Preventivna kotrola - Hlavne zamerat na Chrome

[Sonazi]

Zdravim,

prosim prezrite mi logy ci nemam nejakeho skodca. Mam pocit ze chrom mi vyhadzuje reklamy a nie su sucastou stranok.
Dakujem

Logfile of random's system information tool 1.10 (written by random/random)
Run by Merit.sk at 2016-10-31 18:02:30
Microsoft Windows 10 Home
System drive C: has 12 GB (10%) free of 118 GB
Total RAM: 3990 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:02:46, on 31.10.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0596)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
C:\Program Files (x86)\ASUS\VirtualCamera\PropertyPagesLauncher.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Merit.sk.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus15.msn.com/?pc=ASTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus15.msn.com/?pc=ASTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [isa] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O4 - HKLM\..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{76bb0bc3-1efc-429c-9354-f7a85d52213a}: NameServer = 195.146.132.58 195.146.128.62
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASUS HID Access Service (AsHidService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe
O23 - Service: Asus GiftBox Desktop (ASUSGiftBoxDekstop) - ASUS - C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe
O23 - Service: ASUSScreenAdjustService - Unknown owner - C:\Program Files\ASUS\ASUS T100HAN DisplayControl\ASUSScreenAdjustService.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @oem12.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @oem29.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform & Thermal Framework Processor Participant Service Application (DptfParticipantProcessorService) - Unknown owner - C:\WINDOWS\system32\DptfParticipantProcessorService.exe (file missing)
O23 - Service: @oem29.inf,%WIN32_DPTF_PARTICIPANT_WIRELESS_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform & Thermal Framework Wireless Participant Service Application (DptfParticipantWirelessService) - Unknown owner - C:\WINDOWS\System32\DptfParticipantWirelessService.exe (file missing)
O23 - Service: @oem29.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform & Thermal Framework Critical Service Application (DptfPolicyCriticalService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyCriticalService.exe (file missing)
O23 - Service: @oem29.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform & Thermal Framework Low Power Mode Service Application (DptfPolicyLpmService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyLpmService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Internet Manager. OUC (Internet Manager. RunOuc) - Unknown owner - C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: WPS Office Update Service (Kingsoft_WPS_UpdateService) - Zhuhai Kingsoft Office Software Co.,Ltd - C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11932 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8275a477-4534-41b1-8458-1b5cd8b120d2 -SystemEventPortName:HostProcess-c41acba3-43d2-4b4a-b177-ced223baa120 -IoCancelEventPortName:HostProcess-ca90a97a-f4f8-441f-9706-76520d55c77f -NonStateChangingEventPortName:HostProcess-5fa1be32-bdfc-40e4-8290-fee4c5044ffc -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:81d5495e-7d6f-44a6-bc51-e6233cab41b2 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\WLANExt.exe 2161768576928
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\DptfPolicyCriticalService.exe
C:\WINDOWS\system32\DptfPolicyLpmService.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\DptfParticipantProcessorService.exe
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe"
"C:\Program Files\ASUS\ASUS T100HAN DisplayControl\ASUSScreenAdjustService.exe"
"C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel

"C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/T-Mobile/InternetManager_H/UpdateDog/"

"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files\ASUS\ASUS T100HAN DisplayControl\T100DisplayControl.exe"
"C:\Program Files\ASUS\ASUS T100HAN DisplayControl\ContinuumAdjust.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\ProgramData\DatacardService\DCSHelper.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
/QuitInfo:0000000000000DA8;0000000000000DAC;
/loadhooks /Parent:00000000000011f0
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
"C:\Windows\System32\DptfPolicyLpmServiceHelper.exe"
"C:\Program Files\Realtek\Audio\AP\RtkNGUI64.exe" /s
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"
"C:\Program Files (x86)\ASUS\VirtualCamera\PropertyPagesLauncher.exe"
/S
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Merit.sk\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=54.0.2840.71 --handshake-handle=0x190
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoPrrOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_75/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_11/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Enabled-slow2g/" --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,15,19,33,50,59 --gpu-vendor-id=0x8086 --gpu-device-id=0x22b0 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4263 --gpu-driver-date=8-3-2015 --mojo-application-channel-token=8E6C4E85EA247C9F3D0814C902F3F069 --mojo-platform-channel-handle=1252 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoPrrOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_75/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_11/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Enabled-slow2g/" --primordial-pipe-token=ED571893991CEF8F890A76195550F12E --lang=sk --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=ED571893991CEF8F890A76195550F12E --channel="5212.0.849114226\1712092532" --mojo-platform-channel-handle=2212 /prefetch:1
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\ProgramData\Internet Manager\OnlineUpdate\LiveUpd.exe" auto C:/Program" "Files" "(x86)/T-Mobile/InternetManager_H/
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/*AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoPrrOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_75/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_11/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Enabled-slow2g/" --primordial-pipe-token=BE27F9D40112B3FF67E29C4DFB4725D8 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=BE27F9D40112B3FF67E29C4DFB4725D8 --channel="5212.16.907456974\2107210819" --mojo-platform-channel-handle=5500 /prefetch:1
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{478B41E6-3257-4519-BDA8-E971F9843849}
"C:\WINDOWS\System32\NetworkUXBroker.exe" -ServerName:Windows.Networking.UX
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/*AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoPrrOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_75/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_11/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Enabled-slow2g/" --primordial-pipe-token=98EF48CEA41A41BAD51730A4A43E1984 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=98EF48CEA41A41BAD51730A4A43E1984 --channel="5212.17.1700583466\1626472089" --mojo-platform-channel-handle=4580 /prefetch:1
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 640 644 652 8192 648
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetServiceDss -RestrictPrivileges -AccessKey 0E38D19F-CD5D-7756-0CAE-4ED38D42E0CF -Reinvoke

"C:\Users\Merit.sk\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\WpsNotifyTask_Administrator.job - C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe -from=task
C:\WINDOWS\tasks\WpsUpdateTask_Administrator.job - C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe -from=task

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DptfPolicyLpmServiceHelper"=C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [2015-09-09 110696]
"RtkNGUI"=C:\Program Files\Realtek\Audio\AP\RtkNGUI64.exe [2015-07-22 9396224]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-25 633024]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-09-12 29645440]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2016-09-07 465920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]
"Uninstall C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]
"Uninstall C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]
"Uninstall C:\Users\Merit.sk\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"isa"=C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-02-26 330240]
"WebStorage"=C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [2015-05-31 63272]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2ce.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaspie.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

[Sonazi]

Pokracovanie logu



======List of files/folders created in the last 1 month======

2016-10-31 18:02:31 ----D---- C:\Program Files\trend micro
2016-10-31 18:02:30 ----D---- C:\rsit
2016-10-31 17:29:00 ----A---- C:\WINDOWS\system32\drivers\20161031_17290843_SHIM_Dump.txt
2016-10-31 17:29:00 ----A---- C:\WINDOWS\system32\drivers\20161031_17290843_CheckPoint_Dump.txt
2016-10-31 12:12:11 ----A---- C:\WINDOWS\system32\drivers\20161031_121211156_SHIM_Dump.txt
2016-10-31 12:12:11 ----A---- C:\WINDOWS\system32\drivers\20161031_121211131_CheckPoint_Dump.txt
2016-10-31 12:04:49 ----D---- C:\ProgramData\HitmanPro
2016-10-31 11:56:30 ----A---- C:\WINDOWS\system32\drivers\20161031_115630189_SHIM_Dump.txt
2016-10-31 11:56:30 ----A---- C:\WINDOWS\system32\drivers\20161031_115630189_CheckPoint_Dump.txt
2016-10-31 11:42:28 ----D---- C:\ProgramData\Malwarebytes
2016-10-31 11:37:33 ----A---- C:\WINDOWS\system32\drivers\20161031_113733237_SHIM_Dump.txt
2016-10-31 11:37:33 ----A---- C:\WINDOWS\system32\drivers\20161031_113733237_CheckPoint_Dump.txt
2016-10-31 11:32:52 ----D---- C:\AdwCleaner
2016-10-31 10:50:16 ----A---- C:\autoexec.bat
2016-10-31 10:32:17 ----A---- C:\WINDOWS\system32\drivers\20161031_103217548_SHIM_Dump.txt
2016-10-31 10:32:17 ----A---- C:\WINDOWS\system32\drivers\20161031_103217548_CheckPoint_Dump.txt
2016-10-31 10:26:21 ----AD---- C:\Program Files\CCleaner
2016-10-29 11:29:14 ----A---- C:\WINDOWS\system32\drivers\20161029_122914391_SHIM_Dump.txt
2016-10-29 11:29:14 ----A---- C:\WINDOWS\system32\drivers\20161029_122914391_CheckPoint_Dump.txt
2016-10-29 09:43:12 ----A---- C:\WINDOWS\system32\drivers\20161029_104312709_SHIM_Dump.txt
2016-10-29 09:43:12 ----A---- C:\WINDOWS\system32\drivers\20161029_104312709_CheckPoint_Dump.txt
2016-10-29 09:36:26 ----SHD---- C:\Config.Msi
2016-10-28 20:49:11 ----D---- C:\WINDOWS\Panther
2016-10-28 20:49:05 ----HD---- C:\$WINDOWS.~BT
2016-10-28 13:02:28 ----A---- C:\WINDOWS\system32\drivers\20161028_14228105_SHIM_Dump.txt
2016-10-28 13:02:28 ----A---- C:\WINDOWS\system32\drivers\20161028_14228105_CheckPoint_Dump.txt
2016-10-19 21:46:10 ----A---- C:\WINDOWS\system32\drivers\20161019_224610468_SHIM_Dump.txt
2016-10-19 21:46:10 ----A---- C:\WINDOWS\system32\drivers\20161019_224610468_CheckPoint_Dump.txt
2016-10-16 13:54:50 ----A---- C:\WINDOWS\system32\drivers\20161016_145450647_SHIM_Dump.txt
2016-10-16 13:54:50 ----A---- C:\WINDOWS\system32\drivers\20161016_145450647_CheckPoint_Dump.txt
2016-10-16 12:14:09 ----A---- C:\WINDOWS\system32\drivers\20161016_13149820_SHIM_Dump.txt
2016-10-16 12:14:09 ----A---- C:\WINDOWS\system32\drivers\20161016_13149820_CheckPoint_Dump.txt
2016-10-16 02:34:22 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-10-16 02:34:22 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-10-16 02:34:21 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-10-16 02:34:21 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-10-16 02:34:20 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-10-16 02:34:20 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-10-16 02:34:19 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-10-16 02:34:17 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-16 02:34:15 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-10-16 02:34:12 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-10-16 02:34:11 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-10-16 02:34:11 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-10-16 02:34:11 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-10-16 02:34:10 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-10-16 02:34:10 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-10-16 02:34:10 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-10-16 02:34:08 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-10-16 02:34:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-10-16 02:34:02 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-16 02:34:01 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-16 02:34:00 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-10-16 02:33:59 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-16 02:33:59 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-10-16 02:33:59 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-16 02:33:58 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-10-16 02:33:57 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-10-16 02:33:56 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-16 02:33:55 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-16 02:33:52 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-10-16 02:33:52 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-10-16 02:33:51 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-10-16 02:33:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-10-16 02:33:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-10-16 02:33:49 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-16 02:33:48 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-10-16 02:33:36 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-10-16 02:33:35 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-16 02:33:33 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-10-16 02:33:33 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-10-16 02:33:32 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-10-16 02:33:32 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-10-16 02:33:30 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-16 02:33:27 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-16 02:33:23 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-10-16 02:33:23 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-10-16 02:33:22 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-16 02:33:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-16 02:33:18 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-10-16 02:33:15 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-10-16 02:33:15 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-10-16 02:33:14 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-10-16 02:33:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-10-16 02:33:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-10-16 02:33:11 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-16 02:33:11 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-10-16 02:33:10 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-10-16 02:33:08 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-16 02:33:08 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-10-16 02:33:07 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-10-16 02:33:07 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-16 02:33:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-16 02:33:04 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-10-16 02:33:03 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-16 02:33:02 ----A---- C:\WINDOWS\system32\tquery.dll
2016-10-16 02:33:01 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-10-16 02:33:00 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2016-10-16 02:32:59 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-10-16 02:32:58 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-10-16 02:32:58 ----A---- C:\WINDOWS\system32\combase.dll
2016-10-16 02:32:57 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-10-16 02:32:57 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-10-16 02:32:56 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-16 02:32:54 ----A---- C:\WINDOWS\system32\Wpc.dll
2016-10-16 02:32:54 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-16 02:32:53 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-10-16 02:32:52 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-10-16 02:32:52 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-10-16 02:32:50 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-10-16 02:32:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-10-16 02:32:49 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-10-16 02:32:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-10-16 02:32:48 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-10-16 02:32:48 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2016-10-16 02:32:47 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-10-16 02:32:47 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-10-16 02:32:46 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-10-16 02:32:46 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-10-16 02:32:45 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2016-10-16 02:32:45 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2016-10-16 02:32:44 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-16 02:32:43 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-16 02:32:42 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-10-16 02:32:40 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2016-10-16 02:32:38 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-16 02:32:37 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-10-16 02:32:37 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2016-10-16 02:32:36 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2016-10-16 02:32:36 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-16 02:32:35 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-10-16 02:32:35 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-16 02:32:35 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-10-16 02:32:34 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-10-16 02:32:33 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-10-16 02:32:33 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-16 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-10-16 02:32:32 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-10-16 02:32:31 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-10-16 02:32:30 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-16 02:32:30 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-16 02:32:29 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-10-16 02:32:28 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-10-16 02:32:28 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-16 02:32:28 ----A---- C:\WINDOWS\explorer.exe
2016-10-16 02:32:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-16 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-10-16 02:32:25 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-10-16 02:32:24 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-16 02:32:22 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-10-16 02:32:22 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-10-16 02:32:21 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2016-10-16 02:32:21 ----A---- C:\WINDOWS\system32\OpcServices.dll
2016-10-16 02:32:21 ----A---- C:\WINDOWS\system32\mmc.exe
2016-10-16 02:32:20 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2016-10-16 02:32:20 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-10-16 02:32:20 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-10-16 02:32:20 ----A---- C:\WINDOWS\system32\moshost.dll
2016-10-16 02:32:20 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-10-16 02:32:20 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-10-16 02:32:19 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-10-16 02:32:19 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-10-16 02:32:19 ----A---- C:\WINDOWS\system32\InputService.dll
2016-10-16 02:32:18 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-10-16 02:32:18 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-10-16 02:32:17 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-10-16 02:32:17 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-16 02:32:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-10-16 02:32:16 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-10-16 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-10-16 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-16 02:32:14 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-10-16 02:32:13 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-10-16 02:32:13 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-10-16 02:32:13 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-10-16 02:32:13 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-10-16 02:32:12 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2016-10-16 02:32:12 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-10-16 02:32:11 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-10-16 02:32:11 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-16 02:32:10 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-10-16 02:32:10 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-16 02:32:09 ----A---- C:\WINDOWS\system32\Pimstore.dll
2016-10-16 02:32:09 ----A---- C:\WINDOWS\system32\authui.dll
2016-10-16 02:32:08 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-10-16 02:32:08 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2016-10-16 02:32:07 ----A---- C:\WINDOWS\system32\winmde.dll
2016-10-16 02:32:07 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-16 02:32:07 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-10-16 02:32:05 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-10-16 02:32:05 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-10-16 02:32:04 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-10-16 02:32:04 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-16 02:32:04 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2016-10-16 02:32:03 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-10-16 02:32:02 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2016-10-16 02:32:02 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-10-16 02:32:02 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-10-16 02:32:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-10-16 02:32:01 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-10-16 02:32:01 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-10-16 02:32:00 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-10-16 02:32:00 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-16 02:32:00 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-16 02:32:00 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-10-16 02:31:59 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2016-10-16 02:31:59 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-16 02:31:59 ----A---- C:\WINDOWS\system32\VSSVC.exe
2016-10-16 02:31:58 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-10-16 02:31:58 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-16 02:31:57 ----A---- C:\WINDOWS\SYSWOW64\pla.dll
2016-10-16 02:31:56 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2016-10-16 02:31:56 ----A---- C:\WINDOWS\system32\msctf.dll
2016-10-16 02:31:55 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-10-16 02:31:55 ----A---- C:\WINDOWS\system32\ole32.dll
2016-10-16 02:31:54 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-10-16 02:31:54 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-10-16 02:31:54 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-10-16 02:31:53 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-10-16 02:31:53 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-10-16 02:31:53 ----A---- C:\WINDOWS\system32\webservices.dll
2016-10-16 02:31:52 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-10-16 02:31:52 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-10-16 02:31:51 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-16 02:31:51 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-10-16 02:31:50 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2016-10-16 02:31:50 ----A---- C:\WINDOWS\system32\w32time.dll
2016-10-16 02:31:50 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-16 02:31:48 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-10-16 02:31:47 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-10-16 02:31:47 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-10-16 02:31:46 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc.dll
2016-10-16 02:31:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-10-16 02:31:46 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-10-16 02:31:45 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-10-16 02:31:45 ----A---- C:\WINDOWS\SYSWOW64\comuid.dll
2016-10-16 02:31:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-16 02:31:45 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-10-16 02:31:45 ----A---- C:\WINDOWS\system32\diagperf.dll
2016-10-16 02:31:44 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-10-16 02:31:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-16 02:31:43 ----A---- C:\WINDOWS\SYSWOW64\Pimstore.dll
2016-10-16 02:31:43 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-16 02:31:43 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-10-16 02:31:43 ----A---- C:\WINDOWS\system32\vssapi.dll
2016-10-16 02:31:43 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-10-16 02:31:42 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-10-16 02:31:42 ----A---- C:\WINDOWS\system32\wmdrmdev.dll
2016-10-16 02:31:42 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-10-16 02:31:41 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-10-16 02:31:41 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-16 02:31:41 ----A---- C:\WINDOWS\system32\invagent.dll
2016-10-16 02:31:40 ----A---- C:\WINDOWS\system32\winmsipc.dll
2016-10-16 02:31:39 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-10-16 02:31:39 ----A---- C:\WINDOWS\system32\xpsservices.dll
2016-10-16 02:31:38 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-10-16 02:31:38 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-16 02:31:38 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-10-16 02:31:37 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-10-16 02:31:37 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-10-16 02:31:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2016-10-16 02:31:36 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-10-16 02:31:36 ----A---- C:\WINDOWS\system32\comuid.dll
2016-10-16 02:31:35 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2016-10-16 02:31:35 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-10-16 02:31:35 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2016-10-16 02:31:35 ----A---- C:\WINDOWS\system32\aepic.dll
2016-10-16 02:31:34 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2016-10-16 02:31:34 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-10-16 02:31:34 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-10-16 02:31:33 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-10-16 02:31:32 ----A---- C:\WINDOWS\SYSWOW64\XpsFilt.dll
2016-10-16 02:31:32 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-10-16 02:31:32 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-16 02:31:32 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-16 02:31:31 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-10-16 02:31:31 ----A---- C:\WINDOWS\system32\termsrv.dll
2016-10-16 02:31:30 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-10-16 02:31:30 ----A---- C:\WINDOWS\system32\MSAJApi.dll
2016-10-16 02:31:30 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-10-16 02:31:29 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2016-10-16 02:31:29 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2016-10-16 02:31:29 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-10-16 02:31:29 ----A---- C:\WINDOWS\system32\PhoneOm.dll
2016-10-16 02:31:29 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2016-10-16 02:31:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-10-16 02:31:28 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-10-16 02:31:27 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-10-16 02:31:27 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-10-16 02:31:27 ----A---- C:\WINDOWS\system32\gameux.dll
2016-10-16 02:31:26 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-16 02:31:26 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-10-16 02:31:26 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-10-16 02:31:25 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-10-16 02:31:25 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-10-16 02:31:25 ----A---- C:\WINDOWS\system32\rdpcore.dll
2016-10-16 02:31:24 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-10-16 02:31:24 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2016-10-16 02:31:23 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2016-10-16 02:31:23 ----A---- C:\WINDOWS\system32\wlidprov.dll
2016-10-16 02:31:23 ----A---- C:\WINDOWS\system32\WlanMM.dll
2016-10-16 02:31:23 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-10-16 02:31:22 ----A---- C:\WINDOWS\SYSWOW64\PhoneOm.dll
2016-10-16 02:31:22 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-10-16 02:31:22 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-16 02:31:22 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-10-16 02:31:21 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2016-10-16 02:31:21 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-10-16 02:31:21 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-10-16 02:31:21 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-10-16 02:31:20 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2016-10-16 02:31:20 ----A---- C:\WINDOWS\SYSWOW64\hnetcfg.dll
2016-10-16 02:31:20 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-10-16 02:31:20 ----A---- C:\WINDOWS\system32\tdh.dll
2016-10-16 02:31:20 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-10-16 02:31:19 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-10-16 02:31:19 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-10-16 02:31:19 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-10-16 02:31:19 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-10-16 02:31:18 ----A---- C:\WINDOWS\SYSWOW64\winmsipc.dll
2016-10-16 02:31:18 ----A---- C:\WINDOWS\SYSWOW64\MSAJApi.dll
2016-10-16 02:31:18 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-10-16 02:31:18 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-16 02:31:17 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-10-16 02:31:17 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-10-16 02:31:17 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2016-10-16 02:31:16 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2016-10-16 02:31:16 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2016-10-16 02:31:16 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-10-16 02:31:15 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-10-16 02:31:15 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2016-10-16 02:31:14 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-10-16 02:31:14 ----A---- C:\WINDOWS\system32\rpcss.dll
2016-10-16 02:31:14 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-10-16 02:31:14 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-10-16 02:31:13 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-10-16 02:31:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-16 02:31:13 ----A---- C:\WINDOWS\system32\wer.dll
2016-10-16 02:31:12 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-10-16 02:31:12 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-10-16 02:31:12 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-10-16 02:31:11 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-10-16 02:31:11 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-10-16 02:31:11 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-10-16 02:31:11 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2016-10-16 02:31:10 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-10-16 02:31:10 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-10-16 02:31:10 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-10-16 02:31:10 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-10-16 02:31:09 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-10-16 02:31:09 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2016-10-16 02:31:09 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-10-16 02:31:08 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-10-16 02:31:08 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-10-16 02:31:08 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-16 02:31:07 ----A---- C:\WINDOWS\SYSWOW64\filemgmt.dll
2016-10-16 02:31:07 ----A---- C:\WINDOWS\system32\wmdrmsdk.dll
2016-10-16 02:31:07 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-10-16 02:31:07 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-10-16 02:31:06 ----A---- C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2016-10-16 02:31:06 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-16 02:31:05 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2016-10-16 02:31:05 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-10-16 02:31:05 ----A---- C:\WINDOWS\system32\certca.dll
2016-10-16 02:31:05 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-16 02:31:04 ----A---- C:\WINDOWS\SYSWOW64\wmdrmdev.dll
2016-10-16 02:31:04 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-10-16 02:31:04 ----A---- C:\WINDOWS\system32\swprv.dll
2016-10-16 02:31:04 ----A---- C:\WINDOWS\system32\mprddm.dll
2016-10-16 02:31:04 ----A---- C:\WINDOWS\system32\mf.dll
2016-10-16 02:31:04 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-10-16 02:31:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-10-16 02:31:03 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-10-16 02:31:03 ----A---- C:\WINDOWS\system32\nettrace.dll
2016-10-16 02:31:02 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2016-10-16 02:31:02 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-10-16 02:31:02 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-16 02:31:02 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2016-10-16 02:31:01 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-10-16 02:31:01 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-10-16 02:31:01 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-10-16 02:31:01 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-10-16 02:31:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-10-16 02:31:00 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2016-10-16 02:31:00 ----A---- C:\WINDOWS\system32\vds.exe
2016-10-16 02:31:00 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2016-10-16 02:31:00 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-10-16 02:31:00 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2016-10-16 02:31:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-10-16 02:30:59 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2016-10-16 02:30:59 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-10-16 02:30:59 ----A---- C:\WINDOWS\system32\XpsFilt.dll
2016-10-16 02:30:59 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2016-10-16 02:30:59 ----A---- C:\WINDOWS\system32\defragsvc.dll
2016-10-16 02:30:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-10-16 02:30:58 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-10-16 02:30:58 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-10-16 02:30:58 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-10-16 02:30:57 ----A---- C:\WINDOWS\system32\wiaservc.dll
2016-10-16 02:30:57 ----A---- C:\WINDOWS\system32\mispace.dll
2016-10-16 02:30:57 ----A---- C:\WINDOWS\system32\apphelp.dll
2016-10-16 02:30:56 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2016-10-16 02:30:56 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2016-10-16 02:30:56 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-10-16 02:30:56 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys
2016-10-16 02:30:55 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-10-16 02:30:55 ----A---- C:\WINDOWS\system32\wbemcomn.dll
2016-10-16 02:30:55 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-10-16 02:30:54 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-10-16 02:30:54 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-10-16 02:30:54 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-10-16 02:30:54 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-16 02:30:53 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-10-16 02:30:53 ----A---- C:\WINDOWS\system32\wpx.dll
2016-10-16 02:30:53 ----A---- C:\WINDOWS\system32\sdengin2.dll
2016-10-16 02:30:53 ----A---- C:\WINDOWS\system32\resutils.dll
2016-10-16 02:30:53 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-10-16 02:30:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-10-16 02:30:52 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-10-16 02:30:52 ----A---- C:\WINDOWS\system32\propsys.dll
2016-10-16 02:30:52 ----A---- C:\WINDOWS\system32\pla.dll
2016-10-16 02:30:51 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-10-16 02:30:51 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-10-16 02:30:51 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-10-16 02:30:51 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-10-16 02:30:51 ----A---- C:\WINDOWS\system32\quartz.dll
2016-10-16 02:30:50 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-10-16 02:30:50 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-10-16 02:30:49 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-16 02:30:49 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-10-16 02:30:48 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-10-16 02:30:47 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-10-16 02:30:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-10-16 02:30:46 ----A---- C:\WINDOWS\SYSWOW64\certca.dll
2016-10-16 02:30:46 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-10-16 02:30:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-10-16 02:30:45 ----A---- C:\WINDOWS\SYSWOW64\wbemcomn.dll
2016-10-16 02:30:45 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-10-16 02:30:45 ----A---- C:\WINDOWS\system32\kernel32.dll
2016-10-16 02:30:45 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-10-16 02:30:44 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2016-10-16 02:30:44 ----A---- C:\WINDOWS\system32\SecureTimeAggregator.dll
2016-10-16 02:30:43 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-10-16 02:30:43 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-16 02:30:43 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-10-16 02:30:43 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-16 02:30:43 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-10-16 02:30:42 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2016-10-16 02:30:42 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-10-16 02:30:42 ----A---- C:\WINDOWS\system32\wmpeffects.dll
2016-10-16 02:30:42 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2016-10-16 02:30:41 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-10-16 02:30:41 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-10-16 02:30:41 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2016-10-16 02:30:41 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-10-16 02:30:41 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-10-16 02:30:41 ----A---- C:\WINDOWS\system32\APHostService.dll
2016-10-16 02:30:40 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2016-10-16 02:30:40 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-10-16 02:30:40 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-10-16 02:30:40 ----A---- C:\WINDOWS\system32\lsass.exe
2016-10-16 02:30:40 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-16 02:30:39 ----A---- C:\WINDOWS\SYSWOW64\wmdrmsdk.dll
2016-10-16 02:30:39 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-10-16 02:30:39 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-10-16 02:30:39 ----A---- C:\WINDOWS\system32\mfps.dll
2016-10-16 02:30:38 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2016-10-16 02:30:38 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2016-10-16 02:30:38 ----A---- C:\WINDOWS\system32\wbengine.exe
2016-10-16 02:30:38 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-10-16 02:30:38 ----A---- C:\WINDOWS\system32\icsvc.dll
2016-10-16 02:30:38 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-10-16 02:30:37 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-16 02:30:37 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-10-16 02:30:37 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-10-16 02:30:36 ----A---- C:\WINDOWS\SYSWOW64\wmpeffects.dll
2016-10-16 02:30:36 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-10-16 02:30:36 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-10-16 02:30:35 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-10-16 02:30:35 ----A---- C:\WINDOWS\system32\upnphost.dll
2016-10-16 02:30:35 ----A---- C:\WINDOWS\system32\netman.dll
2016-10-16 02:30:35 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-10-16 02:30:34 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-10-16 02:30:34 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-10-16 02:30:34 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-10-16 02:30:34 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-10-16 02:30:33 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2016-10-16 02:30:33 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2016-10-16 02:30:33 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-10-16 02:30:33 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2016-10-16 02:30:33 ----A---- C:\WINDOWS\system32\shsetup.dll
2016-10-16 02:30:33 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-16 02:30:33 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2016-10-16 02:30:32 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-10-16 02:30:32 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-10-16 02:30:32 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2016-10-16 02:30:32 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-10-16 02:30:31 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-10-16 02:30:31 ----A---- C:\WINDOWS\system32\usocore.dll
2016-10-16 02:30:31 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2016-10-16 02:30:31 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-10-16 02:30:31 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2016-10-16 02:30:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-10-16 02:30:30 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-16 02:30:30 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-16 02:30:30 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-10-16 02:30:30 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-10-16 02:30:30 ----A---- C:\WINDOWS\system32\azroles.dll
2016-10-16 02:30:29 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2016-10-16 02:30:29 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-10-16 02:30:29 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-10-16 02:30:29 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-10-16 02:30:29 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2016-10-16 02:30:29 ----A---- C:\WINDOWS\system32\csrsrv.dll
2016-10-16 02:30:28 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-10-16 02:30:28 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-10-16 02:30:28 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-16 02:30:28 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-10-16 02:30:28 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-10-16 02:30:27 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2016-10-16 02:30:27 ----A---- C:\WINDOWS\system32\sppcext.dll
2016-10-16 02:30:27 ----A---- C:\WINDOWS\system32\cryptui.dll
2016-10-16 02:30:26 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-10-16 02:30:26 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-10-16 02:30:26 ----A---- C:\WINDOWS\system32\filemgmt.dll
2016-10-16 02:30:26 ----A---- C:\WINDOWS\system32\das.dll
2016-10-16 02:30:25 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-10-16 02:30:25 ----A---- C:\WINDOWS\system32\wusa.exe
2016-10-16 02:30:25 ----A---- C:\WINDOWS\system32\winipcsecproc_ssp.dll
2016-10-16 02:30:25 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-10-16 02:30:25 ----A---- C:\WINDOWS\system32\netcfgx.dll
2016-10-16 02:30:24 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-10-16 02:30:24 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-10-16 02:30:24 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-10-16 02:30:24 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-10-16 02:30:24 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-10-16 02:30:23 ----A---- C:\WINDOWS\SYSWOW64\XpsDocumentTargetPrint.dll
2016-10-16 02:30:23 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-10-16 02:30:23 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-16 02:30:22 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc_ssp.dll
2016-10-16 02:30:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Cortana.ProxyStub.dll
2016-10-16 02:30:22 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2016-10-16 02:30:22 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2016-10-16 02:30:22 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-10-16 02:30:21 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2016-10-16 02:30:21 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-10-16 02:30:21 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-10-16 02:30:20 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-10-16 02:30:20 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-10-16 02:30:20 ----A---- C:\WINDOWS\SYSWOW64\cic.dll
2016-10-16 02:30:20 ----A---- C:\WINDOWS\system32\evr.dll
2016-10-16 02:30:19 ----A---- C:\WINDOWS\system32\WSService.dll
2016-10-16 02:30:19 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-16 02:30:19 ----A---- C:\WINDOWS\system32\localspl.dll
2016-10-16 02:30:19 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-10-16 02:30:19 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-10-16 02:30:18 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-10-16 02:30:18 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-10-16 02:30:18 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-10-16 02:30:18 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2016-10-16 02:30:18 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-10-16 02:30:17 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-10-16 02:30:17 ----A---- C:\WINDOWS\SYSWOW64\azroleui.dll
2016-10-16 02:30:17 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-16 02:30:17 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-10-16 02:30:16 ----A---- C:\WINDOWS\system32\winipcfile.dll
2016-10-16 02:30:16 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-10-16 02:30:16 ----A---- C:\WINDOWS\system32\hal.dll
2016-10-16 02:30:16 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-10-16 02:30:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2016-10-16 02:30:15 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-10-16 02:30:15 ----A---- C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2016-10-16 02:30:15 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-10-16 02:30:14 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2016-10-16 02:30:14 ----A---- C:\WINDOWS\system32\puiobj.dll
2016-10-16 02:30:13 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2016-10-16 02:30:13 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-10-16 02:30:13 ----A---- C:\WINDOWS\system32\mmcbase.dll
2016-10-16 02:30:13 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-10-16 02:30:13 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-10-16 02:30:12 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-10-16 02:30:12 ----A---- C:\WINDOWS\system32\mmcshext.dll
2016-10-16 02:30:12 ----A---- C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2016-10-16 02:30:11 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-10-16 02:30:11 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-10-16 02:30:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-16 02:30:11 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-10-16 02:30:11 ----A---- C:\WINDOWS\system32\fdProxy.dll
2016-10-16 02:30:10 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-10-16 02:30:10 ----A---- C:\WINDOWS\system32\SRH.dll
2016-10-16 02:30:10 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-10-16 02:30:09 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-10-16 02:30:09 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-10-16 02:30:09 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-10-16 02:30:09 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-10-16 02:30:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2016-10-16 02:30:08 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2016-10-16 02:30:08 ----A---- C:\WINDOWS\SYSWOW64\mmcbase.dll
2016-10-16 02:30:08 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2016-10-16 02:30:07 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2016-10-16 02:30:07 ----A---- C:\WINDOWS\system32\DbgModel.dll
2016-10-16 02:30:06 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-10-16 02:30:06 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-10-16 02:30:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-16 02:30:05 ----A---- C:\WINDOWS\SYSWOW64\mmcshext.dll
2016-10-16 02:30:05 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-10-16 02:30:05 ----A---- C:\WINDOWS\system32\WebClnt.dll
2016-10-16 02:30:05 ----A---- C:\WINDOWS\system32\vss_ps.dll
2016-10-16 02:30:05 ----A---- C:\WINDOWS\system32\spcompat.dll
2016-10-16 02:30:05 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-10-16 02:30:05 ----A---- C:\WINDOWS\system32\azroleui.dll
2016-10-16 02:30:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-10-16 02:30:04 ----A---- C:\WINDOWS\SYSWOW64\VoipRT.dll
2016-10-16 02:30:04 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2016-10-16 02:30:04 ----A---- C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-10-16 02:30:04 ----A---- C:\WINDOWS\system32\rasgcw.dll
2016-10-16 02:30:03 ----A---- C:\WINDOWS\SYSWOW64\usbceip.dll
2016-10-16 02:30:03 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-10-16 02:30:03 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2016-10-16 02:30:03 ----A---- C:\WINDOWS\system32\VoipRT.dll
2016-10-16 02:30:03 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-10-16 02:30:03 ----A---- C:\WINDOWS\system32\dbghelp.dll
2016-10-16 02:30:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-10-16 02:30:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-10-16 02:30:02 ----A---- C:\WINDOWS\system32\wdc.dll
2016-10-16 02:30:02 ----A---- C:\WINDOWS\system32\udhisapi.dll
2016-10-16 02:30:02 ----A---- C:\WINDOWS\system32\mprdim.dll
2016-10-16 02:29:59 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2016-10-16 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsExt.dll
2016-10-16 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2016-10-16 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2016-10-16 02:29:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-16 02:29:58 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-16 02:29:57 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-10-16 02:29:57 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-10-16 02:29:57 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2016-10-16 02:29:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2016-10-16 02:29:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2016-10-16 02:29:56 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2016-10-16 02:29:56 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-16 02:29:56 ----A---- C:\WINDOWS\system32\davclnt.dll
2016-10-16 02:29:56 ----A---- C:\WINDOWS\system32\bcdedit.exe
2016-10-16 02:29:55 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-10-16 02:29:55 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-16 02:29:55 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-10-16 02:29:54 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2016-10-16 02:29:54 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-10-16 02:29:54 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2016-10-16 02:29:54 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2016-10-16 02:29:54 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-10-16 02:29:53 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-10-16 02:29:53 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2016-10-16 02:29:53 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2016-10-16 02:29:53 ----A---- C:\WINDOWS\system32\ieui.dll
2016-10-16 02:29:52 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-10-16 02:29:52 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-10-16 02:29:52 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-16 02:29:52 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-10-16 02:29:52 ----A---- C:\WINDOWS\system32\upnpcont.exe
2016-10-16 02:29:51 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2016-10-16 02:29:51 ----A---- C:\WINDOWS\system32\WalletService.dll
2016-10-16 02:29:51 ----A---- C:\WINDOWS\system32\sti.dll
2016-10-16 02:29:51 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-10-16 02:29:51 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-10-16 02:29:51 ----A---- C:\WINDOWS\system32\drivers\MTConfig.sys
2016-10-16 02:29:50 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-10-16 02:29:50 ----A---- C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-10-16 02:29:50 ----A---- C:\WINDOWS\system32\authfwcfg.dll
2016-10-16 02:29:49 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-10-16 02:29:49 ----A---- C:\WINDOWS\SYSWOW64\azroles.dll
2016-10-16 02:29:49 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-10-16 02:29:49 ----A---- C:\WINDOWS\system32\comdlg32.dll
2016-10-16 02:29:48 ----A---- C:\WINDOWS\SYSWOW64\syncutil.dll
2016-10-16 02:29:48 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-10-16 02:29:48 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2016-10-16 02:29:48 ----A---- C:\WINDOWS\system32\gpedit.dll
2016-10-16 02:29:48 ----A---- C:\WINDOWS\system32\cic.dll
2016-10-16 02:29:48 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-10-16 02:29:47 ----A---- C:\WINDOWS\SYSWOW64\fwcfg.dll
2016-10-16 02:29:47 ----A---- C:\WINDOWS\SYSWOW64\DbgModel.dll
2016-10-16 02:29:47 ----A---- C:\WINDOWS\SYSWOW64\certmgr.dll
2016-10-16 02:29:47 ----A---- C:\WINDOWS\system32\wmpshell.dll
2016-10-16 02:29:47 ----A---- C:\WINDOWS\system32\WcnApi.dll
2016-10-16 02:29:47 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-10-16 02:29:47 ----A---- C:\WINDOWS\system32\autochk.exe
2016-10-16 02:29:46 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2016-10-16 02:29:46 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2016-10-16 02:29:46 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-10-16 02:29:46 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-10-16 02:29:45 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2016-10-16 02:29:45 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-10-16 02:29:45 ----A---- C:\WINDOWS\system32\WmpDui.dll
2016-10-16 02:29:45 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-10-16 02:29:44 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2016-10-16 02:29:44 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-10-16 02:29:44 ----A---- C:\WINDOWS\system32\duser.dll
2016-10-16 02:29:44 ----A---- C:\WINDOWS\system32\dui70.dll
2016-10-16 02:29:44 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-10-16 02:29:43 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-10-16 02:29:43 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-10-16 02:29:43 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-10-16 02:29:42 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2016-10-16 02:29:42 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2016-10-16 02:29:42 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-10-16 02:29:42 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-10-16 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-10-16 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2016-10-16 02:29:41 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-10-16 02:29:41 ----A---- C:\WINDOWS\system32\certcli.dll
2016-10-16 02:29:41 ----A---- C:\WINDOWS\system32\adtschema.dll
2016-10-16 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-10-16 02:29:40 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-10-16 02:29:40 ----A---- C:\WINDOWS\system32\netshell.dll
2016-10-16 02:29:40 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-16 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-10-16 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-10-16 02:29:39 ----A---- C:\WINDOWS\system32\werconcpl.dll
2016-10-16 02:29:38 ----A---- C:\WINDOWS\system32\syncutil.dll
2016-10-16 02:29:37 ----A---- C:\WINDOWS\SYSWOW64\wmpshell.dll
2016-10-16 02:29:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-10-16 02:29:37 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-10-16 02:29:37 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2016-10-16 02:29:37 ----A---- C:\WINDOWS\system32\DictationManager.dll
2016-10-16 02:29:36 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-10-16 02:29:36 ----A---- C:\WINDOWS\system32\DiagCpl.dll
2016-10-16 02:29:36 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-16 02:29:35 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-10-16 02:29:35 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-10-16 02:29:35 ----A---- C:\WINDOWS\system32\scapi.dll
2016-10-16 02:29:35 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-10-16 02:29:35 ----A---- C:\WINDOWS\system32\fdWCN.dll
2016-10-16 02:29:34 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-10-16 02:29:34 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-10-16 02:29:34 ----A---- C:\WINDOWS\system32\StikyNot.exe
2016-10-16 02:29:34 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-10-16 02:29:33 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2016-10-16 02:29:33 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2016-10-16 02:29:33 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-10-16 02:29:33 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-10-16 02:29:33 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-10-16 02:29:33 ----A---- C:\WINDOWS\system32\puiapi.dll
2016-10-16 02:29:33 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-10-16 02:29:32 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-10-16 02:29:32 ----A---- C:\WINDOWS\system32\oemlicense.dll
2016-10-16 02:29:32 ----A---- C:\WINDOWS\system32\ipsecsnp.dll
2016-10-16 02:29:32 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-10-16 02:29:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-10-16 02:29:31 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2016-10-16 02:29:31 ----A---- C:\WINDOWS\SYSWOW64\oemlicense.dll
2016-10-16 02:29:31 ----A---- C:\WINDOWS\system32\vdsutil.dll
2016-10-16 02:29:31 ----A---- C:\WINDOWS\system32\netcenter.dll
2016-10-16 02:29:31 ----A---- C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-10-16 02:29:30 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2016-10-16 02:29:30 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-10-16 02:29:30 ----A---- C:\WINDOWS\system32\Display.dll
2016-10-16 02:29:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-10-16 02:29:29 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-10-16 02:29:29 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2016-10-16 02:29:29 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-10-16 02:29:29 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-10-16 02:29:28 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-10-16 02:29:28 ----A---- C:\WINDOWS\system32\wiarpc.dll
2016-10-16 02:29:28 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-10-16 02:29:26 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2016-10-16 02:29:26 ----A---- C:\WINDOWS\system32\wlanui.dll
2016-10-16 02:29:26 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-10-16 02:29:25 ----A---- C:\WINDOWS\system32\themeui.dll
2016-10-16 02:29:25 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-10-16 02:29:25 ----A---- C:\WINDOWS\system32\eapsvc.dll
2016-10-16 02:29:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-10-16 02:29:24 ----A---- C:\WINDOWS\system32\msdt.exe
2016-10-16 02:29:24 ----A---- C:\WINDOWS\system32\edputil.dll
2016-10-16 02:29:24 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2016-10-16 02:29:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2016-10-16 02:29:23 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-10-16 02:29:23 ----A---- C:\WINDOWS\system32\WUDFx.dll
2016-10-16 02:29:23 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-10-16 02:29:23 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-10-16 02:29:23 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-10-16 02:29:22 ----A---- C:\WINDOWS\SYSWOW64\DevDispItemProvider.dll
2016-10-16 02:29:22 ----A---- C:\WINDOWS\SYSWOW64\authfwcfg.dll
2016-10-16 02:29:22 ----A---- C:\WINDOWS\system32\mscms.dll
2016-10-16 02:29:22 ----A---- C:\WINDOWS\system32\DevDispItemProvider.dll
2016-10-16 02:29:22 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-10-16 02:29:22 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-10-16 02:29:21 ----A---- C:\WINDOWS\system32\RADCUI.dll
2016-10-16 02:29:20 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-10-16 02:29:20 ----A---- C:\WINDOWS\system32\msi.dll
2016-10-16 02:29:19 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2016-10-16 02:29:19 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2016-10-16 02:29:19 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-10-16 02:29:19 ----A---- C:\WINDOWS\system32\wsmprovhost.exe
2016-10-16 02:29:19 ----A---- C:\WINDOWS\system32\WLanConn.dll
2016-10-16 02:29:19 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-10-16 02:29:19 ----A---- C:\WINDOWS\system32\vsstrace.dll
2016-10-16 02:29:19 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-10-16 02:29:18 ----A---- C:\WINDOWS\SYSWOW64\WSSync.dll
2016-10-16 02:29:18 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-10-16 02:29:18 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2016-10-16 02:29:18 ----A---- C:\WINDOWS\system32\SmartCardSimulator.dll
2016-10-16 02:29:18 ----A---- C:\WINDOWS\system32\pnpclean.dll
2016-10-16 02:29:18 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-10-16 02:29:18 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-10-16 02:29:18 ----A---- C:\WINDOWS\system32\dafWCN.dll
2016-10-16 02:29:17 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-10-16 02:29:17 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-10-16 02:29:17 ----A---- C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-10-16 02:29:17 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-10-16 02:29:17 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-16 02:29:16 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2016-10-16 02:29:16 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2016-10-16 02:29:16 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2016-10-16 02:29:16 ----A---- C:\WINDOWS\SYSWOW64\duser.dll
2016-10-16 02:29:16 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-10-16 02:29:16 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-16 02:29:16 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-10-16 02:29:16 ----A---- C:\WINDOWS\system32\dot3ui.dll
2016-10-16 02:29:15 ----A---- C:\WINDOWS\SYSWOW64\licensingdiag.exe
2016-10-16 02:29:15 ----A---- C:\WINDOWS\SYSWOW64\dot3ui.dll
2016-10-16 02:29:15 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-10-16 02:29:14 ----A---- C:\WINDOWS\SYSWOW64\WmpDui.dll
2016-10-16 02:29:14 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2016-10-16 02:29:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-16 02:29:14 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2016-10-16 02:29:14 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-10-16 02:29:14 ----A---- C:\WINDOWS\system32\fhsvc.dll
2016-10-16 02:29:14 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-10-16 02:29:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-16 02:29:13 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-10-16 02:29:13 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-10-16 02:29:13 ----A---- C:\WINDOWS\system32\fwcfg.dll
2016-10-16 02:29:13 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-10-16 02:29:12 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-10-16 02:29:12 ----A---- C:\WINDOWS\SYSWOW64\msobjs.dll
2016-10-16 02:29:12 ----A---- C:\WINDOWS\system32\msobjs.dll
2016-10-16 02:29:12 ----A---- C:\WINDOWS\system32\IconCodecService.dll
2016-10-16 02:29:11 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-10-16 02:29:11 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2016-10-16 02:29:11 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-10-16 02:29:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2016-10-16 02:29:11 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-10-16 02:29:11 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-10-16 02:29:11 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-10-16 02:29:10 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2016-10-16 02:29:10 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2016-10-16 02:29:10 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-16 02:29:10 ----A---- C:\WINDOWS\system32\sppinst.dll
2016-10-16 02:29:10 ----A---- C:\WINDOWS\system32\pngfilt.dll
2016-10-16 02:29:10 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2016-10-16 02:29:09 ----A---- C:\WINDOWS\SYSWOW64\wsmprovhost.exe
2016-10-16 02:29:09 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-10-16 02:29:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.ps.dll
2016-10-16 02:29:09 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2016-10-16 02:29:09 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2016-10-16 02:29:09 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-16 02:29:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-10-16 02:29:08 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-10-16 02:29:08 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2016-10-16 02:29:08 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-10-16 02:29:08 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2016-10-16 02:29:07 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2016-10-16 02:29:07 ----A---- C:\WINDOWS\system32\prnntfy.dll
2016-10-16 02:29:07 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-10-16 02:29:06 ----A---- C:\WINDOWS\SYSWOW64\sti.dll
2016-10-16 02:29:06 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2016-10-16 02:29:06 ----A---- C:\WINDOWS\system32\CheckNetIsolation.exe
2016-10-16 02:29:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-10-16 02:29:05 ----A---- C:\WINDOWS\SYSWOW64\CheckNetIsolation.exe
2016-10-16 02:29:05 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-10-16 02:29:05 ----A---- C:\WINDOWS\system32\ImplatSetup.dll
2016-10-16 02:29:04 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2016-10-16 02:29:04 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-10-16 02:29:04 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-10-16 02:29:04 ----A---- C:\WINDOWS\system32\odbcconf.dll
2016-10-16 02:29:03 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2016-10-16 02:29:03 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2016-10-16 02:29:03 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-10-16 02:29:03 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-10-16 02:29:02 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2016-10-16 02:29:02 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-10-15 23:00:16 ----A---- C:\WINDOWS\system32\drivers\20161016_0016403_SHIM_Dump.txt
2016-10-15 23:00:16 ----A---- C:\WINDOWS\system32\drivers\20161016_0016388_CheckPoint_Dump.txt
2016-10-08 23:49:54 ----A---- C:\WINDOWS\system32\drivers\2016109_0495447_SHIM_Dump.txt
2016-10-08 23:49:54 ----A---- C:\WINDOWS\system32\drivers\2016109_0495447_CheckPoint_Dump.txt
2016-10-07 16:31:09 ----A---- C:\WINDOWS\system32\drivers\2016107_17319859_SHIM_Dump.txt
2016-10-07 16:31:09 ----A---- C:\WINDOWS\system32\drivers\2016107_17319859_CheckPoint_Dump.txt
2016-10-07 10:02:04 ----A---- C:\WINDOWS\system32\drivers\2016107_1124725_SHIM_Dump.txt
2016-10-07 10:02:04 ----A---- C:\WINDOWS\system32\drivers\2016107_1124642_CheckPoint_Dump.txt

======List of files/folders modified in the last 1 month======

2016-10-31 18:02:36 ----D---- C:\WINDOWS\prefetch
2016-10-31 18:02:31 ----RD---- C:\Program Files
2016-10-31 18:01:12 ----D---- C:\WINDOWS\system32\sru
2016-10-31 17:50:17 ----D---- C:\WINDOWS\Temp
2016-10-31 17:34:02 ----D---- C:\ProgramData\ASUS Smart Gesture
2016-10-31 17:33:55 ----D---- C:\WINDOWS\System32
2016-10-31 17:33:55 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-10-31 17:33:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-31 17:33:21 ----D---- C:\WINDOWS\INF
2016-10-31 17:29:00 ----D---- C:\WINDOWS\system32\drivers
2016-10-31 15:00:55 ----D---- C:\WINDOWS\system32\SleepStudy
2016-10-31 13:41:02 ----D---- C:\WINDOWS\system32\config
2016-10-31 13:39:17 ----D---- C:\WINDOWS\Microsoft.NET
2016-10-31 12:45:17 ----D---- C:\Windows
2016-10-31 12:20:34 ----D---- C:\WINDOWS\system32\Tasks
2016-10-31 12:20:25 ----D---- C:\Program Files (x86)
2016-10-31 12:13:05 ----D---- C:\WINDOWS\AppReadiness
2016-10-31 12:04:49 ----HD---- C:\ProgramData
2016-10-31 11:56:27 ----HD---- C:\WINDOWS\ELAMBKUP
2016-10-31 11:38:07 ----D---- C:\WINDOWS\Logs
2016-10-31 10:37:20 ----D---- C:\Users\Merit.sk\AppData\Roaming\PhotoScape
2016-10-31 10:37:15 ----D---- C:\WINDOWS\Minidump
2016-10-31 10:37:15 ----D---- C:\WINDOWS\debug
2016-10-30 22:24:58 ----HD---- C:\Program Files\WindowsApps
2016-10-30 22:10:40 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-30 22:07:52 ----D---- C:\WINDOWS\LiveKernelReports
2016-10-30 18:49:08 ----D---- C:\Users\Merit.sk\AppData\Roaming\vlc
2016-10-29 13:37:28 ----D---- C:\WINDOWS\rescache
2016-10-29 12:47:47 ----D---- C:\WINDOWS\WinSxS
2016-10-29 12:38:32 ----D---- C:\WINDOWS\system32\catroot2
2016-10-29 11:53:25 ----D---- C:\WINDOWS\CbsTemp
2016-10-29 11:53:24 ----D---- C:\WINDOWS\syswow64
2016-10-29 11:52:54 ----D---- C:\WINDOWS\system32\appraiser
2016-10-29 09:39:08 ----SHD---- C:\WINDOWS\Installer
2016-10-29 09:38:54 ----D---- C:\ProgramData\Microsoft Help
2016-10-29 09:38:53 ----RD---- C:\WINDOWS\assembly
2016-10-29 09:38:50 ----AD---- C:\Program Files (x86)\Microsoft Office
2016-10-29 09:38:48 ----D---- C:\Program Files (x86)\Common Files
2016-10-29 09:38:04 ----RSD---- C:\WINDOWS\Fonts
2016-10-29 09:37:05 ----A---- C:\WINDOWS\win.ini
2016-10-29 09:36:27 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-10-28 22:22:29 ----SD---- C:\Users\Merit.sk\AppData\Roaming\Microsoft
2016-10-28 02:22:26 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-10-24 22:56:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-19 22:24:01 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-10-19 22:24:00 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-10-19 22:24:00 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-10-19 22:23:59 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-10-19 22:23:59 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-10-19 22:23:59 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-10-19 22:23:59 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2016-10-19 22:23:35 ----D---- C:\WINDOWS\system32\wbem
2016-10-19 22:23:34 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-10-19 22:23:33 ----D---- C:\WINDOWS\system32\sk-SK
2016-10-19 22:23:33 ----D---- C:\WINDOWS\system32\setup
2016-10-19 22:23:33 ----D---- C:\WINDOWS\system32\oobe
2016-10-19 22:23:32 ----D---- C:\WINDOWS\system32\migwiz
2016-10-19 22:23:32 ----D---- C:\WINDOWS\system32\migration
2016-10-19 22:23:31 ----SD---- C:\WINDOWS\system32\F12
2016-10-19 22:23:31 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-10-19 22:23:31 ----D---- C:\WINDOWS\system32\en-US
2016-10-19 22:23:31 ----D---- C:\WINDOWS\system32\Dism
2016-10-19 22:23:31 ----D---- C:\WINDOWS\system32\Boot
2016-10-19 22:23:30 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2016-10-19 22:22:55 ----RD---- C:\WINDOWS\PrintDialog
2016-10-19 22:22:52 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-10-19 22:22:51 ----RD---- C:\WINDOWS\DevicesFlow
2016-10-19 22:22:50 ----D---- C:\WINDOWS\AppPatch
2016-10-19 22:22:50 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-10-19 22:22:49 ----D---- C:\Program Files (x86)\Windows Media Player
2016-10-19 22:22:49 ----D---- C:\Program Files (x86)\Windows Mail
2016-10-19 22:22:49 ----D---- C:\Program Files (x86)\Windows Defender
2016-10-19 22:22:49 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-19 22:22:48 ----D---- C:\Program Files\Windows Photo Viewer
2016-10-19 22:22:48 ----D---- C:\Program Files\Windows Media Player
2016-10-19 22:22:47 ----D---- C:\Program Files\Windows Mail
2016-10-19 22:22:47 ----D---- C:\Program Files\Windows Defender
2016-10-19 22:22:46 ----D---- C:\Program Files\Internet Explorer
2016-10-19 22:21:25 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2016-10-19 22:21:25 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2016-10-19 22:21:01 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-10-19 21:57:51 ----D---- C:\WINDOWS\system32\MRT
2016-10-19 21:53:28 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-10-09 19:29:41 ----D---- C:\Users\Merit.sk\AppData\Roaming\Skype
2016-10-09 17:54:46 ----D---- C:\ProgramData\Skype
2016-10-08 16:22:34 ----RD---- C:\Program Files (x86)\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MBI;@oem27.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\WINDOWS\System32\drivers\MBI.sys [2015-06-24 32736]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2015-05-08 20096]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2015-05-08 18048]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R3 AsusSGDrv;@oem1.inf,%AsusSGDrv.SvcDesc%;ASUS Touch Service; C:\WINDOWS\System32\drivers\AsusSGDrv.sys [2015-12-14 138744]
R3 BCMSDH43XX;@oem24.inf,%BCMSDH43XX_Service_DispName%;Broadcom 802.11 SDIO Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmdhd63.sys [2015-12-20 393000]
R3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2015-10-30 32256]
R3 BtwSerialBus;@oem12.inf,%Bus.SVCDESC%;Broadcom Serial Bus Driver over UART Bus Enumerator; C:\WINDOWS\System32\drivers\BtwSerialBus.sys [2015-12-20 170272]
R3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
R3 camera;@oem14.inf,%iacamera.DeviceDesc%;Intel(R) AVStream Camera; C:\WINDOWS\system32\DRIVERS\iacamera64.sys [2015-07-29 932200]
R3 DptfDevDisplay;DptfDevDisplay; C:\WINDOWS\System32\drivers\DptfDevDisplay.sys [2015-06-24 45536]
R3 DptfDevGen;DptfDevGen; C:\WINDOWS\System32\drivers\DptfDevGen.sys [2015-06-24 58848]
R3 DptfDevProc;DptfDevProc; C:\WINDOWS\System32\drivers\DptfDevProc.sys [2015-06-24 108512]
R3 DptfManager;DptfManager; C:\WINDOWS\System32\drivers\DptfManager.sys [2015-06-24 241632]
R3 HID_PCI;@oem0.inf,%HID_PCI%;HID PCI Minidriver for ISS; C:\WINDOWS\System32\drivers\HID_PCI.sys [2015-08-23 47928]
R3 HidEventFilter;@oem7.inf,%HidEventFilter%;Intel(R) HID Event Filter; C:\WINDOWS\System32\drivers\HidEventFilter.sys [2015-06-24 26112]
R3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2013-11-30 91648]
R3 iagpioe;@oem26.inf,%iagpioe.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpioe.sys [2015-07-15 32768]
R3 iai2ce;@oem32.inf,%iai2ce.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2ce.sys [2015-07-08 81408]
R3 iaisp;@oem15.inf,%Driver_Service.Desc%;Intel(R) Imaging Signal Processor 2401; C:\WINDOWS\System32\drivers\iaisp64.sys [2015-07-29 28944]
R3 iaspie;@oem28.inf,%Driver_Service.Desc%;Intel(R) Serial IO SPI Controller Service; C:\WINDOWS\System32\drivers\iaspie.sys [2015-06-24 62976]
R3 iauarte;@oem21.inf,%iauarte.SVCDESC%;Intel(R) Serial IO UART Controller; C:\WINDOWS\System32\drivers\iauarte.sys [2015-06-24 103936]
R3 igfxLP;igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd64lp.sys [2015-08-03 5882992]
R3 IntelSST;@oem25.inf,%IntelSST_Audio.SvcDesc%;Intel SST Audio Device (WDM); C:\WINDOWS\system32\drivers\isstrtc.sys [2015-07-23 669912]
R3 ISH;@oem19.inf,%TEE_SvcDesc%;Intel(R) Integrated Sensor Solution ; C:\WINDOWS\System32\drivers\ISH.sys [2015-08-31 135984]
R3 ISH_BusDriver;@oem6.inf,%ISH_BusDriver.SVCDESC%; ISS Bus Enumerator; C:\WINDOWS\System32\drivers\ISH_BusDriver.sys [2015-08-31 68408]
R3 ov5670;@oem22.inf,%ov5670.SVCDESC%;Camera Sensor ov5670; C:\WINDOWS\System32\drivers\ov5670.sys [2015-07-09 113312]
R3 PMIC;@oem5.inf,%Driver_Service.Desc%;Intel(R) Power Management IC Device Service; C:\WINDOWS\System32\drivers\PMIC.sys [2015-06-24 100864]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-08-03 112640]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-03-29 245760]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-08-03 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-08-03 954368]
S3 btwampfl;@oem12.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\System32\drivers\btwampfl.sys [2015-12-20 205608]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-18 117248]
S3 DptfDevAmbient;DptfDevAmbient; C:\WINDOWS\System32\drivers\DptfDevAmbient.sys [2015-06-24 60384]
S3 DptfDevDBPT;DptfDevDBPT; C:\WINDOWS\System32\drivers\DptfDevPower.sys [2015-06-24 42976]
S3 DptfDevWireless;DptfDevWireless; C:\WINDOWS\System32\drivers\DptfDevWireless.sys [2015-06-24 60896]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 ew_usbenumfilter;@oem34.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [2015-01-07 18560]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-10-30 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
S3 hwusb_wwanecm;hwusb_wwanecm; C:\WINDOWS\System32\drivers\ew_wwanecm.sys [2015-01-07 380800]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-08-03 181248]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AsHidService;ASUS HID Access Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [2015-06-26 111416]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [2015-07-07 123704]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [2015-05-31 71168]
R2 ASUSGiftBoxDekstop;Asus GiftBox Desktop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [2015-06-12 313488]
R2 ASUSScreenAdjustService;ASUSScreenAdjustService; C:\Program Files\ASUS\ASUS T100HAN DisplayControl\ASUSScreenAdjustService.exe [2015-08-11 17408]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2015-04-01 107320]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DptfParticipantProcessorService;@oem29.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform & Thermal Framework Processor Participant Service Application; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [2015-09-09 115304]
R2 DptfPolicyCriticalService;@oem29.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform & Thermal Framework Critical Service Application; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [2015-09-09 118888]
R2 DptfPolicyLpmService;@oem29.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform & Thermal Framework Low Power Mode Service Application; C:\WINDOWS\system32\DptfPolicyLpmService.exe [2015-09-09 122472]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-04-14 373312]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-08-03 350320]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface; C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [2015-04-21 174368]
R2 OneSyncSvc_5699c;Sync Host_5699c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-08-03 282224]
R3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-02-26 330240]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_5699c;Kontaktné údaje_5699c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 BcmBtRSupport;@oem12.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-12-20 2269440]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DptfParticipantWirelessService;@oem29.inf,%WIN32_DPTF_PARTICIPANT_WIRELESS_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform & Thermal Framework Wireless Participant Service Application; C:\WINDOWS\System32\DptfParticipantWirelessService.exe [2015-09-09 318568]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-26 154440]
S2 Internet Manager. RunOuc;Internet Manager. OUC; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [2015-07-06 682072]
S2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-02-26 7680]
S2 Kingsoft_WPS_UpdateService;WPS Office Update Service; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [2015-08-15 133480]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_3831a;MessagingService_3831a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_3a4e1;MessagingService_3a4e1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_3b694;MessagingService_3b694; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_3bd50;MessagingService_3bd50; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_40769;MessagingService_40769; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_415dc;MessagingService_415dc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_4222d;MessagingService_4222d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_439c1;MessagingService_439c1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_447f1;MessagingService_447f1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_46984;MessagingService_46984; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_4b56c;MessagingService_4b56c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_4e88b;MessagingService_4e88b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_4f959;MessagingService_4f959; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_51a81;MessagingService_51a81; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_53ad2;MessagingService_53ad2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_53bd1;MessagingService_53bd1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_54a6b;MessagingService_54a6b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_54c74;MessagingService_54c74; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_5699c;MessagingService_5699c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_5e94f;MessagingService_5e94f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_6688b;MessagingService_6688b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1189d1;Sync Host_1189d1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3831a;Sync Host_3831a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3872b;Sync Host_3872b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_39236;Sync Host_39236; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3a197;Sync Host_3a197; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3a4e1;Sync Host_3a4e1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3b694;Sync Host_3b694; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3bd50;Sync Host_3bd50; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4040b;Sync Host_4040b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_40769;Sync Host_40769; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_415a8;Sync Host_415a8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_415dc;Sync Host_415dc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4222d;Sync Host_4222d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_42fc1;Sync Host_42fc1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_439c1;Sync Host_439c1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_447f1;Sync Host_447f1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_452ff;Sync Host_452ff; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_457ab;Sync Host_457ab; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_45914;Sync Host_45914; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_45c24;Sync Host_45c24; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_46984;Sync Host_46984; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4b56c;Sync Host_4b56c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4e88b;Sync Host_4e88b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4f959;Sync Host_4f959; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_51a81;Sync Host_51a81; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_53ad2;Sync Host_53ad2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_53bd1;Sync Host_53bd1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_54a6b;Sync Host_54a6b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_54c74;Sync Host_54c74; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_5e94f;Sync Host_5e94f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_632ce;Sync Host_632ce; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6688b;Sync Host_6688b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_68aa3;Sync Host_68aa3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-12-16 265808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-26 154440]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2015-05-22 881152]
S3 MessagingService_1189d1;MessagingService_1189d1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3872b;MessagingService_3872b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_39236;MessagingService_39236; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3a197;MessagingService_3a197; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4040b;MessagingService_4040b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_415a8;MessagingService_415a8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_42fc1;MessagingService_42fc1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_452ff;MessagingService_452ff; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_457ab;MessagingService_457ab; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_45914;MessagingService_45914; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_45c24;MessagingService_45c24; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_68aa3;MessagingService_68aa3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1189d1;Kontaktné údaje_1189d1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3831a;Kontaktné údaje_3831a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3872b;Kontaktné údaje_3872b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_39236;Kontaktné údaje_39236; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3a197;Kontaktné údaje_3a197; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3a4e1;Kontaktné údaje_3a4e1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3b694;Kontaktné údaje_3b694; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3bd50;Kontaktné údaje_3bd50; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4040b;Kontaktné údaje_4040b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_40769;Kontaktné údaje_40769; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_415a8;Kontaktné údaje_415a8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_415dc;Kontaktné údaje_415dc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4222d;Kontaktné údaje_4222d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_42fc1;Kontaktné údaje_42fc1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_439c1;Kontaktné údaje_439c1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_447f1;Kontaktné údaje_447f1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_452ff;Kontaktné údaje_452ff; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_457ab;Kontaktné údaje_457ab; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_45914;Kontaktné údaje_45914; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_45c24;Kontaktné údaje_45c24; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_46984;Kontaktné údaje_46984; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4b56c;Kontaktné údaje_4b56c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4e88b;Kontaktné údaje_4e88b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4f959;Kontaktné údaje_4f959; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_51a81;Kontaktné údaje_51a81; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_53ad2;Kontaktné údaje_53ad2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_53bd1;Kontaktné údaje_53bd1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_54a6b;Kontaktné údaje_54a6b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_54c74;Kontaktné údaje_54c74; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_5e94f;Kontaktné údaje_5e94f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6688b;Kontaktné údaje_6688b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_68aa3;Kontaktné údaje_68aa3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

[Roli]

Zdravím, smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.


Nakonec použij Mbam z mého podpisu a dej mi sem z něj log po smazání nepořádku.

[Sonazi]

Vsetko spravene.

Toto som spravil este predtteam ako som tu napisal. Nasil som na webe postup ako sa zbavit play bar search. Ale aj tak mam pocit ze tam este nieco je, preto som napisal na toto forum.

Aktualne vysledky:

AdwCleaner nezistil nic.

MBAN:
Malwarebytes Anti-Malware
www.malwarebytes.org

Dátum kontroly: 05.11.2016
Čas kontroly: 8:26
Protokol: mban.txt
Správca: Áno

Verzia: 0.0.0.0000
Dazabáza malware: v2016.11.05.04
Databáza rootkitov: v2016.10.31.01
Licencia: Skúšobná verzia
Ochrana pred škodlivým softvérom: Zapnuté
Ochrana pred škodlivými webstránkami: Zapnuté
Vlastná ochrana: Vypnuté

OS: Windows 10
CPU: x64
Súborový systém: NTFS
Používateľ: Merit.sk

Typ kontroly: Kontrola hrozieb
Výsledok: Dokončená
Skontrolovaných objektov: 292974
Uplynulý čas: 9 min, 11 s

Pamäť: Zapnuté
Pri spustení: Zapnuté
Súborový systém: Zapnuté
Archívy: Zapnuté
Rootkity: Vypnuté
Heuristika: Zapnuté
PUP: Zapnuté
PUM: Zapnuté

Procesy: 0
(Žiadne škodlivé položky neboli zistené)

Moduly: 0
(Žiadne škodlivé položky neboli zistené)

Kľúče databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Hodnoty databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Údaj databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Priečinky: 0
(Žiadne škodlivé položky neboli zistené)

Súbory: 0
(Žiadne škodlivé položky neboli zistené)

Fyzické sektory: 0
(Žiadne škodlivé položky neboli zistené)


(end)

[Roli]

Mbam nyní odinstaluj.


Spusť skener Cure It podle TOHOTO návodu

po skončení skenu mi sem nakopíruj výsledky - stačí konec logu se souhrnem.

(Upozornění je úchylně pomalý a je zapotřebí ho sledovat občas se na něco ptá)