antivirus ESET prestal fungovat

[Vasil]

Prosím o kontrolu, notebook mal pocas poslednych dni dve modre obrazovky, vcera prestal fungovat antivirus ESET, hlási "Chyba pri komunikacii s jadrom programu".

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peter at 2018-02-28 16:39:08
Microsoft Windows 10 Home
System drive C: has 135 GB (64%) free of 213 GB
Total RAM: 3982 MB (29% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:39:12, on 28.02.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0015)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
C:\Users\Peter\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
C:\Program Files\trend micro\Peter.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13-comm.msn.com/?pc=LNJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [AmIcoSinglun64] "C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
O4 - HKLM\..\Run: [Fastboot] "C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe" /analysis
O4 - HKLM\..\Run: [PDFPrint] C:\Program Files (x86)\PDF24\pdf24.exe
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Peter\AppData\Roaming\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [Google Update] C:\Users\Peter\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [FlickrUploadr] "C:\Users\Peter\AppData\Local\FlickrUploadrWindows\Update.exe" --processStart Flickr.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: launcher.exe.lnk = C:\Program Files (x86)\Opera developer\launcher.exe
O4 - Global Startup: Mediatek Wireless Utility.lnk = C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {62789780-B744-11D0-986B-00609731A21D} (Autodesk MapGuide ActiveX Control) - https://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{e882972c-2319-49de-b204-ce4a00c65e4a}: NameServer = 192.168.1.1
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @oem37.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Endpoint Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Endpoint Security\x86\ekrn.exe
O23 - Service: ESET SHA Service (ESHASRV) - ESET - C:\Program Files\ESET\ESET Endpoint Security\EShaSrv.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem28.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @oem16.inf,%ImcSvcDisplayName%;System Interface Foundation Service (ImControllerService) - Lenovo Group Limited - C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo AVFramework Camera Privacy Controller (LENOVO.CAMMUTE) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\cammute.exe
O23 - Service: Lenovo AVFramework Microphone Volume Controller and Dolby Interface (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Settings Mobile Hotspot Service (LnvHotSpotSvc) - Lenovo - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
O23 - Service: LocationTaskManager - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: MediatekRegistryWriter - Mediatek Inc. - C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe
O23 - Service: MediatekRegistryWriter64 - Mediatek Inc. - C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: Lenovo QuickControl Service (QuickControlService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Serviio - Unknown owner - C:\Program Files\Serviio\bin\ServiioService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 15422 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-08868e27-2f57-49dc-87d0-843f1b8a32f5 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-1a61176c-c74d-46a7-8eb1-6402475436e4 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0183a345-a221-4918-bd9a-2ded473e329f -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b8d11d95-a2bf-42e0-9d32-4349fbefa886 -LifetimeId:5351f2fc-0fdc-477e-a8f3-d8b51f5269f2 -DeviceGroupId:
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\ibmpmsvc.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes

c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservice -p -s nsi
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localservicenonetwork -p
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k netsvcs -s CertPropSvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Serviio\bin\ServiioService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe"

"C:\Program Files\Serviio\bin\ServiioService.exe" Serviio __i4j_restart
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
dashost.exe {4beb929f-3705-4835-97d035feba10e7f0}
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-e24660b5-3ef9-4fd4-a4c2-57c095012eb7 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-8821cab0-261e-45a0-917e-e0bb2dc17c2d -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2de3a64f-778d-4eab-88e5-937914b5d2c5 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-e588a7c1-32a1-4d8e-9f04-59ed70329b60 -LifetimeId:21ab62c9-c3c3-4b93-8515-50da8146e390 -DeviceGroupId:
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-89db742a-8644-4b89-b075-280fb034edae -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-ed7759ec-d84e-434a-b34a-f29e59eaffb7 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-4672c3e4-9885-43c7-bd63-bacb4dd112d6 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-d7b066a5-e717-4207-8b17-e3a91dfcd1a3 -LifetimeId:df6a7084-a118-458d-a5e6-5ce4abe52646 -DeviceGroupId:
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
"C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Browny02\BrYNSvc.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe"
"C:\Program Files (x86)\Lenovo\System Update\SUService.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc


c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
"msiexec" REBOOT=ReallySuppress /qn /i "C:\Program Files (x86)\Google\Update\Install\{95F92A19-31F0-4B1B-9F3A-90CF7135C66C}\gsync.msi" /log "C:\Program Files (x86)\Google\Update\Install\{95F92A19-31F0-4B1B-9F3A-90CF7135C66C}\gsync.msi.log"
C:\WINDOWS\system32\msiexec.exe /V
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" --stop
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s upnphost
c:\windows\system32\svchost.exe -k netsvcs

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"fontdrvhost.exe"
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\PROGRA~1\Lenovo\HOTKEY\TPNUMLKD.EXE \\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.LockOSD
"C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
sihost.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
-name 1de8c69a-46b5-4b57-8d77-feb4c9974531 -runas -pluginName DolbyAudioPlugin -pluginVersion 1.2.227.0
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
C:\WINDOWS\Explorer.EXE
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
igfxEM.exe
ClassicStartMenu.exe -startup
igfxHK.exe
igfxTray.exe
C:\windows\system32\rundll32.exe "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"ctfmon.exe"
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe"
"C:\ProgramData\Lenovo\iMController\Plugins\IdeaOSDPackage\x64\utility.exe"
"C:\Users\Peter\AppData\Roaming\uTorrent\utorrent.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe" /analysis
-BootProc
"C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe" /AUTORUN
-BootProc
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Users\Peter\AppData\Local\Apps\2.0\PKW0Z97X.XH5\BZD45JCK.3L2\lsb...tion_2d7b41b05b24775e_0001.0006_4ccd0b1bea5227ca\LSB.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Peter\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Peter\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=64.0.3282.186 --initial-client-data=0x1d4,0x1d8,0x1dc,0x1d0,0x1e0,0x7ffc4d742050,0x7ffc4d742060,0x7ffc4d742070
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=8284 --on-initialized-event-handle=488 --parent-handle=660 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --gpu-preferences=GAAAAAAAAAAABwAAAQAAAAAAAAAAAGAA --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4358 --gpu-driver-date=12-21-2015 --service-request-channel-token=1F426EE449E87279B84D2051DECEDADB --mojo-platform-channel-handle=1580 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=A2D24AC222202FD5F7BBC0C67C17C1F6 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=A2D24AC222202FD5F7BBC0C67C17C1F6 --renderer-client-id=3 --mojo-platform-channel-handle=2532 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=75F122D09365DC74C737054A8F630781 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=75F122D09365DC74C737054A8F630781 --renderer-client-id=4 --mojo-platform-channel-handle=2652 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=7A66E0B7E9775780A904C29EDEB175B5 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=7A66E0B7E9775780A904C29EDEB175B5 --renderer-client-id=5 --mojo-platform-channel-handle=2688 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=378A5489D04B54AA5E8726AE7158021F --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=378A5489D04B54AA5E8726AE7158021F --renderer-client-id=6 --mojo-platform-channel-handle=2676 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=686C140D9DB2712B7BEFFB34CBF6B1AA --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=686C140D9DB2712B7BEFFB34CBF6B1AA --renderer-client-id=7 --mojo-platform-channel-handle=2684 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=9F401DBF0E3D47559C12E703435A0F3B --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=9F401DBF0E3D47559C12E703435A0F3B --renderer-client-id=9 --mojo-platform-channel-handle=5224 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=1EBE29B5DE47650BA7CC2F5081E15433 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=1EBE29B5DE47650BA7CC2F5081E15433 --renderer-client-id=10 --mojo-platform-channel-handle=7308 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=3B35478FB3A4A23CBEAEDBC31583C037 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=3B35478FB3A4A23CBEAEDBC31583C037 --renderer-client-id=12 --mojo-platform-channel-handle=9820 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=9E620F0678FC89DB26D940920A258B7C --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=9E620F0678FC89DB26D940920A258B7C --renderer-client-id=23 --mojo-platform-channel-handle=10036 /prefetch:1
"C:\Program Files\Lenovo\Communications Utility\tpknrres.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=F75F60C63734D7B979DA2807505336C7 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=F75F60C63734D7B979DA2807505336C7 --renderer-client-id=26 --mojo-platform-channel-handle=6844 /prefetch:1
-name b28a4fdf-b47c-46b2-a127-f7d8172df586 -runas -pluginName LenovoSettingsAppPlugin -pluginVersion 1.2.129.0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --service-pipe-token=CB49B1C1FB7425EE20DD83D115FB6BE1 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --service-request-channel-token=CB49B1C1FB7425EE20DD83D115FB6BE1 --renderer-client-id=34 --mojo-platform-channel-handle=8640 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1564,8395157550969852412,3440851617190306551,131072 --lang=sk --service-sandbox-type=utility --service-request-channel-token=DB6D7871A4517B09977B9C812E04B923 --mojo-platform-channel-handle=10484 --ignored=" --type=renderer " /prefetch:8
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe14_ Global\UsGthrCtrlFltPipeMssGthrPipe14 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 736 740 748 8192 744
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"D:\Peter\Downloads\RSITx64 (1).exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\jxwcp9yo.default-1497723339199

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 28.0.0.161 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_161.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1231201.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.66.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 28.0.0.161 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-02-23 210112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13 885560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2018-02-23 3229864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13 551736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-02-23 149696]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13 760632]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-25 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-25 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13 507192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13 885560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13 760632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-09-13 13653208]
"LnvMobHotspotClient"=C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [2014-08-12 937968]
"LMCSSTART1"=C:\windows\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART2"=C:\windows\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART3"=C:\windows\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LenovoUtility"=C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [2017-07-27 911272]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-08-21 3952800]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2017-08-13 163640]
"egui"=C:\Program Files\ESET\ESET Endpoint Security\egui.exe [2017-03-10 4165248]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\Peter\AppData\Roaming\uTorrent\utorrent.exe [2014-04-14 398760]
"Google Update"=C:\Users\Peter\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe [2017-11-13 601680]
"FlickrUploadr"=C:\Users\Peter\AppData\Local\FlickrUploadrWindows\Update.exe [2015-09-16 1498608]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2013-03-12 548864]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2013-07-12 383768]
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2014-05-16 750320]
"PDFPrint"=C:\Program Files (x86)\PDF24\pdf24.exe [2015-08-18 218144]
"ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2014-05-22 139776]
"BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2014-05-22 4513792]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Mediatek Wireless Utility.lnk - C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe

C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
launcher.exe.lnk - C:\Program Files (x86)\Opera developer\launcher.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"msacm.ac3acm"=ac3acm.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-02-28 16:30:16 ----D---- C:\rsit
2018-02-27 17:11:16 ----D---- C:\WINDOWS\system32\drivers\wd
2018-02-24 12:06:13 ----SHD---- C:\found.002
2018-02-24 12:06:12 ----SHD---- C:\found.001
2018-02-24 12:06:12 ----SHD---- C:\found.000
2018-02-18 18:49:16 ----D---- C:\Users\Peter\AppData\Roaming\Serviio-Console-Wrapper
2018-02-18 18:41:54 ----D---- C:\Program Files\Serviio
2018-02-18 18:35:30 ----D---- C:\ProgramData\DivX
2018-02-17 16:57:41 ----D---- C:\ProgramData\ESET
2018-02-16 21:13:42 ----A---- C:\WINDOWS\system32\gpedit.msc
2018-02-16 21:10:48 ----A---- C:\WINDOWS\SYSWOW64\gpedit.msc
2018-02-16 21:10:48 ----A---- C:\WINDOWS\SYSWOW64\appmgr.dll
2018-02-16 21:10:47 ----D---- C:\WINDOWS\SYSWOW64\GPBAK
2018-02-16 21:10:41 ----A---- C:\WINDOWS\unins000.exe
2018-02-16 21:10:41 ----A---- C:\WINDOWS\unins000.dat
2018-02-15 22:02:25 ----RD---- C:\Users\Peter\AppData\Roaming\Brother
2018-02-15 15:28:17 ----D---- C:\Users\Peter\AppData\Roaming\ControlCenter4
2018-02-15 15:21:19 ----D---- C:\Brother
2018-02-15 15:21:03 ----D---- C:\ProgramData\ControlCenter4
2018-02-15 15:21:03 ----D---- C:\Program Files (x86)\Browny02
2018-02-15 15:20:47 ----D---- C:\Program Files (x86)\ControlCenter4
2018-02-15 15:20:46 ----R---- C:\WINDOWS\system32\NSSRH64.dll
2018-02-15 15:20:46 ----R---- C:\WINDOWS\system32\BrWiaNCp.dll
2018-02-15 15:20:46 ----R---- C:\WINDOWS\system32\BrSNMP64.dll
2018-02-15 15:20:46 ----R---- C:\WINDOWS\system32\Brnsplg.dll
2018-02-15 15:20:46 ----R---- C:\WINDOWS\system32\BrNetSti.dll
2018-02-15 15:19:50 ----N---- C:\WINDOWS\SYSWOW64\NSSearch.dll
2018-02-15 15:19:50 ----N---- C:\WINDOWS\SYSWOW64\BrDctF2S.dll
2018-02-15 15:19:50 ----N---- C:\WINDOWS\SYSWOW64\BrDctF2L.dll
2018-02-15 15:19:50 ----N---- C:\WINDOWS\SYSWOW64\BrDctF2.dll
2018-02-15 15:19:49 ----D---- C:\Program Files (x86)\Brother
2018-02-15 15:15:03 ----D---- C:\Users\Peter\AppData\Roaming\InstallShield
2018-02-15 14:31:25 ----D---- C:\ProgramData\Brother
2018-02-14 15:21:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-02-14 15:21:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-02-14 15:21:11 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2018-02-14 15:21:11 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-02-14 15:21:10 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-02-14 15:21:09 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-02-14 15:21:09 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2018-02-14 15:21:08 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-02-14 15:21:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-02-14 15:21:08 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-02-14 15:21:08 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-02-14 15:21:08 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2018-02-14 15:21:06 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-02-14 15:21:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-02-14 15:21:06 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-02-14 15:21:06 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2018-02-14 15:21:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-02-14 15:21:06 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-02-14 15:21:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-02-14 15:21:05 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2018-02-14 15:21:04 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2018-02-14 15:21:04 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-02-14 15:21:04 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-02-14 15:21:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-02-14 15:21:04 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2018-02-14 15:21:03 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-02-14 15:21:03 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2018-02-14 15:21:03 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-02-14 15:21:03 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-02-14 15:21:03 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2018-02-14 15:21:03 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2018-02-14 15:21:02 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-02-14 15:21:02 ----A---- C:\WINDOWS\system32\hal.dll
2018-02-14 15:21:02 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-02-14 15:21:02 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2018-02-14 15:21:02 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-02-14 15:21:01 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-02-14 15:21:01 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-02-14 15:21:00 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-02-14 15:20:59 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2018-02-14 15:20:59 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-02-14 15:20:59 ----A---- C:\WINDOWS\system32\dxtrans.dll
2018-02-14 15:20:58 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-02-14 15:20:58 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-02-14 15:20:58 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-02-14 15:20:57 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2018-02-14 15:20:57 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2018-02-14 15:20:57 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-02-14 15:20:57 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2018-02-14 15:20:57 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2018-02-14 15:20:57 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-02-14 15:20:57 ----A---- C:\WINDOWS\system32\nshhttp.dll
2018-02-14 15:20:57 ----A---- C:\WINDOWS\system32\evr.dll
2018-02-14 15:20:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-02-14 15:20:56 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-02-14 15:20:56 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-02-14 15:20:56 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2018-02-14 15:20:56 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-02-14 15:20:56 ----A---- C:\WINDOWS\system32\DbgModel.dll
2018-02-14 15:20:56 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-02-14 15:20:56 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-02-14 15:20:55 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-02-14 15:20:55 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-02-14 15:20:55 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-02-14 15:20:55 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-02-14 15:20:55 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2018-02-14 15:20:54 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-02-14 15:20:54 ----A---- C:\WINDOWS\system32\InputService.dll
2018-02-14 15:20:54 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-02-14 15:20:54 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-02-14 15:20:53 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-02-14 15:20:53 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-02-14 15:20:53 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-02-14 15:20:53 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-02-14 15:20:52 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-02-14 15:20:52 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-02-14 15:20:51 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-02-14 15:20:51 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2018-02-14 15:20:50 ----A---- C:\WINDOWS\system32\mshtmled.dll
2018-02-14 15:20:50 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-02-14 15:20:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2018-02-14 15:20:49 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-02-14 15:20:49 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2018-02-14 15:20:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-02-14 15:20:48 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-02-14 15:20:48 ----A---- C:\WINDOWS\system32\mfsvr.dll
2018-02-14 15:20:48 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-02-14 15:20:48 ----A---- C:\WINDOWS\system32\dnsapi.dll
2018-02-14 15:20:47 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-02-14 15:20:47 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-02-14 15:20:46 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-02-14 15:20:46 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-02-14 15:20:46 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-02-14 15:20:46 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-02-14 15:20:45 ----A---- C:\WINDOWS\system32\ncsi.dll
2018-02-14 15:20:45 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-02-14 15:20:45 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-02-14 15:20:44 ----A---- C:\WINDOWS\system32\msIso.dll
2018-02-14 15:20:44 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-02-14 15:20:44 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-02-14 15:20:43 ----A---- C:\WINDOWS\system32\wininet.dll
2018-02-14 15:20:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-02-14 15:20:42 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-02-14 15:20:41 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-02-14 15:20:39 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-02-14 15:20:39 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-02-14 15:20:38 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2018-02-14 15:20:38 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-02-14 15:20:37 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-02-14 15:20:37 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-02-14 15:20:36 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-02-14 15:20:35 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2018-02-14 15:20:34 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2018-02-14 15:20:34 ----A---- C:\WINDOWS\system32\wuauclt.exe
2018-02-14 15:20:34 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-02-14 15:20:34 ----A---- C:\WINDOWS\system32\ISM.dll
2018-02-14 15:20:34 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2018-02-14 15:20:33 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2018-02-14 15:20:33 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2018-02-14 15:20:33 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-02-14 15:20:33 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-02-14 15:20:33 ----A---- C:\WINDOWS\system32\nlaapi.dll
2018-02-14 15:20:33 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2018-02-14 15:20:33 ----A---- C:\WINDOWS\system32\convertvhd.exe
2018-02-14 15:20:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2018-02-14 15:20:32 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-02-14 15:20:32 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2018-02-14 15:20:32 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-02-14 15:20:31 ----A---- C:\WINDOWS\system32\nlasvc.dll
2018-02-14 15:20:31 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-02-14 15:20:31 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2018-02-14 15:20:30 ----A---- C:\WINDOWS\system32\twinui.dll
2018-02-14 15:20:30 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-02-14 15:20:30 ----A---- C:\WINDOWS\system32\comdlg32.dll
2018-02-14 15:20:29 ----A---- C:\WINDOWS\system32\wow64.dll
2018-02-14 15:20:29 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-02-14 15:20:29 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-02-14 15:20:28 ----A---- C:\WINDOWS\system32\shell32.dll
2018-02-14 15:20:28 ----A---- C:\WINDOWS\explorer.exe
2018-02-14 15:20:27 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-02-14 15:20:27 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-02-14 15:20:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-02-14 15:20:25 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-02-14 15:20:25 ----A---- C:\WINDOWS\system32\mfps.dll
2018-02-14 15:20:15 ----A---- C:\WINDOWS\system32\usocore.dll
2018-02-14 15:20:15 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2018-02-14 15:20:15 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-02-14 15:20:11 ----A---- C:\WINDOWS\system32\vac.exe
2018-02-14 15:20:10 ----A---- C:\WINDOWS\system32\SRH.dll
2018-02-14 15:20:09 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2018-02-14 15:20:09 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2018-02-14 15:20:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-02-14 15:20:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-02-14 15:20:08 ----A---- C:\WINDOWS\system32\cldapi.dll
2018-02-14 15:20:08 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-02-14 15:20:06 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-02-14 15:20:06 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-02-14 15:20:04 ----A---- C:\WINDOWS\system32\winresume.exe
2018-02-14 15:20:04 ----A---- C:\WINDOWS\system32\winload.exe
2018-02-14 15:20:04 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-02-14 15:20:04 ----A---- C:\WINDOWS\system32\ci.dll
2018-02-14 15:20:03 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2018-02-14 15:20:03 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-02-14 15:20:03 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-02-14 15:20:03 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-02-14 15:20:03 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-02-14 15:20:03 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2018-02-14 15:20:03 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2018-02-14 15:20:03 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-02-14 15:20:02 ----A---- C:\WINDOWS\system32\devinv.dll
2018-02-14 15:20:02 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-02-14 15:20:02 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-02-14 15:20:02 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-02-14 15:19:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-02-14 15:19:59 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-02-14 15:19:59 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-02-14 15:19:59 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2018-02-14 15:19:59 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-02-14 15:19:59 ----A---- C:\WINDOWS\system32\sppobjs.dll
2018-02-14 15:19:59 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-02-14 15:19:57 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-02-14 15:19:57 ----A---- C:\WINDOWS\system32\efscore.dll
2018-02-14 15:19:57 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-02-14 15:19:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2018-02-14 15:19:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2018-02-14 15:19:55 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-02-14 15:19:54 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2018-02-14 15:19:54 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-02-14 15:19:54 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-02-14 15:19:53 ----A---- C:\WINDOWS\system32\usercpl.dll
2018-02-14 15:19:53 ----A---- C:\WINDOWS\system32\rtmpltfm.dll
2018-02-14 15:19:52 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2018-02-14 15:19:52 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2018-02-14 15:19:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-02-14 15:19:52 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-02-14 15:19:52 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2018-02-14 15:19:51 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-02-14 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2018-02-14 15:19:50 ----A---- C:\WINDOWS\system32\tquery.dll
2018-02-14 15:19:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-02-14 15:19:50 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-02-14 15:19:50 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2018-02-14 15:19:50 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-02-14 15:19:49 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-02-14 15:19:49 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-02-14 15:19:49 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2018-02-14 15:19:49 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-02-14 15:19:49 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2018-02-14 15:19:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2018-02-14 15:19:48 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2018-02-14 15:19:48 ----A---- C:\WINDOWS\SYSWOW64\rtmpltfm.dll
2018-02-14 15:19:47 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2018-02-14 15:19:47 ----A---- C:\WINDOWS\system32\Wpc.dll
2018-02-14 15:19:47 ----A---- C:\WINDOWS\system32\sppwinob.dll
2018-02-14 15:19:46 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2018-02-14 15:19:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2018-02-14 15:19:45 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2018-02-14 15:19:45 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2018-02-14 15:19:45 ----A---- C:\WINDOWS\system32\FSClient.dll
2018-02-14 15:19:44 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-02-14 15:19:44 ----A---- C:\WINDOWS\system32\mf.dll
2018-02-14 15:19:44 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-02-14 15:19:43 ----A---- C:\WINDOWS\system32\wpncore.dll
2018-02-14 15:19:43 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-02-14 15:19:43 ----A---- C:\WINDOWS\system32\mmc.exe
2018-02-14 15:19:43 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-02-14 15:19:43 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2018-02-14 15:19:43 ----A---- C:\WINDOWS\system32\aepic.dll
2018-02-14 15:19:42 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2018-02-14 15:19:42 ----A---- C:\WINDOWS\SYSWOW64\nshhttp.dll
2018-02-14 15:19:42 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-02-14 15:19:42 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-02-14 15:19:42 ----A---- C:\WINDOWS\system32\VSSVC.exe
2018-02-14 15:19:42 ----A---- C:\WINDOWS\system32\rtmpal.dll
2018-02-14 15:19:42 ----A---- C:\WINDOWS\system32\rasapi32.dll
2018-02-14 15:19:42 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-02-14 15:19:42 ----A---- C:\WINDOWS\system32\invagent.dll
2018-02-14 15:19:41 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2018-02-14 15:19:41 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2018-02-14 15:19:41 ----A---- C:\WINDOWS\system32\WpcMon.exe
2018-02-14 15:19:41 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-02-14 15:19:41 ----A---- C:\WINDOWS\system32\FntCache.dll
2018-02-14 15:19:40 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-02-14 15:19:40 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2018-02-14 15:19:40 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2018-02-14 15:19:40 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-02-14 15:19:39 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2018-02-14 15:19:39 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-02-14 15:19:39 ----A---- C:\WINDOWS\system32\SEMgrSvc.dll
2018-02-14 15:19:39 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-02-14 15:19:39 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-02-14 15:19:38 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2018-02-14 15:19:38 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-02-14 15:19:38 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2018-02-14 15:19:38 ----A---- C:\WINDOWS\system32\authui.dll
2018-02-14 15:19:37 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2018-02-14 15:19:37 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2018-02-14 15:19:37 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-02-14 15:19:37 ----A---- C:\WINDOWS\system32\shutdownux.dll
2018-02-14 15:19:37 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-02-14 15:19:37 ----A---- C:\WINDOWS\system32\rtmcodecs.dll
2018-02-14 15:19:37 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-02-14 15:19:36 ----A---- C:\WINDOWS\SYSWOW64\rtmpal.dll
2018-02-14 15:19:35 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2018-02-14 15:19:35 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2018-02-14 15:19:35 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2018-02-14 15:19:35 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2018-02-14 15:19:35 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-02-14 15:19:35 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-02-14 15:19:35 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-02-14 15:19:35 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2018-02-14 15:19:35 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-02-14 15:19:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2018-02-14 15:19:34 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-02-14 15:19:34 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2018-02-14 15:19:34 ----A---- C:\WINDOWS\system32\setupapi.dll
2018-02-14 15:19:34 ----A---- C:\WINDOWS\system32\policymanager.dll
2018-02-14 15:19:34 ----A---- C:\WINDOWS\system32\localspl.dll
2018-02-14 15:19:34 ----A---- C:\WINDOWS\system32\efswrt.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\system32\uDWM.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\system32\rasdlg.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\system32\lsm.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-02-14 15:19:33 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2018-02-14 15:19:32 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-02-14 15:19:32 ----A---- C:\WINDOWS\SYSWOW64\rtmcodecs.dll
2018-02-14 15:19:32 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2018-02-14 15:19:32 ----A---- C:\WINDOWS\system32\mspaint.exe
2018-02-14 15:19:31 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-02-14 15:19:31 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2018-02-14 15:19:31 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2018-02-14 15:19:31 ----A---- C:\WINDOWS\system32\Magnify.exe
2018-02-14 15:19:31 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2018-02-14 15:19:30 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2018-02-14 15:19:30 ----A---- C:\WINDOWS\system32\winbrand.dll
2018-02-14 15:19:30 ----A---- C:\WINDOWS\system32\SettingSync.dll
2018-02-14 15:19:30 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-02-14 15:19:30 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-02-14 15:19:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2018-02-14 15:19:29 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-02-14 15:19:29 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-02-14 15:19:29 ----A---- C:\WINDOWS\system32\webio.dll
2018-02-14 15:19:29 ----A---- C:\WINDOWS\system32\vssapi.dll
2018-02-14 15:19:29 ----A---- C:\WINDOWS\system32\FrameServer.dll
2018-02-14 15:19:29 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2018-02-14 15:19:28 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-02-14 15:19:28 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-02-14 15:19:28 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-02-14 15:19:28 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-02-14 15:19:27 ----A---- C:\WINDOWS\system32\srcore.dll
2018-02-14 15:19:27 ----A---- C:\WINDOWS\system32\rastls.dll
2018-02-14 15:19:27 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-02-14 15:19:27 ----A---- C:\WINDOWS\system32\gameux.dll
2018-02-14 15:19:27 ----A---- C:\WINDOWS\system32\FsIso.exe
2018-02-14 15:19:27 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-02-14 15:19:26 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2018-02-14 15:19:26 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-02-14 15:19:26 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2018-02-14 15:19:26 ----A---- C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-02-14 15:19:26 ----A---- C:\WINDOWS\system32\rasgcw.dll
2018-02-14 15:19:26 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\SYSWOW64\sppcomapi.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2018-02-14 15:19:25 ----A---- C:\WINDOWS\system32\wldp.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\system32\edputil.dll
2018-02-14 15:19:25 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-02-14 15:19:25 ----A---- C:\WINDOWS\system32\aclui.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\SYSWOW64\rtmmvrortc.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\SYSWOW64\ortcengine.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2018-02-14 15:19:24 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2018-02-14 15:19:24 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2018-02-14 15:19:24 ----A---- C:\WINDOWS\system32\rtmmvrortc.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-02-14 15:19:24 ----A---- C:\WINDOWS\system32\ortcengine.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\SYSWOW64\edputil.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\SYSWOW64\DeviceReactivation.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2018-02-14 15:19:23 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\system32\twinapi.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2018-02-14 15:19:23 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\system32\WebClnt.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\system32\sud.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\system32\netlogon.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\system32\mmcbase.dll
2018-02-14 15:19:22 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2018-02-14 15:19:21 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2018-02-14 15:19:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\system32\zipfldr.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\system32\themecpl.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\system32\srchadmin.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\system32\shsetup.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\system32\SharedPCCSP.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-02-14 15:19:21 ----A---- C:\WINDOWS\system32\hgcpl.dll
2018-02-14 15:19:21 ----A---- C:\WINDOWS\system32\davclnt.dll
2018-02-14 15:19:20 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2018-02-14 15:19:20 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-02-14 15:19:20 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2018-02-14 15:19:20 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2018-02-14 15:19:20 ----A---- C:\WINDOWS\system32\ListSvc.dll
2018-02-14 15:19:20 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2018-02-14 15:19:20 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-02-14 15:19:20 ----A---- C:\WINDOWS\system32\authz.dll
2018-02-14 15:19:19 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2018-02-14 15:19:19 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-02-14 15:19:19 ----A---- C:\WINDOWS\system32\stobject.dll
2018-02-14 15:19:19 ----A---- C:\WINDOWS\system32\netplwiz.dll
2018-02-14 15:19:19 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-02-14 15:19:19 ----A---- C:\WINDOWS\system32\FontProvider.dll
2018-02-14 15:19:18 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2018-02-14 15:19:18 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2018-02-14 15:19:18 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2018-02-14 15:19:18 ----A---- C:\WINDOWS\system32\themeui.dll
2018-02-14 15:19:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2018-02-14 15:19:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2018-02-14 15:19:17 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2018-02-14 15:19:17 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2018-02-14 15:19:17 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-02-14 15:19:17 ----A---- C:\WINDOWS\system32\ntshrui.dll
2018-02-14 15:19:17 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2018-02-14 15:19:17 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2018-02-14 15:19:17 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2018-02-14 15:19:17 ----A---- C:\WINDOWS\system32\bootux.dll
2018-02-14 15:19:16 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2018-02-14 15:19:16 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2018-02-14 15:19:16 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2018-02-14 15:19:16 ----A---- C:\WINDOWS\SYSWOW64\regsvr32.exe
2018-02-14 15:19:16 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2018-02-14 15:19:16 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2018-02-14 15:19:16 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-02-14 15:19:16 ----A---- C:\WINDOWS\system32\rshx32.dll
2018-02-14 15:19:16 ----A---- C:\WINDOWS\system32\regsvr32.exe
2018-02-14 15:19:16 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2018-02-14 15:19:16 ----A---- C:\WINDOWS\system32\fontext.dll
2018-02-14 15:19:16 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.ProxyStub.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\SYSWOW64\EnterpriseAppMgmtClient.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2018-02-14 15:19:15 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2018-02-14 15:19:14 ----A---- C:\WINDOWS\SYSWOW64\mmcbase.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.ProxyStub.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\system32\twext.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\system32\rstrui.exe
2018-02-14 15:19:14 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-02-14 15:19:14 ----A---- C:\WINDOWS\system32\dsreg.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2018-02-14 15:19:13 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeHelper.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\system32\wups2.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\system32\winsrv.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\system32\winsku.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\system32\virtdisk.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\system32\tzres.dll
2018-02-14 15:19:13 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2018-02-13 17:10:25 ----D---- C:\Users\Peter\AppData\Roaming\vlc
2018-02-10 10:31:32 ----D---- C:\ProgramData\ClassicShell
2018-02-10 10:30:32 ----D---- C:\Program Files\Classic Shell
2018-02-10 08:22:24 ----D---- C:\WINDOWS\Panther
2018-02-10 08:22:14 ----D---- C:\WINDOWS\Minidump
2018-02-07 14:35:15 ----D---- C:\Program Files\Microsoft Office 15
2018-02-04 15:01:38 ----D---- C:\Windows10Upgrade
2018-02-01 21:10:56 ----A---- C:\WINDOWS\system32\vcruntime140.dll
2018-02-01 21:10:56 ----A---- C:\WINDOWS\system32\vccorlib140.dll
2018-02-01 21:10:56 ----A---- C:\WINDOWS\system32\msvcp140.dll
2018-02-01 21:10:56 ----A---- C:\WINDOWS\system32\concrt140.dll
2018-02-01 21:09:34 ----A---- C:\WINDOWS\SYSWOW64\vccorlib140.dll
2018-02-01 21:09:34 ----A---- C:\WINDOWS\SYSWOW64\msvcp140.dll
2018-02-01 21:09:32 ----A---- C:\WINDOWS\SYSWOW64\vcruntime140.dll
2018-02-01 21:09:32 ----A---- C:\WINDOWS\SYSWOW64\concrt140.dll

[Vasil]

======List of files/folders modified in the last 1 month======

2018-02-28 16:39:11 ----D---- C:\Program Files\trend micro
2018-02-28 16:36:53 ----D---- C:\WINDOWS\Temp
2018-02-28 16:33:03 ----D---- C:\Users\Peter\AppData\Roaming\uTorrent
2018-02-28 16:30:26 ----D---- C:\WINDOWS\Prefetch
2018-02-28 16:29:10 ----D---- C:\WINDOWS\DeliveryOptimization
2018-02-28 16:28:14 ----D---- C:\WINDOWS\AppReadiness
2018-02-28 16:28:13 ----HD---- C:\Program Files\WindowsApps
2018-02-28 16:26:40 ----RSD---- C:\WINDOWS\assembly
2018-02-28 16:23:52 ----D---- C:\WINDOWS\system32\sru
2018-02-27 20:40:07 ----D---- C:\WINDOWS\system32\SleepStudy
2018-02-27 20:05:35 ----SHD---- C:\WINDOWS\Installer
2018-02-27 18:37:27 ----RD---- C:\WINDOWS\Microsoft.NET
2018-02-27 17:20:20 ----D---- C:\WINDOWS\LiveKernelReports
2018-02-27 17:11:16 ----D---- C:\WINDOWS\system32\drivers
2018-02-27 16:59:05 ----D---- C:\Windows
2018-02-26 18:49:50 ----D---- C:\WINDOWS\system32\Tasks
2018-02-25 18:00:55 ----SHD---- C:\System Volume Information
2018-02-25 18:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2018-02-25 17:59:57 ----D---- C:\WINDOWS\Logs
2018-02-24 12:09:30 ----D---- C:\WINDOWS\system32\config
2018-02-23 21:36:10 ----AD---- C:\Program Files (x86)\Microsoft Office
2018-02-23 21:09:07 ----RSD---- C:\WINDOWS\Fonts
2018-02-23 21:08:18 ----D---- C:\WINDOWS\SysWOW64
2018-02-23 21:08:18 ----D---- C:\WINDOWS\System32
2018-02-23 21:08:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-02-23 21:07:30 ----D---- C:\Program Files (x86)\Common Files
2018-02-23 21:07:22 ----D---- C:\Program Files (x86)\Microsoft.NET
2018-02-23 19:40:52 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-02-23 19:01:53 ----SD---- C:\Users\Peter\AppData\Roaming\Microsoft
2018-02-21 20:13:20 ----D---- C:\WINDOWS\system32\DriverStore
2018-02-21 20:13:17 ----D---- C:\WINDOWS\WinSxS
2018-02-19 21:09:03 ----D---- C:\WINDOWS\system32\catroot2
2018-02-19 19:59:07 ----D---- C:\WINDOWS\INF
2018-02-18 18:41:54 ----RD---- C:\Program Files
2018-02-18 18:35:30 ----HD---- C:\ProgramData
2018-02-18 15:43:44 ----SD---- C:\ProgramData\Microsoft
2018-02-17 21:19:39 ----D---- C:\WINDOWS\rescache
2018-02-17 18:58:26 ----D---- C:\Users\Peter\AppData\Roaming\MPC-HC
2018-02-17 17:54:46 ----D---- C:\WINDOWS\debug
2018-02-17 16:57:41 ----D---- C:\Program Files\ESET
2018-02-17 16:53:22 ----D---- C:\ProgramData\Microsoft Help
2018-02-17 16:53:06 ----RD---- C:\Program Files (x86)
2018-02-17 16:53:01 ----D---- C:\WINDOWS\ShellNew
2018-02-17 16:52:49 ----D---- C:\Program Files (x86)\MSBuild
2018-02-17 16:48:06 ----D---- C:\Program Files\Common Files\microsoft shared
2018-02-17 16:38:33 ----AD---- C:\Program Files\Opera
2018-02-17 16:28:54 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2018-02-17 16:23:08 ----AD---- C:\Program Files (x86)\HP
2018-02-17 16:16:16 ----A---- C:\WINDOWS\win.ini
2018-02-17 16:13:26 ----D---- C:\WINDOWS\twain_32
2018-02-17 16:12:26 ----AD---- C:\ProgramData\HP
2018-02-16 21:13:45 ----HD---- C:\WINDOWS\system32\GroupPolicy
2018-02-16 21:10:48 ----D---- C:\WINDOWS\SYSWOW64\GroupPolicy
2018-02-16 20:03:11 ----D---- C:\WINDOWS\system32\NDF
2018-02-15 15:31:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-02-15 15:23:34 ----D---- C:\WINDOWS\system32\CatRoot
2018-02-15 15:18:35 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2018-02-14 19:04:49 ----D---- C:\WINDOWS\TextInput
2018-02-14 19:04:49 ----D---- C:\WINDOWS\SYSWOW64\wbem
2018-02-14 19:04:48 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-02-14 19:04:48 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-02-14 19:04:35 ----D---- C:\WINDOWS\system32\wbem
2018-02-14 19:04:35 ----D---- C:\WINDOWS\system32\oobe
2018-02-14 19:04:34 ----D---- C:\WINDOWS\system32\migration
2018-02-14 19:04:34 ----D---- C:\WINDOWS\system32\en-US
2018-02-14 19:04:34 ----D---- C:\WINDOWS\system32\Boot
2018-02-14 19:04:34 ----D---- C:\WINDOWS\system32\appraiser
2018-02-14 19:04:16 ----D---- C:\WINDOWS\ShellExperiences
2018-02-14 19:04:12 ----D---- C:\WINDOWS\bcastdvr
2018-02-14 19:04:12 ----D---- C:\WINDOWS\apppatch
2018-02-14 19:03:55 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-02-14 16:06:31 ----D---- C:\WINDOWS\system32\MRT
2018-02-14 15:44:34 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-02-14 15:44:24 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-02-14 15:38:00 ----D---- C:\WINDOWS\CbsTemp
2018-02-09 14:53:10 ----D---- C:\ProgramData\Lenovo
2018-02-08 15:45:06 ----D---- C:\Program Files (x86)\Lenovo
2018-02-06 19:57:43 ----D---- C:\WINDOWS\system32\Macromed
2018-02-06 19:57:35 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-02-06 03:49:15 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2016-10-19 77176]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 pwdrvio;pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [2013-09-30 19152]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-01-01 59800]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-10-19 262600]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2016-10-19 193032]
R1 EpfwLWF;@oem63.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2016-10-19 58440]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-09-29 8192]
R1 MpKsl512deb70;MpKsl512deb70; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{88EC8A8E-D776-4D26-904A-8FF5BA92E71D}\MpKsl512deb70.sys [2018-02-27 58120]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2016-10-19 236064]
R2 IntelHaxm;Intel HAXM Service; C:\WINDOWS\system32\DRIVERS\IntelHaxm.sys [2016-06-12 93192]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 43520]
R3 AmUStor;@oem11.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2013-06-25 109336]
R3 bcbtums;@oem37.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-03-27 173312]
R3 BCM43XX;@oem43.inf,%BCM43XX_Service_DispName%;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2014-05-16 7474864]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-09-29 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2015-09-03 74432]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-03 3811288]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-09-13 3641688]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem34.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 LnvHIDHW;@oem50.inf,%LnvHIDHW%;Lenovo HID Mini-driver for Hardware Radio Switch; C:\WINDOWS\System32\drivers\LnvHIDHW.sys [2014-04-07 29496]
R3 MEIx64;@oem52.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-09-29 604160]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-08-21 44192]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2018-02-10 1015296]
S3 btwampfl;@oem37.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-03-27 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 122368]
S3 Fastboot;Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [2014-05-16 65928]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-09-29 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2016-05-22 192216]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 netr28ux;@netr28ux.inf,%Generic.Service.DispName%;RT2870 USB Extensible Wireless LAN Card Driver; C:\WINDOWS\System32\drivers\netr28ux.sys [2017-09-29 2224128]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 pwdspio;pwdspio; \??\C:\WINDOWS\system32\pwdspio.sys [2013-09-30 12504]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-09-29 936856]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-09-30 56216]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CDPUserSvc_e0c9c7;Connected Devices Platform User Service_e0c9c7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 ClickToRunSvc;‪Služba Microsoft Office Klikni a spusti‬; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-02-08 7968424]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2014-05-16 140016]
R2 IBMPMSVC;@oem28.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2015-09-03 156912]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 ImControllerService;@oem16.inf,%ImcSvcDisplayName%;System Interface Foundation Service; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-11-12 68408]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-16 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 LocationTaskManager;LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [2015-01-09 469720]
R2 MediatekRegistryWriter64;MediatekRegistryWriter64; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe [2014-12-04 454288]
R2 OneSyncSvc_e0c9c7;Sync Host_e0c9c7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-02-10 519144]
R2 Serviio;Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [2018-02-07 413696]
R3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2013-09-25 282112]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-10-21 43648]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 Power Manager DBC Service;Lenovo Settings Power Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2015-01-16 1668848]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 BcmBtRSupport;@oem37.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 ekrn;ESET Service; C:\Program Files\ESET\ESET Endpoint Security\x86\ekrn.exe [2017-03-10 1072320]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-27 153752]
S2 Lenovo Settings Service;Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2015-01-23 2016472]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 MediatekRegistryWriter;MediatekRegistryWriter; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe [2014-12-04 405136]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2017-09-29 48688]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2017-09-29 48688]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-02-06 272384]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-03 299488]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc_e0c9c7;DevicesFlow_e0c9c7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 85504]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Endpoint Security\EHttpSrv.exe [2017-03-10 53376]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ESHASRV;ESET SHA Service; C:\Program Files\ESET\ESET Endpoint Security\EShaSrv.exe [2017-03-10 200832]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-27 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 LENOVO.CAMMUTE;Lenovo AVFramework Camera Privacy Controller; C:\Program Files\Lenovo\Communications Utility\cammute.exe [2015-01-21 456136]
S3 LENOVO.TPKNRSVC;Lenovo AVFramework Microphone Volume Controller and Dolby Interface; C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe [2015-01-21 453576]
S3 LENOVO.TVTVCAM;Lenovo AVFramework Virtual Camera Controller Service; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2015-01-21 626120]
S3 LnvHotSpotSvc;Lenovo Settings Mobile Hotspot Service; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [2014-08-12 474608]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-08-24 273232]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService_e0c9c7;MessagingService_e0c9c7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ose;Office Source Engine; c:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-02-08 208560]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc_e0c9c7;Kontaktné údaje_e0c9c7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc_e0c9c7;PrintWorkflow_e0c9c7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 QuickControlService;Lenovo QuickControl Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [2013-07-16 138232]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 1288704]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-01-01 956416]
S4 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2017-09-20 145688]
S4 QuickControlMasterSvc;Lenovo QuickControl Master Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [2013-07-16 59384]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]

-----------------EOF-----------------

[Rudy]

Zdravím!
Otevřte adresář c:\windows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu.

[Vasil]

Prikladam rar

[Rudy]

Stáhněte, nainstalujte a spusťte CrystalDiskInfo: http://www.stahuj.centrum.cz/utility_a_ ... ldiskinfo/ a přes Úpravy>kopírovat sem dejte log.

[Vasil]

----------------------------------------------------------------------------
CrystalDiskInfo 7.5.2 (C) 2008-2018 hiyohiyo
Crystal Dew World : https://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 10 [10.0 Build 16299] (x64)
Date : 2018/02/28 18:15:06

-- Controller Map ----------------------------------------------------------
+ Intel(R) 7 Series/C216 Chipset Family SATA AHCI Controller - 1E03 [ATA]
- WDC WD5000LPVT-24G33T1
- HL-DT-ST DVDRAM GTA0N
- Microsoft Storage Spaces Controller [SCSI]

-- Disk List ---------------------------------------------------------------
(1) WDC WD5000LPVT-24G33T1 : 500,1 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD5000LPVT-24G33T1
----------------------------------------------------------------------------
Model : WDC WD5000LPVT-24G33T1
Firmware : 02.01A02
Serial Number : WD-WX11A34S8041
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300 | SATA/300
Power On Hours : 8663 hours
Power On Count : 5399 count
Temperature : 37 C (98 F)
Health Status : Caution
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0060h [ON]
AAM Level : ----
Drive Letter : C: D: F:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000001A5A Read Error Rate
03 149 146 _21 0000000005F5 Spin-Up Time
04 __1 __1 __0 00000001847E Start/Stop Count
05 200 200 140 000000000002 Reallocated Sectors Count
07 200 198 __0 000000000000 Seek Error Rate
09 _89 _89 __0 0000000021D7 Power-On Hours
0A 100 100 __0 000000000000 Spin Retry Count
0B 100 100 __0 000000000000 Recalibration Retries
0C _95 _95 __0 000000001517 Power Cycle Count
C0 200 200 __0 00000000001B Power-off Retract Count
C1 160 160 __0 00000001DEA2 Load/Unload Cycle Count
C2 106 _91 __0 000000000025 Temperature
C4 198 198 __0 000000000002 Reallocation Event Count
C5 200 199 __0 000000000032 Current Pending Sector Count
C6 100 253 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
C8 200 200 __0 000000000000 Write Error Rate

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 3131 4133 3453 3830 3431
020: 0000 4000 0000 3032 2E30 3141 3032 5744 4320 5744
030: 3530 3030 4C50 5654 2D32 3447 3333 5431 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 9F06 0004 004C 0040
080: 01FE 0000 346B 7D09 6123 3469 BC09 6123 407F 0030
090: 0030 0060 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 6003 0000 5001 4EE6
110: 59C5 D64B 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0400
130: 0001 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 7035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 103E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 92A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 5A 1A 00 00 00 00 00 03 27
010: 00 95 92 F5 05 00 00 00 00 00 04 32 00 01 01 7E
020: 84 01 00 00 00 00 05 33 00 C8 C8 02 00 00 00 00
030: 00 00 07 2E 00 C8 C6 00 00 00 00 00 00 00 09 32
040: 00 59 59 D7 21 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 5F 5F 17 15 00 00 00 00 00 C0 32
070: 00 C8 C8 1B 00 00 00 00 00 00 C1 32 00 A0 A0 A2
080: DE 01 00 00 00 00 C2 22 00 6A 5B 25 00 00 00 00
090: 00 00 C4 32 00 C6 C6 02 00 00 00 00 00 00 C5 32
0A0: 00 C8 C7 32 00 00 00 00 00 00 C6 30 00 64 FD 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 A0 23 01 7B
170: 03 00 01 00 02 68 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 43

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 00 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0D

[Rudy]

Disk je pravděpodobně poškozen. Sken vykazuje několik podezřelých sektrů. Udělejte ještě ErrorScan HDTune: http://www.stahuj.centrum.cz/utility_a_ ... -tune-pro/ . Pokud by byly sektory v pořádku, budou všechna políčka zelená.

[Vasil]

Error Scan ukazal, ze je tam nejaky chybny sektor, zrejme to bude sposobene tym. Dakujem za pomoc.

[Rudy]

Error Scan ukazal, ze je tam nejaky chybny sektor, zrejme to bude sposobene tym. Dakujem za pomoc.

S největší prvděpodobností ano. Nemáte zač!