]

Ono těžko říci, přecijen už je to několik let starý notebook a z lenosti prodělal pouze upgrade na win 10, nikoli čistou instalaci... takže tu a tam mu něco hapruje a nefunguje... ale možná na to má nárok.

No ono je lepší zazálohovat si důležité věci a udělat čistou instalaci.

Asi je to ale lepší... neúměrně dlouhá odezva, se kterou jsem se trápil poslední dobou zmizla..

Bezva, ještě pokud chceš můžem mrknout jak je na tom s kondicí hardware.

[micky.m]

Vím o tom... předpokládám, že o Vánocích se k tomu reinstalu dostanu.

Pokud máte chut, tak se na hardware podívat můžeme... ani nevím, že jsou takové možnosti... Díky

[Roli]

Pokud máte chut, tak se na hardware podívat můžeme... ani nevím, že jsou takové možnosti... Díky

Takhle na dálku se jich pár na to nejdůležitější najde


Stáhni HD Tune a otestuj HDD.

Benchmark - Test disku Klikni na tlačítko Start a vyčkej dokud se nezaplní celý graf. Poté se dozvíš přenosovou rychlost a přístupový čas pevného disku.

Info Přesná kapacita, souborový systém, podporované funkce, verze firmware, sériové číslo a typ zapojení disků.

Health - Kondice Seznam důležitých parametrů a jejich hodnoty. Ideální je mít všude OK.

Když je nějaká položka žlutá pravděpodobně brzy změní status na failed. Když je červená má status failed, to by znamenalo výměnu disku.

Error Scan - Hledání chyb Klikni na tlačítko Start a program prozkoumá disk zda na něm nejsou vadné bloky.

Pokud na konci testu jsou všechny zelené, je vše v pořádku. Když je byť jeden z nich červený, doporučuji zazálohovat data a počítat s výměnou disku.

Teplota Teploměr nahoře a číslo vedle něj znázorňují teplotu disku. Normální hodnota je pod 50°C. Teplota ale nesmí přesáhnout 60°C, program upozorní když dosáhne hranice 55°C.


Stáhni MEMTEST

soubor rozbal a spusť exe soubor.

Připoj flashdisk pozor vše co na něm je bude smazáno !,

v okénku Select your USB Flash Drive vyber tento disk a dej Create.

Během chvilky se Memtest nainstaluje.

Flashdisk nech v USB, restartuj PC a nabootuj z něj.

Před tím samozřemě musíš v Bios Setup do kterého se dostaneš při restartu mačkáním klávesy :

* DEL
* F2
* F1
* F10

záleží na PC, ale vždy je to na monitoru napsáno,

otevři nabídku ADVANCED BIOS FEATURES a vyhledej Boot Devices 0 až 4 nebo Boot Sequence.

Na první místo nastav Flashdisk,

na druhé pevný disk HDD, u obou položek bývá napsán i výrobce.

Stisknutím Save většinou je to F10 a potvrzením Entrem uložíš nastavení,

pak ještě stisknutím Save and Exit se dostaneš z Biosu.

Test nech projet minimálně jednou, ideálně však několikrát třeba přes noc a s každým RAM modulem zvlášť.

Pak dej vědět jak to dopadlo.