VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

vyskakovanie newpoptab v prehliadači

https://forum.viry.cz:443/viewtopic.php?t=147452

Stránka 1 z 2

vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 10:35
od ype3it
Zdravim Vás, pred mesiacom som si nahodil windows 10, vsetko OK, az kym som nestiahol program z neznameho zdroja. Po jeho stiahnuti mi na internetovom prehliadači začalo vyskakovanie reklamných okien, vacsinou s adresou newpoptab.com, vyskakuje to pri zdani novej adresy, alebo pri kliknuti na hocake miesto v priestore okna prehliadača.

postupoval som podla navodu a vygeneroval RSIT log.

info.txt logfile of random's system information tool 1.10 2016-01-03 10:33:35

======MBR======

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

======Uninstall list======

-->C:\Program Files\CONEXANT\cAudioFilterAgent\SETUP64.EXE -U -IcAudioFilterAgent -SM=cAudioFilterAgent64.exe,16
-->C:\Program Files\Conexant\CxAudMsg\SETUP64.EXE -U -ICxAudMsg
-->C:\Program Files\Conexant\DolbyGUI\SETUP64.EXE -U -IDolbyGUI
-->C:\Program Files\Conexant\SAII\SETUP64.EXE -U -ISAII -SWTM="HDAudioAPI-D9A3021B-9BCE-458C-B667-9029C4EF4050,1801"
Adobe Flash Player 20 NPAPI-->C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_267_Plugin.exe -maintain plugin
calibre 64bit-->MsiExec.exe /I{54EFBCD2-A4FB-4C37-A720-9A8195EFC7B4}
Conexant HD Audio-->C:\Program Files\CONEXANT\CNXT_AUDIO_HDA\UIU64a.exe -U -G -IG13Plmwa.inf
Dolby Digital Plus Advanced Audio-->MsiExec.exe /X{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}
ELAN Touchpad 11.15.0.18_X64-->%ProgramFiles%\Elantech\ETDUn_inst.exe
ESET Smart Security-->MsiExec.exe /I{AAF926D8-FC24-4932-8542-4CD2C259E765}
Lenovo EasyCamera-->C:\WINDOWS\RtCamU64.exe /u /s
Microsoft Office 365 - sk-sk-->"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" scenario=install scenariosubtype=uninstall productstoremove=O365HomePremRetail.16_sk-sk_x-none culture=sk-sk
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Mobile Partner-->C:\Program Files (x86)\Mobile Partner\uninst.exe
Mozilla Firefox 43.0.2 (x86 sk)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
MyHeritage Family Tree Builder-->C:\Program Files (x86)\MyHeritage\Bin\Uninstall.exe
Office 16 Click-to-Run Extensibility Component-->MsiExec.exe /X{90160000-008C-0000-0000-0000000FF1CE}
Office 16 Click-to-Run Licensing Component-->MsiExec.exe /I{90160000-008F-0000-1000-0000000FF1CE}
Skype Click to Call-->MsiExec.exe /X{6D1221A9-17BF-4EC0-81F2-27D30EC30701}
Skype™ 7.17-->MsiExec.exe /X{FC965A47-4839-40CA-B618-18F486F042C6}
VLC media player-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe

======System event log======

Computer Name: DESKTOP-KGMSNJL
Event Code: 10010
Message: The server {A47979D2-C419-11D9-A5B4-001185AD2B89} did not register with DCOM within the required timeout.
Record Number: 42
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20151212185023.341019-000
Event Type: Error
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-KGMSNJL
Event Code: 10010
Message: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register with DCOM within the required timeout.
Record Number: 41
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20151212185021.684699-000
Event Type: Error
User: NT AUTHORITY\LOCAL SERVICE

Computer Name: DESKTOP-KGMSNJL
Event Code: 7030
Message: Služba Rozšírenia a oznámenia tlačiarne je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.
Record Number: 39
Source Name: Service Control Manager
Time Written: 20151212184944.450298-000
Event Type: Error
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 7023
Message: Služba Služba zoznamu sietí bola ukončená s nasledujúcou chybou:
The device is not ready.
Record Number: 29
Source Name: Service Control Manager
Time Written: 20151212184823.387808-000
Event Type: Error
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 7023
Message: Služba iphlpsvc bola ukončená s nasledujúcou chybou:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
Record Number: 27
Source Name: Service Control Manager
Time Written: 20151212184741.231532-000
Event Type: Error
User:

=====Application event log=====

Computer Name: DESKTOP-KGMSNJL
Event Code: 4104
Message: Failed trying to get the state of the cluster node: .The error code returned: 0x8007085A
Record Number: 37
Source Name: Microsoft-Windows-MSDTC Client 2
Time Written: 20151212185857.373237-000
Event Type: Error
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 4104
Message: Failed trying to get the state of the cluster node: .The error code returned: 0x8007085A
Record Number: 35
Source Name: Microsoft-Windows-MSDTC 2
Time Written: 20151212185857.107683-000
Event Type: Error
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 4104
Message: Failed trying to get the state of the cluster node: DESKTOP-KGMSNJL.The error code returned: 0x8007085A
Record Number: 34
Source Name: Microsoft-Windows-MSDTC Client 2
Time Written: 20151212185856.748235-000
Event Type: Warning
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 4104
Message: Failed trying to get the state of the cluster node: .The error code returned: 0x8007085A
Record Number: 33
Source Name: Microsoft-Windows-MSDTC Client 2
Time Written: 20151212185856.685806-000
Event Type: Error
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 1534
Message: Profile notification of event Create for component {D63AA156-D534-4BAC-9BF1-55359CF5EC30} failed, error code is The system cannot find the path specified.
.


Record Number: 20
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20151212185433.452778-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

=====Security event log=====

Computer Name: DESKTOP-KGMSNJL
Event Code: 4688
Message: A new process has been created.

Creator Subject:
Security ID: S-1-5-18
Account Name: -
Account Domain: -
Logon ID: 0x3E7

Target Subject:
Security ID: S-1-0-0
Account Name: -
Account Domain: -
Logon ID: 0x0

Process Information:
New Process ID: 0x178
New Process Name: C:\Windows\System32\smss.exe
Token Elevation Type: %%1936
Mandatory Label: S-1-16-16384
Creator Process ID: 0x128
Creator Process Name: C:\Windows\System32\smss.exe
Process Command Line:

Token Elevation Type indicates the type of token that was assigned to the new process in accordance with User Account Control policy.

Type 1 is a full token with no privileges removed or groups disabled. A full token is only used if User Account Control is disabled or if the user is the built-in Administrator account or a service account.

Type 2 is an elevated token with no privileges removed or groups disabled. An elevated token is used when User Account Control is enabled and the user chooses to start the program using Run as administrator. An elevated token is also used when an application is configured to always require administrative privilege or to always require maximum privilege, and the user is a member of the Administrators group.

Type 3 is a limited token with administrative privileges removed and administrative groups disabled. The limited token is used when User Account Control is enabled, the application does not require administrative privilege, and the user does not choose to start the program using Run as administrator.
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20151212184651.217612-000
Event Type: Audit Success
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 4688
Message: A new process has been created.

Creator Subject:
Security ID: S-1-5-18
Account Name: -
Account Domain: -
Logon ID: 0x3E7

Target Subject:
Security ID: S-1-0-0
Account Name: -
Account Domain: -
Logon ID: 0x0

Process Information:
New Process ID: 0x16c
New Process Name: C:\Windows\System32\setupcl.exe
Token Elevation Type: %%1936
Mandatory Label: S-1-16-16384
Creator Process ID: 0x128
Creator Process Name: C:\Windows\System32\smss.exe
Process Command Line:

Token Elevation Type indicates the type of token that was assigned to the new process in accordance with User Account Control policy.

Type 1 is a full token with no privileges removed or groups disabled. A full token is only used if User Account Control is disabled or if the user is the built-in Administrator account or a service account.

Type 2 is an elevated token with no privileges removed or groups disabled. An elevated token is used when User Account Control is enabled and the user chooses to start the program using Run as administrator. An elevated token is also used when an application is configured to always require administrative privilege or to always require maximum privilege, and the user is a member of the Administrators group.

Type 3 is a limited token with administrative privileges removed and administrative groups disabled. The limited token is used when User Account Control is enabled, the application does not require administrative privilege, and the user does not choose to start the program using Run as administrator.
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20151212184637.937825-000
Event Type: Audit Success
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 4688
Message: A new process has been created.

Creator Subject:
Security ID: S-1-5-18
Account Name: -
Account Domain: -
Logon ID: 0x3E7

Target Subject:
Security ID: S-1-0-0
Account Name: -
Account Domain: -
Logon ID: 0x0

Process Information:
New Process ID: 0x13c
New Process Name: C:\Windows\System32\autochk.exe
Token Elevation Type: %%1936
Mandatory Label: S-1-16-16384
Creator Process ID: 0x128
Creator Process Name: C:\Windows\System32\smss.exe
Process Command Line:

Token Elevation Type indicates the type of token that was assigned to the new process in accordance with User Account Control policy.

Type 1 is a full token with no privileges removed or groups disabled. A full token is only used if User Account Control is disabled or if the user is the built-in Administrator account or a service account.

Type 2 is an elevated token with no privileges removed or groups disabled. An elevated token is used when User Account Control is enabled and the user chooses to start the program using Run as administrator. An elevated token is also used when an application is configured to always require administrative privilege or to always require maximum privilege, and the user is a member of the Administrators group.

Type 3 is a limited token with administrative privileges removed and administrative groups disabled. The limited token is used when User Account Control is enabled, the application does not require administrative privilege, and the user does not choose to start the program using Run as administrator.
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20151212184636.399754-000
Event Type: Audit Success
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 4688
Message: A new process has been created.

Creator Subject:
Security ID: S-1-5-18
Account Name: -
Account Domain: -
Logon ID: 0x3E7

Target Subject:
Security ID: S-1-0-0
Account Name: -
Account Domain: -
Logon ID: 0x0

Process Information:
New Process ID: 0x128
New Process Name: C:\Windows\System32\smss.exe
Token Elevation Type: %%1936
Mandatory Label: S-1-16-16384
Creator Process ID: 0x4
Creator Process Name:
Process Command Line:

Token Elevation Type indicates the type of token that was assigned to the new process in accordance with User Account Control policy.

Type 1 is a full token with no privileges removed or groups disabled. A full token is only used if User Account Control is disabled or if the user is the built-in Administrator account or a service account.

Type 2 is an elevated token with no privileges removed or groups disabled. An elevated token is used when User Account Control is enabled and the user chooses to start the program using Run as administrator. An elevated token is also used when an application is configured to always require administrative privilege or to always require maximum privilege, and the user is a member of the Administrators group.

Type 3 is a limited token with administrative privileges removed and administrative groups disabled. The limited token is used when User Account Control is enabled, the application does not require administrative privilege, and the user does not choose to start the program using Run as administrator.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20151212184635.236087-000
Event Type: Audit Success
User:

Computer Name: DESKTOP-KGMSNJL
Event Code: 4826
Message: Boot Configuration Data loaded.

Subject:
Security ID: S-1-5-18
Account Name: -
Account Domain: -
Logon ID: 0x3E7

General Settings:
Load Options: -
Advanced Options: No
Configuration Access Policy: Default
System Event Logging: No
Kernel Debugging: No
VSM Launch Type: Off

Signature Settings:
Test Signing: No
Flight Signing: No
Disable Integrity Checks: No

HyperVisor Settings:
HyperVisor Load Options: -
HyperVisor Launch Type: Off
HyperVisor Debugging: No
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20151212184635.172232-000
Event Type: Audit Success
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Calibre2\;C:\Program Files (x86)\Skype\Phone\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=21
"PROCESSOR_IDENTIFIER"=AMD64 Family 21 Model 16 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=1001
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\

-----------------EOF-----------------

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 11:07
od Rudy
Zdravím!
Abych mohl něco řešit, potřebuji vidět obsah souboru log.txt. Info.txt je pro tento účel k ničemu.

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 12:16
od ype3it
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pc at 2016-01-03 12:14:35
Microsoft Windows 10 Home
System drive C: has 907 GB (95%) free of 953 GB
Total RAM: 7383 MB (73% free)

HijackThis download failed

======Listing Processes======








winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\WINDOWS\system32\CxAudMsg64.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
dashost.exe {91daef68-c719-413d-a3eb7923566af110}
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5fb96b77-def2-4875-9a9b-3980ca213a8b -SystemEventPortName:HostProcess-b114869d-b78a-4590-bce5-bc2a54b3299b -IoCancelEventPortName:HostProcess-522b049a-6041-4965-8229-be26e9991c25 -NonStateChangingEventPortName:HostProcess-4d4c79d0-d82a-4fdd-8eb3-d3f9cb4e083d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bb51856a-d5ba-4b36-b43f-28c5e56bf02c -DeviceGroupId:WpdFsGroup
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{478B41E6-3257-4519-BDA8-E971F9843849}
"C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" "http://esurf.biz/?ssid=1451324169&a=100 ... a835a5ee84"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Internet Explorer\IELowutil.exe" -PID:123

C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Pc.DESKTOP-KGMSNJL\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Mozilla\Firefox\Profiles\ul3n3zc6.default

prefs.js - "browser.startup.homepage" - "www.google.sk"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2015-12-16 220840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12 2134656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2015-12-16 2083032]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12 1725056]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-12-12 3242696]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2015-12-12 9309936]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2015-12-12 241152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-13 551112]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-14 50377336]
"Mobile Partner"=C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe [2014-10-30 515072]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Family Tree Builder Update"=C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2015-03-02 2477056]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-03 10:33:32 ----D---- C:\rsit
2016-01-03 10:33:32 ----D---- C:\Program Files\trend micro
2015-12-29 18:00:30 ----D---- C:\ProgramData\ESET
2015-12-29 18:00:25 ----D---- C:\Program Files\ESET
2015-12-28 18:42:25 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Opera Software
2015-12-28 18:37:48 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\SimpleFiles
2015-12-20 19:32:55 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-20 19:32:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-20 19:32:47 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-20 19:32:43 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-20 19:32:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-20 19:32:42 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-20 19:32:42 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-20 19:32:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-20 19:32:40 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-20 19:32:40 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-20 19:32:38 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-20 19:32:38 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-20 19:32:37 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-20 19:32:35 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-20 19:32:35 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-20 19:32:33 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-20 19:32:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-20 19:32:27 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-20 19:32:23 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-20 19:32:21 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-20 19:32:16 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-20 19:32:15 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-20 19:32:13 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-18 20:54:46 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\MyHeritage
2015-12-18 20:54:46 ----D---- C:\ProgramData\MyHeritage
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\PDFDocScout.DLL
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\PaintX.dll
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\MSSTDFMT.DLL
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\ijl15.dll
2015-12-18 20:54:38 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\The Complete Genealogy Reporter - FTB
2015-12-18 20:54:38 ----A---- C:\WINDOWS\SYSWOW64\unicows.dll
2015-12-18 20:53:33 ----AD---- C:\Program Files (x86)\MyHeritage
2015-12-17 20:18:57 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\vlc
2015-12-17 10:00:03 ----D---- C:\ProgramData\Mobile Partner
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\WdfCoInstaller01007.dll
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewusbwwan.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_wwanecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_juwwanecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_juextctrl.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jubusenum.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_hwupgrade.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_cdcacm.sys
2015-12-17 09:59:03 ----D---- C:\Program Files (x86)\Mobile Partner
2015-12-17 09:58:47 ----D---- C:\ProgramData\DatacardService
2015-12-16 12:29:22 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Skype
2015-12-16 12:29:11 ----RD---- C:\Program Files (x86)\Skype
2015-12-16 12:29:06 ----D---- C:\ProgramData\Skype
2015-12-16 11:39:13 ----AD---- C:\Program Files (x86)\Microsoft Office
2015-12-16 11:39:07 ----D---- C:\Program Files\Microsoft Office 15
2015-12-15 00:35:34 ----D---- C:\kniznica robota
2015-12-14 14:51:10 ----D---- C:\Program Files (x86)\VideoLAN
2015-12-14 14:47:43 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\calibre
2015-12-14 14:47:01 ----AD---- C:\Program Files\Calibre2
2015-12-14 14:17:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-14 12:59:26 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Macromedia
2015-12-13 09:30:13 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Mozilla
2015-12-13 09:30:00 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2015-12-13 04:31:29 ----D---- C:\WINDOWS\SYSWOW64\sda
2015-12-12 20:02:54 ----SHD---- C:\Recovery
2015-12-12 20:01:13 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-12-12 19:57:21 ----ASH---- C:\hiberfil.sys
2015-12-12 19:54:32 ----SD---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Microsoft
2015-12-12 19:51:29 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-12-12 19:51:10 ----D---- C:\Program Files\AMD
2015-12-12 19:50:23 ----A---- C:\WINDOWS\SYSWOW64\SASrv.exe
2015-12-12 19:50:20 ----A---- C:\WINDOWS\system32\drivers\CxSfPt.dat
2015-12-12 19:50:01 ----A---- C:\WINDOWS\system32\CxAudMsg64.exe
2015-12-12 19:49:44 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-12 19:49:43 ----AD---- C:\Program Files\Dolby Digital Plus
2015-12-12 19:49:30 ----HD---- C:\Program Files\Uninstall Information
2015-12-12 19:49:04 ----D---- C:\ProgramData\Conexant
2015-12-12 19:48:57 ----D---- C:\Program Files\CONEXANT
2015-12-12 19:48:27 ----D---- C:\Program Files\Elantech
2015-12-12 19:48:13 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-12 19:47:38 ----D---- C:\WINDOWS\Prefetch
2015-12-12 19:46:52 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-12 19:46:08 ----DC---- C:\WINDOWS\Panther
2015-12-12 19:42:39 ----D---- C:\Windows.old
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-12 19:41:31 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\services.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-12 19:37:56 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-12 19:22:06 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-12 18:56:03 ----A---- C:\WINDOWS\SYSWOW64\RsCRIcon.dll
2015-12-12 18:56:03 ----A---- C:\WINDOWS\system32\RtCRX64.dll
2015-12-12 18:56:03 ----A---- C:\WINDOWS\system32\drivers\RtsUer.sys
2015-12-12 18:51:24 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\TiltWheelMouse.exe
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\mousecpl.dll
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\drivers\t_mouse.sys
2015-12-12 17:27:32 ----A---- C:\WINDOWS\system32\drivers\amdkmpfd.sys
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\UCI64A96.DLL
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\SPKVol.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\OrVerbs.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\Mixer.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\MicGain.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\MicEQ.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\ISAPSII.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\FXMisc.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\drivers\EdgeEQ.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\drivers\DS1Parm.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\CHDRT64.sys
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\BIT_CLK.ini
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\ALTMIXER.INI
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\AFA.ini
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CxPageMaster64.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CX64BP16.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CSpkExt64.dll
2015-12-12 17:00:53 ----A---- C:\WINDOWS\system32\drivers\AtihdWT6.sys
2015-12-12 17:00:53 ----A---- C:\WINDOWS\system32\DelayAPO.dll
2015-12-12 17:00:48 ----A---- C:\WINDOWS\system32\drivers\AcpiVpc.sys
2015-12-12 16:58:06 ----A---- C:\WINDOWS\system32\drivers\rtsuvc.sys
2015-12-12 16:58:05 ----A---- C:\WINDOWS\SYSWOW64\RtCamX.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\SYSWOW64\RsDecode.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\system32\RtCamX64.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\RTFTrack.exe
2015-12-12 16:58:05 ----A---- C:\WINDOWS\RtCamU64.exe
2015-12-12 16:57:39 ----A---- C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-12-12 16:57:38 ----A---- C:\WINDOWS\system32\drivers\ETD.sys
2015-12-12 16:57:36 ----A---- C:\WINDOWS\system32\BtwRSupportService.exe
2015-12-12 16:57:36 ----A---- C:\WINDOWS\system32\btwdi.dll
2015-12-12 16:57:35 ----A---- C:\WINDOWS\system32\drivers\btwampfl.sys
2015-12-12 16:57:31 ----A---- C:\WINDOWS\system32\drivers\bcbtums.sys
2015-12-12 16:57:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-12 16:56:13 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2015-12-12 16:56:13 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2015-12-12 16:56:11 ----A---- C:\WINDOWS\system32\detoured.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\ativvsvl.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\ativvsva.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\ativvsva.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_vi.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativce03.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativce02.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atiumd64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atitmm64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atisamu64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-12-12 16:56:07 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atio6axx.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atimpc64.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atig6txx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atieah64.exe
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atidxx64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticfx64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdxc64.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2015-12-12 16:56:02 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2015-12-12 16:56:01 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2015-12-12 16:55:59 ----A---- C:\WINDOWS\system32\amdocl64.dll
2015-12-12 16:55:59 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll
2015-12-12 16:55:58 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\system32\amdmmcl6.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-12-12 16:55:56 ----A---- C:\WINDOWS\system32\amdicdxx.dat
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2015-12-12 16:55:54 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2015-12-12 16:55:54 ----A---- C:\WINDOWS\system32\amde31a.dat
2015-12-12 16:55:54 ----A---- C:\WINDOWS\system32\amdave64.dll
2015-12-12 16:55:53 ----A---- C:\WINDOWS\system32\drivers\amdacpksd.sys
2015-12-12 16:54:42 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Adobe
2015-12-12 16:21:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-12-12 16:08:03 ----D---- C:\Program Files\AMD Quick Stream
2015-12-12 16:07:24 ----D---- C:\ProgramData\AMD
2015-12-12 16:04:24 ----D---- C:\Program Files (x86)\AMD
2015-12-12 16:04:18 ----D---- C:\ProgramData\Package Cache
2015-12-12 16:02:10 ----D---- C:\drivers
2015-12-12 15:38:05 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-12 15:21:53 ----D---- C:\WINDOWS\system32\MRT
2015-12-12 15:07:16 ----D---- C:\ProgramData\Microsoft OneDrive
2015-12-12 14:59:48 ----D---- C:\WINDOWS\SoftwareDistribution
2015-12-12 14:51:57 ----ASH---- C:\swapfile.sys
2015-12-12 14:51:56 ----ASH---- C:\pagefile.sys
2015-12-12 14:51:55 ----SHD---- C:\System Volume Information
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\vcruntime140.dll
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\vccorlib140.dll
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\msvcp140.dll
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\concrt140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\vcruntime140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\vccorlib140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\msvcp140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\concrt140.dll

======List of files/folders modified in the last 1 month======

2016-01-03 12:13:27 ----D---- C:\WINDOWS\system32\sru
2016-01-03 12:11:57 ----D---- C:\WINDOWS\Temp
2016-01-03 10:33:32 ----RD---- C:\Program Files
2016-01-03 07:54:40 ----D---- C:\WINDOWS\System32
2016-01-03 07:54:40 ----D---- C:\WINDOWS\INF
2016-01-02 15:40:20 ----D---- C:\WINDOWS\system32\config
2016-01-01 20:43:29 ----D---- C:\WINDOWS\WinSxS
2016-01-01 20:42:40 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-01 15:03:05 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 15:02:41 ----D---- C:\WINDOWS\system32\WDI
2015-12-31 14:27:42 ----D---- C:\WINDOWS\CbsTemp
2015-12-31 14:27:38 ----D---- C:\WINDOWS\SysWOW64
2015-12-31 11:46:10 ----HD---- C:\Program Files\WindowsApps
2015-12-29 18:01:58 ----D---- C:\WINDOWS\system32\drivers
2015-12-29 18:01:56 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-29 18:01:54 ----SHD---- C:\WINDOWS\Installer
2015-12-29 18:01:35 ----HD---- C:\WINDOWS\ELAMBKUP
2015-12-29 18:00:30 ----HD---- C:\ProgramData
2015-12-29 09:47:38 ----RD---- C:\Program Files (x86)
2015-12-28 18:43:48 ----D---- C:\WINDOWS\system32\Tasks
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-23 17:01:31 ----D---- C:\WINDOWS\system32\appraiser
2015-12-23 17:01:30 ----D---- C:\WINDOWS\Provisioning
2015-12-23 17:01:30 ----D---- C:\WINDOWS\bcastdvr
2015-12-23 17:01:30 ----D---- C:\WINDOWS\AppPatch
2015-12-23 16:51:37 ----D---- C:\WINDOWS\debug
2015-12-20 20:37:53 ----D---- C:\WINDOWS\ModemLogs
2015-12-20 19:25:55 ----D---- C:\WINDOWS\system32\catroot2
2015-12-17 11:16:53 ----D---- C:\WINDOWS\system32\LogFiles
2015-12-16 12:29:11 ----D---- C:\Program Files (x86)\Common Files
2015-12-16 12:11:36 ----RD---- C:\WINDOWS\assembly
2015-12-16 12:11:29 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2015-12-16 12:11:26 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-16 11:42:06 ----RSD---- C:\WINDOWS\Fonts
2015-12-16 11:39:07 ----SD---- C:\ProgramData\Microsoft
2015-12-16 11:39:05 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-16 00:08:12 ----D---- C:\WINDOWS\LiveKernelReports
2015-12-15 21:37:33 ----D---- C:\WINDOWS\Logs
2015-12-15 00:19:17 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-14 13:23:54 ----D---- C:\WINDOWS\Tasks
2015-12-13 08:58:34 ----D---- C:\WINDOWS\system32\restore
2015-12-13 04:35:01 ----D---- C:\WINDOWS\appcompat
2015-12-13 04:32:42 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-12 22:28:36 ----D---- C:\Windows
2015-12-12 20:05:06 ----D---- C:\WINDOWS\rescache
2015-12-12 20:04:28 ----RD---- C:\WINDOWS\PrintDialog
2015-12-12 20:04:27 ----RD---- C:\WINDOWS\MiracastView
2015-12-12 20:03:56 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-12 20:02:46 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-12 20:01:45 ----D---- C:\WINDOWS\Registration
2015-12-12 19:59:35 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-12 19:59:27 ----D---- C:\WINDOWS\system32\wbem
2015-12-12 19:56:56 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-12 19:56:01 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-12-12 19:55:56 ----D---- C:\WINDOWS\system32\spool
2015-12-12 19:55:55 ----D---- C:\WINDOWS\system32\slmgr
2015-12-12 19:55:51 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-12 19:55:49 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-12 19:55:46 ----RD---- C:\Users
2015-12-12 19:55:44 ----D---- C:\ProgramData\USOPrivate
2015-12-12 19:55:44 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-12 19:55:34 ----D---- C:\WINDOWS\system32\Recovery
2015-12-12 19:53:52 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-12 19:51:59 ----D---- C:\WINDOWS\twain_32
2015-12-12 19:51:29 ----D---- C:\Program Files\Common Files
2015-12-12 19:47:01 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\sk-SK
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\oobe
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\migration
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\Dism
2015-12-12 19:42:25 ----D---- C:\Program Files\Internet Explorer
2015-12-12 19:42:25 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-12 19:25:46 ----HD---- C:\$WINDOWS.~BT
2015-12-12 18:02:51 ----SHD---- C:\$Recycle.Bin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem5.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-12-12 82704]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-11-20 69840]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 263528]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 186784]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-11-20 206312]
R1 EpfwLWF;@oem38.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-11-20 52872]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2015-11-20 142976]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 ACPIVPC;@oem2.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-12-12 42328]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-12 21633552]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-12 673816]
R3 AtiHDAudioService;@oem1.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-12-12 102912]
R3 bcbtums;@oem9.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-12-12 227144]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2015-10-30 7585280]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2015-10-30 84992]
R3 CnxtHdAudService;@oem0.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-12-12 1561728]
R3 ETD;@oem7.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-12-12 525512]
R3 ew_usbenumfilter;@oem13.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [2012-12-22 14976]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2013-11-30 91648]
R3 hwusb_cdcacm;hwusb_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
R3 hwusb_wwanecm;hwusb_wwanecm; C:\WINDOWS\System32\drivers\ew_wwanecm.sys [2014-09-30 380672]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2015-10-30 121344]
R3 rtsuvc;@oem8.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-12-12 3059440]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14976]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2015-10-30 953344]
S3 btwampfl;@oem9.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-12-12 234800]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-12 117248]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RTSUER;@oem6.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-12-12 410880]
S3 t_mouse.sys;@oem4.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2015-12-12 6144]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 254816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 131424]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-12 255504]
R2 BcmBtRSupport;@oem9.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-12-12 2297104]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2015-12-04 2748600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2015-11-20 2522616]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-12-12 144072]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 OneSyncSvc_3ac5f;Sync Host_3ac5f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_3ac5f;Kontaktné údaje_3ac5f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 UnistoreSvc_3ac5f;Ukladací priestor používateľských údajov_3ac5f; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_107624;MessagingService_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_32571;MessagingService_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_37fea;MessagingService_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_3ac5f;MessagingService_3ac5f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2013-10-26 651856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_107624;Sync Host_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_32571;Sync Host_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_37fea;Sync Host_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_c3535;Sync Host_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_c3535;MessagingService_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-12-04 202928]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_107624;Kontaktné údaje_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_32571;Kontaktné údaje_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_37fea;Kontaktné údaje_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_c3535;Kontaktné údaje_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_107624;Ukladací priestor používateľských údajov_107624; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_32571;Ukladací priestor používateľských údajov_32571; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_37fea;Ukladací priestor používateľských údajov_37fea; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_c3535;Ukladací priestor používateľských údajov_c3535; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 12:39
od Rudy
Teď spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 12:51
od ype3it
po restartovani PC. log z adwcleaner

# AdwCleaner v5.027 - Logfile created 03/01/2016 at 12:46:13
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Local]
# Operating system : Windows 10 Home (x64)
# Username : Pc - MILAN
# Running from : C:\Users\Pc.DESKTOP-KGMSNJL\Desktop\adwcleaner_5.027.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\SimpleFiles

***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****

[-] Shortcut Disinfected : C:\Users\Public\Desktop\Mozilla Firefox.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[-] Shortcut Disinfected : C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk
[-] Shortcut Disinfected : C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk

***** [ Scheduled tasks ] *****



***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\SimpleFiles
[-] Key Deleted : HKLM\SOFTWARE\SimpleFiles

***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1303 bytes] ##########

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 17:48
od Rudy
Dejte nový log RSIT.

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 19:26
od ype3it
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pc at 2016-01-03 19:23:18
Microsoft Windows 10 Home
System drive C: has 907 GB (95%) free of 953 GB
Total RAM: 7383 MB (73% free)

HijackThis download failed

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\WINDOWS\system32\CxAudMsg64.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
dashost.exe {19176a14-9455-44be-8c10f1ce6d0a904a}
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Windows\RTFTrack.exe"
"C:\Windows\System32\TiltWheelMouse.exe"
"C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\WINDOWS\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[C1].txt
"C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Pc.DESKTOP-KGMSNJL\Desktop\Diplomovka\Legdan Milan-DP teoretická časť.docx" /o ""
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{478B41E6-3257-4519-BDA8-E971F9843849}
"C:\WINDOWS\System32\NetworkUXBroker.exe" -ServerName:Windows.Networking.UX
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe"

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f697c70f-89ee-4cb7-89d9-4e46ea9c65cf -SystemEventPortName:HostProcess-80ce6845-8faf-456e-916f-d4269c03c8ca -IoCancelEventPortName:HostProcess-0acf820c-a6d8-4d0e-afb5-ea53edb8bd2b -NonStateChangingEventPortName:HostProcess-3425c8cc-6050-4c5e-85c0-6a73644ef1a8 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b23b7350-10ac-4cd7-b7e3-757200117f06 -DeviceGroupId:WpdFsGroup
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe17_ Global\UsGthrCtrlFltPipeMssGthrPipe17 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 620 624 632 8192 628
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Pc.DESKTOP-KGMSNJL\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Mozilla\Firefox\Profiles\ul3n3zc6.default

prefs.js - "browser.startup.homepage" - "www.google.sk"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2015-12-16 220840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12 2134656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2015-12-16 2083032]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12 1725056]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-12-12 3242696]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2015-12-12 9309936]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2015-12-12 241152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-13 551112]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-14 50377336]
"Mobile Partner"=C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe [2014-10-30 515072]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Family Tree Builder Update"=C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2015-03-02 2477056]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-03 12:43:05 ----D---- C:\AdwCleaner
2016-01-03 10:33:32 ----D---- C:\rsit
2016-01-03 10:33:32 ----D---- C:\Program Files\trend micro
2015-12-29 18:00:30 ----D---- C:\ProgramData\ESET
2015-12-29 18:00:25 ----D---- C:\Program Files\ESET
2015-12-28 18:42:25 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Opera Software
2015-12-20 19:32:55 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-20 19:32:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-20 19:32:47 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-20 19:32:43 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-20 19:32:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-20 19:32:42 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-20 19:32:42 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-20 19:32:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-20 19:32:40 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-20 19:32:40 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-20 19:32:38 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-20 19:32:38 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-20 19:32:37 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-20 19:32:35 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-20 19:32:35 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-20 19:32:33 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-20 19:32:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-20 19:32:27 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-20 19:32:23 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-20 19:32:21 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-20 19:32:16 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-20 19:32:15 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-20 19:32:13 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-18 20:54:46 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\MyHeritage
2015-12-18 20:54:46 ----D---- C:\ProgramData\MyHeritage
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\PDFDocScout.DLL
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\PaintX.dll
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\MSSTDFMT.DLL
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\ijl15.dll
2015-12-18 20:54:38 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\The Complete Genealogy Reporter - FTB
2015-12-18 20:54:38 ----A---- C:\WINDOWS\SYSWOW64\unicows.dll
2015-12-18 20:53:33 ----AD---- C:\Program Files (x86)\MyHeritage
2015-12-17 20:18:57 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\vlc
2015-12-17 10:00:03 ----D---- C:\ProgramData\Mobile Partner
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\WdfCoInstaller01007.dll
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewusbwwan.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_wwanecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_juwwanecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_juextctrl.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jubusenum.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_hwupgrade.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_cdcacm.sys
2015-12-17 09:59:03 ----D---- C:\Program Files (x86)\Mobile Partner
2015-12-17 09:58:47 ----D---- C:\ProgramData\DatacardService
2015-12-16 12:29:22 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Skype
2015-12-16 12:29:11 ----RD---- C:\Program Files (x86)\Skype
2015-12-16 12:29:06 ----D---- C:\ProgramData\Skype
2015-12-16 11:39:13 ----AD---- C:\Program Files (x86)\Microsoft Office
2015-12-16 11:39:07 ----D---- C:\Program Files\Microsoft Office 15
2015-12-15 00:35:34 ----D---- C:\kniznica robota
2015-12-14 14:51:10 ----D---- C:\Program Files (x86)\VideoLAN
2015-12-14 14:47:43 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\calibre
2015-12-14 14:47:01 ----AD---- C:\Program Files\Calibre2
2015-12-14 14:17:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-14 12:59:26 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Macromedia
2015-12-13 09:30:13 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Mozilla
2015-12-13 09:30:00 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2015-12-13 04:31:29 ----D---- C:\WINDOWS\SYSWOW64\sda
2015-12-12 20:02:54 ----SHD---- C:\Recovery
2015-12-12 20:01:13 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-12-12 19:57:21 ----ASH---- C:\hiberfil.sys
2015-12-12 19:54:32 ----SD---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Microsoft
2015-12-12 19:51:29 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-12-12 19:51:10 ----D---- C:\Program Files\AMD
2015-12-12 19:50:23 ----A---- C:\WINDOWS\SYSWOW64\SASrv.exe
2015-12-12 19:50:20 ----A---- C:\WINDOWS\system32\drivers\CxSfPt.dat
2015-12-12 19:50:01 ----A---- C:\WINDOWS\system32\CxAudMsg64.exe
2015-12-12 19:49:44 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-12 19:49:43 ----AD---- C:\Program Files\Dolby Digital Plus
2015-12-12 19:49:30 ----HD---- C:\Program Files\Uninstall Information
2015-12-12 19:49:04 ----D---- C:\ProgramData\Conexant
2015-12-12 19:48:57 ----D---- C:\Program Files\CONEXANT
2015-12-12 19:48:27 ----D---- C:\Program Files\Elantech
2015-12-12 19:48:13 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-12 19:47:38 ----D---- C:\WINDOWS\Prefetch
2015-12-12 19:46:52 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-12 19:46:08 ----DC---- C:\WINDOWS\Panther
2015-12-12 19:42:39 ----D---- C:\Windows.old
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-12 19:41:31 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\services.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-12 19:37:56 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-12 19:22:06 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-12 18:56:03 ----A---- C:\WINDOWS\SYSWOW64\RsCRIcon.dll
2015-12-12 18:56:03 ----A---- C:\WINDOWS\system32\RtCRX64.dll
2015-12-12 18:56:03 ----A---- C:\WINDOWS\system32\drivers\RtsUer.sys
2015-12-12 18:51:24 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\TiltWheelMouse.exe
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\mousecpl.dll
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\drivers\t_mouse.sys
2015-12-12 17:27:32 ----A---- C:\WINDOWS\system32\drivers\amdkmpfd.sys
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\UCI64A96.DLL
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\SPKVol.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\OrVerbs.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\Mixer.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\MicGain.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\MicEQ.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\ISAPSII.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\FXMisc.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\drivers\EdgeEQ.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\drivers\DS1Parm.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\CHDRT64.sys
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\BIT_CLK.ini
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\ALTMIXER.INI
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\AFA.ini
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CxPageMaster64.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CX64BP16.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CSpkExt64.dll
2015-12-12 17:00:53 ----A---- C:\WINDOWS\system32\drivers\AtihdWT6.sys
2015-12-12 17:00:53 ----A---- C:\WINDOWS\system32\DelayAPO.dll
2015-12-12 17:00:48 ----A---- C:\WINDOWS\system32\drivers\AcpiVpc.sys
2015-12-12 16:58:06 ----A---- C:\WINDOWS\system32\drivers\rtsuvc.sys
2015-12-12 16:58:05 ----A---- C:\WINDOWS\SYSWOW64\RtCamX.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\SYSWOW64\RsDecode.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\system32\RtCamX64.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\RTFTrack.exe
2015-12-12 16:58:05 ----A---- C:\WINDOWS\RtCamU64.exe
2015-12-12 16:57:39 ----A---- C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-12-12 16:57:38 ----A---- C:\WINDOWS\system32\drivers\ETD.sys
2015-12-12 16:57:36 ----A---- C:\WINDOWS\system32\BtwRSupportService.exe
2015-12-12 16:57:36 ----A---- C:\WINDOWS\system32\btwdi.dll
2015-12-12 16:57:35 ----A---- C:\WINDOWS\system32\drivers\btwampfl.sys
2015-12-12 16:57:31 ----A---- C:\WINDOWS\system32\drivers\bcbtums.sys
2015-12-12 16:57:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-12 16:56:13 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2015-12-12 16:56:13 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2015-12-12 16:56:11 ----A---- C:\WINDOWS\system32\detoured.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\ativvsvl.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\ativvsva.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\ativvsva.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_vi.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativce03.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativce02.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atiumd64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atitmm64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atisamu64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-12-12 16:56:07 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atio6axx.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atimpc64.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atig6txx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atieah64.exe
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atidxx64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticfx64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdxc64.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2015-12-12 16:56:02 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2015-12-12 16:56:01 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2015-12-12 16:55:59 ----A---- C:\WINDOWS\system32\amdocl64.dll
2015-12-12 16:55:59 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll
2015-12-12 16:55:58 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\system32\amdmmcl6.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-12-12 16:55:56 ----A---- C:\WINDOWS\system32\amdicdxx.dat
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2015-12-12 16:55:54 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2015-12-12 16:55:54 ----A---- C:\WINDOWS\system32\amde31a.dat
2015-12-12 16:55:54 ----A---- C:\WINDOWS\system32\amdave64.dll
2015-12-12 16:55:53 ----A---- C:\WINDOWS\system32\drivers\amdacpksd.sys
2015-12-12 16:54:42 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Adobe
2015-12-12 16:21:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-12-12 16:08:03 ----D---- C:\Program Files\AMD Quick Stream
2015-12-12 16:07:24 ----D---- C:\ProgramData\AMD
2015-12-12 16:04:24 ----D---- C:\Program Files (x86)\AMD
2015-12-12 16:04:18 ----D---- C:\ProgramData\Package Cache
2015-12-12 16:02:10 ----D---- C:\drivers
2015-12-12 15:38:05 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-12 15:21:53 ----D---- C:\WINDOWS\system32\MRT
2015-12-12 15:07:16 ----D---- C:\ProgramData\Microsoft OneDrive
2015-12-12 14:59:48 ----D---- C:\WINDOWS\SoftwareDistribution
2015-12-12 14:51:57 ----ASH---- C:\swapfile.sys
2015-12-12 14:51:56 ----ASH---- C:\pagefile.sys
2015-12-12 14:51:55 ----SHD---- C:\System Volume Information
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\vcruntime140.dll
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\vccorlib140.dll
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\msvcp140.dll
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\concrt140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\vcruntime140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\vccorlib140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\msvcp140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\concrt140.dll

======List of files/folders modified in the last 1 month======

2016-01-03 19:20:39 ----D---- C:\WINDOWS\Temp
2016-01-03 18:16:22 ----D---- C:\WINDOWS\system32\sru
2016-01-03 13:22:35 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-03 12:54:02 ----D---- C:\WINDOWS\System32
2016-01-03 12:54:02 ----D---- C:\WINDOWS\INF
2016-01-03 10:33:32 ----RD---- C:\Program Files
2016-01-02 15:40:20 ----D---- C:\WINDOWS\system32\config
2016-01-01 20:43:29 ----D---- C:\WINDOWS\WinSxS
2016-01-01 15:03:05 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 15:02:41 ----D---- C:\WINDOWS\system32\WDI
2015-12-31 14:27:42 ----D---- C:\WINDOWS\CbsTemp
2015-12-31 14:27:38 ----D---- C:\WINDOWS\SysWOW64
2015-12-31 11:46:10 ----HD---- C:\Program Files\WindowsApps
2015-12-29 18:01:58 ----D---- C:\WINDOWS\system32\drivers
2015-12-29 18:01:56 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-29 18:01:54 ----SHD---- C:\WINDOWS\Installer
2015-12-29 18:01:35 ----HD---- C:\WINDOWS\ELAMBKUP
2015-12-29 18:00:30 ----HD---- C:\ProgramData
2015-12-29 09:47:38 ----RD---- C:\Program Files (x86)
2015-12-28 18:43:48 ----D---- C:\WINDOWS\system32\Tasks
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-23 17:01:31 ----D---- C:\WINDOWS\system32\appraiser
2015-12-23 17:01:30 ----D---- C:\WINDOWS\Provisioning
2015-12-23 17:01:30 ----D---- C:\WINDOWS\bcastdvr
2015-12-23 17:01:30 ----D---- C:\WINDOWS\AppPatch
2015-12-23 16:51:37 ----D---- C:\WINDOWS\debug
2015-12-20 20:37:53 ----D---- C:\WINDOWS\ModemLogs
2015-12-20 19:25:55 ----D---- C:\WINDOWS\system32\catroot2
2015-12-17 11:16:53 ----D---- C:\WINDOWS\system32\LogFiles
2015-12-16 12:29:11 ----D---- C:\Program Files (x86)\Common Files
2015-12-16 12:11:36 ----RD---- C:\WINDOWS\assembly
2015-12-16 12:11:29 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2015-12-16 12:11:26 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-16 11:42:06 ----RSD---- C:\WINDOWS\Fonts
2015-12-16 11:39:07 ----SD---- C:\ProgramData\Microsoft
2015-12-16 11:39:05 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-16 00:08:12 ----D---- C:\WINDOWS\LiveKernelReports
2015-12-15 21:37:33 ----D---- C:\WINDOWS\Logs
2015-12-15 00:19:17 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-14 13:23:54 ----D---- C:\WINDOWS\Tasks
2015-12-13 08:58:34 ----D---- C:\WINDOWS\system32\restore
2015-12-13 04:35:01 ----D---- C:\WINDOWS\appcompat
2015-12-13 04:32:42 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-12 22:28:36 ----D---- C:\Windows
2015-12-12 20:05:06 ----D---- C:\WINDOWS\rescache
2015-12-12 20:04:28 ----RD---- C:\WINDOWS\PrintDialog
2015-12-12 20:04:27 ----RD---- C:\WINDOWS\MiracastView
2015-12-12 20:03:56 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-12 20:02:46 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-12 20:01:45 ----D---- C:\WINDOWS\Registration
2015-12-12 19:59:35 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-12 19:59:27 ----D---- C:\WINDOWS\system32\wbem
2015-12-12 19:56:56 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-12 19:56:01 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-12-12 19:55:56 ----D---- C:\WINDOWS\system32\spool
2015-12-12 19:55:55 ----D---- C:\WINDOWS\system32\slmgr
2015-12-12 19:55:51 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-12 19:55:49 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-12 19:55:46 ----RD---- C:\Users
2015-12-12 19:55:44 ----D---- C:\ProgramData\USOPrivate
2015-12-12 19:55:44 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-12 19:55:34 ----D---- C:\WINDOWS\system32\Recovery
2015-12-12 19:53:52 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-12 19:51:59 ----D---- C:\WINDOWS\twain_32
2015-12-12 19:51:29 ----D---- C:\Program Files\Common Files
2015-12-12 19:47:01 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\sk-SK
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\oobe
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\migration
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\Dism
2015-12-12 19:42:25 ----D---- C:\Program Files\Internet Explorer
2015-12-12 19:42:25 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-12 19:25:46 ----HD---- C:\$WINDOWS.~BT
2015-12-12 18:02:51 ----SHD---- C:\$Recycle.Bin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem5.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-12-12 82704]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-11-20 69840]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 263528]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 186784]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-11-20 206312]
R1 EpfwLWF;@oem38.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-11-20 52872]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2015-11-20 142976]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 ACPIVPC;@oem2.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-12-12 42328]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-12 21633552]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-12 673816]
R3 AtiHDAudioService;@oem1.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-12-12 102912]
R3 bcbtums;@oem9.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-12-12 227144]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2015-10-30 7585280]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2015-10-30 84992]
R3 CnxtHdAudService;@oem0.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-12-12 1561728]
R3 ETD;@oem7.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-12-12 525512]
R3 ew_usbenumfilter;@oem13.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [2012-12-22 14976]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2013-11-30 91648]
R3 hwusb_cdcacm;hwusb_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
R3 hwusb_wwanecm;hwusb_wwanecm; C:\WINDOWS\System32\drivers\ew_wwanecm.sys [2014-09-30 380672]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2015-10-30 121344]
R3 rtsuvc;@oem8.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-12-12 3059440]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14976]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2015-10-30 953344]
S3 btwampfl;@oem9.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-12-12 234800]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-12 117248]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RTSUER;@oem6.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-12-12 410880]
S3 t_mouse.sys;@oem4.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2015-12-12 6144]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 254816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 131424]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-12 255504]
R2 BcmBtRSupport;@oem9.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-12-12 2297104]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2015-12-04 2748600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2015-11-20 2522616]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-12-12 144072]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 OneSyncSvc_2bb3d;Sync Host_2bb3d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_2bb3d;Kontaktné údaje_2bb3d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 UnistoreSvc_2bb3d;Ukladací priestor používateľských údajov_2bb3d; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_107624;MessagingService_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_2bb3d;MessagingService_2bb3d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_32571;MessagingService_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_37fea;MessagingService_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2013-10-26 651856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_107624;Sync Host_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_32571;Sync Host_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_37fea;Sync Host_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_c3535;Sync Host_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService_c3535;MessagingService_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-12-04 202928]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_107624;Kontaktné údaje_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_32571;Kontaktné údaje_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_37fea;Kontaktné údaje_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_c3535;Kontaktné údaje_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_107624;Ukladací priestor používateľských údajov_107624; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_32571;Ukladací priestor používateľských údajov_32571; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_37fea;Ukladací priestor používateľských údajov_37fea; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_c3535;Ukladací priestor používateľských údajov_c3535; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 20:19
od Rudy
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:services
c2cautoupdatesvc
c2cpnrsvc

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 20:46
od ype3it
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pc at 2016-01-03 20:45:20
Microsoft Windows 10 Home
System drive C: has 908 GB (95%) free of 953 GB
Total RAM: 7383 MB (80% free)

HijackThis download failed

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5c341cc8-ee81-4252-9182-67dc376cb27b -SystemEventPortName:HostProcess-ea4adb1d-59cc-4b9e-b182-a32781b024aa -IoCancelEventPortName:HostProcess-54d4ba8a-4a10-4e36-9035-bde18bcb369b -NonStateChangingEventPortName:HostProcess-8ffc3569-29fb-41c6-88ce-9b821ff2de74 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6a6a1add-8c0a-4fd2-9d80-bb23ca091fa2 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\atiesrxx.exe
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\BtwRSupportService.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\WINDOWS\system32\CxAudMsg64.exe"
"C:\Program Files\Elantech\ETDService.exe"
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
dashost.exe {18533816-404a-4cf0-b910f0e35196b5f3}
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\ProgramData\DatacardService\DCSHelper.exe /R "C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe"
"C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Windows\RTFTrack.exe"
"C:\Windows\System32\TiltWheelMouse.exe"
"C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.0_none_95e4f9a171a1ad95\TiWorker.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1972544042-4181059230-2419275268-10011_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1972544042-4181059230-2419275268-10011 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 424 624 632 8192 628

C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Pc.DESKTOP-KGMSNJL\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Mozilla\Firefox\Profiles\ul3n3zc6.default

prefs.js - "browser.startup.homepage" - "www.google.sk"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2015-12-16 220840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12 2134656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2015-12-16 2083032]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12 1725056]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-12-12 3242696]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2015-12-12 9309936]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2015-12-12 241152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-13 551112]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-14 50377336]
"Mobile Partner"=C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe [2014-10-30 515072]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Family Tree Builder Update"=C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2015-03-02 2477056]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-03 20:37:00 ----D---- C:\_OTM
2016-01-03 12:43:05 ----D---- C:\AdwCleaner
2016-01-03 10:33:32 ----D---- C:\rsit
2016-01-03 10:33:32 ----D---- C:\Program Files\trend micro
2015-12-29 18:00:30 ----D---- C:\ProgramData\ESET
2015-12-29 18:00:25 ----D---- C:\Program Files\ESET
2015-12-28 18:42:25 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Opera Software
2015-12-20 19:32:55 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-20 19:32:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-20 19:32:47 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-20 19:32:43 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-20 19:32:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-20 19:32:42 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-20 19:32:42 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-20 19:32:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-20 19:32:40 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-20 19:32:40 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-20 19:32:38 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-20 19:32:38 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-20 19:32:37 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-20 19:32:35 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-20 19:32:35 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-20 19:32:33 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-20 19:32:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-20 19:32:27 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-20 19:32:23 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-20 19:32:21 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-20 19:32:16 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-20 19:32:15 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-20 19:32:13 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-18 20:54:46 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\MyHeritage
2015-12-18 20:54:46 ----D---- C:\ProgramData\MyHeritage
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\PDFDocScout.DLL
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\PaintX.dll
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\MSSTDFMT.DLL
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\ijl15.dll
2015-12-18 20:54:38 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\The Complete Genealogy Reporter - FTB
2015-12-18 20:54:38 ----A---- C:\WINDOWS\SYSWOW64\unicows.dll
2015-12-18 20:53:33 ----AD---- C:\Program Files (x86)\MyHeritage
2015-12-17 20:18:57 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\vlc
2015-12-17 10:00:03 ----D---- C:\ProgramData\Mobile Partner
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\WdfCoInstaller01007.dll
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewusbwwan.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_wwanecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_juwwanecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_juextctrl.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jubusenum.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_hwupgrade.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_cdcacm.sys
2015-12-17 09:59:03 ----D---- C:\Program Files (x86)\Mobile Partner
2015-12-17 09:58:47 ----D---- C:\ProgramData\DatacardService
2015-12-16 12:29:22 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Skype
2015-12-16 12:29:11 ----RD---- C:\Program Files (x86)\Skype
2015-12-16 12:29:06 ----D---- C:\ProgramData\Skype
2015-12-16 11:39:13 ----AD---- C:\Program Files (x86)\Microsoft Office
2015-12-16 11:39:07 ----D---- C:\Program Files\Microsoft Office 15
2015-12-15 00:35:34 ----D---- C:\kniznica robota
2015-12-14 14:51:10 ----D---- C:\Program Files (x86)\VideoLAN
2015-12-14 14:47:43 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\calibre
2015-12-14 14:47:01 ----AD---- C:\Program Files\Calibre2
2015-12-14 14:17:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-14 12:59:26 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Macromedia
2015-12-13 09:30:13 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Mozilla
2015-12-13 09:30:00 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2015-12-13 04:31:29 ----D---- C:\WINDOWS\SYSWOW64\sda
2015-12-12 20:02:54 ----SHD---- C:\Recovery
2015-12-12 20:01:13 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-12-12 19:57:21 ----ASH---- C:\hiberfil.sys
2015-12-12 19:54:32 ----SD---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Microsoft
2015-12-12 19:51:29 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-12-12 19:51:10 ----D---- C:\Program Files\AMD
2015-12-12 19:50:23 ----A---- C:\WINDOWS\SYSWOW64\SASrv.exe
2015-12-12 19:50:20 ----A---- C:\WINDOWS\system32\drivers\CxSfPt.dat
2015-12-12 19:50:01 ----A---- C:\WINDOWS\system32\CxAudMsg64.exe
2015-12-12 19:49:44 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-12 19:49:43 ----AD---- C:\Program Files\Dolby Digital Plus
2015-12-12 19:49:30 ----HD---- C:\Program Files\Uninstall Information
2015-12-12 19:49:04 ----D---- C:\ProgramData\Conexant
2015-12-12 19:48:57 ----D---- C:\Program Files\CONEXANT
2015-12-12 19:48:27 ----D---- C:\Program Files\Elantech
2015-12-12 19:48:13 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-12 19:47:38 ----D---- C:\WINDOWS\Prefetch
2015-12-12 19:46:52 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-12 19:46:08 ----DC---- C:\WINDOWS\Panther
2015-12-12 19:42:39 ----D---- C:\Windows.old
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-12 19:41:31 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\services.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-12 19:37:56 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-12 19:22:06 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-12 18:56:03 ----A---- C:\WINDOWS\SYSWOW64\RsCRIcon.dll
2015-12-12 18:56:03 ----A---- C:\WINDOWS\system32\RtCRX64.dll
2015-12-12 18:56:03 ----A---- C:\WINDOWS\system32\drivers\RtsUer.sys
2015-12-12 18:51:24 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\TiltWheelMouse.exe
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\mousecpl.dll
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\drivers\t_mouse.sys
2015-12-12 17:27:32 ----A---- C:\WINDOWS\system32\drivers\amdkmpfd.sys
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\UCI64A96.DLL
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\SPKVol.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\OrVerbs.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\Mixer.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\MicGain.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\MicEQ.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\ISAPSII.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\FXMisc.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\drivers\EdgeEQ.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\drivers\DS1Parm.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\CHDRT64.sys
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\BIT_CLK.ini
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\ALTMIXER.INI
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\AFA.ini
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CxPageMaster64.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CX64BP16.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CSpkExt64.dll
2015-12-12 17:00:53 ----A---- C:\WINDOWS\system32\drivers\AtihdWT6.sys
2015-12-12 17:00:53 ----A---- C:\WINDOWS\system32\DelayAPO.dll
2015-12-12 17:00:48 ----A---- C:\WINDOWS\system32\drivers\AcpiVpc.sys
2015-12-12 16:58:06 ----A---- C:\WINDOWS\system32\drivers\rtsuvc.sys
2015-12-12 16:58:05 ----A---- C:\WINDOWS\SYSWOW64\RtCamX.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\SYSWOW64\RsDecode.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\system32\RtCamX64.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\RTFTrack.exe
2015-12-12 16:58:05 ----A---- C:\WINDOWS\RtCamU64.exe
2015-12-12 16:57:39 ----A---- C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-12-12 16:57:38 ----A---- C:\WINDOWS\system32\drivers\ETD.sys
2015-12-12 16:57:36 ----A---- C:\WINDOWS\system32\BtwRSupportService.exe
2015-12-12 16:57:36 ----A---- C:\WINDOWS\system32\btwdi.dll
2015-12-12 16:57:35 ----A---- C:\WINDOWS\system32\drivers\btwampfl.sys
2015-12-12 16:57:31 ----A---- C:\WINDOWS\system32\drivers\bcbtums.sys
2015-12-12 16:57:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-12 16:56:13 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2015-12-12 16:56:13 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2015-12-12 16:56:11 ----A---- C:\WINDOWS\system32\detoured.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\ativvsvl.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\ativvsva.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\ativvsva.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_vi.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativce03.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativce02.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atiumd64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atitmm64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atisamu64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-12-12 16:56:07 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atio6axx.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atimpc64.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atig6txx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atieah64.exe
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atidxx64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticfx64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdxc64.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2015-12-12 16:56:02 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2015-12-12 16:56:01 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2015-12-12 16:55:59 ----A---- C:\WINDOWS\system32\amdocl64.dll
2015-12-12 16:55:59 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll
2015-12-12 16:55:58 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\system32\amdmmcl6.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-12-12 16:55:56 ----A---- C:\WINDOWS\system32\amdicdxx.dat
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2015-12-12 16:55:54 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2015-12-12 16:55:54 ----A---- C:\WINDOWS\system32\amde31a.dat
2015-12-12 16:55:54 ----A---- C:\WINDOWS\system32\amdave64.dll
2015-12-12 16:55:53 ----A---- C:\WINDOWS\system32\drivers\amdacpksd.sys
2015-12-12 16:54:42 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Adobe
2015-12-12 16:21:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-12-12 16:08:03 ----D---- C:\Program Files\AMD Quick Stream
2015-12-12 16:07:24 ----D---- C:\ProgramData\AMD
2015-12-12 16:04:24 ----D---- C:\Program Files (x86)\AMD
2015-12-12 16:04:18 ----D---- C:\ProgramData\Package Cache
2015-12-12 16:02:10 ----D---- C:\drivers
2015-12-12 15:38:05 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-12 15:21:53 ----D---- C:\WINDOWS\system32\MRT
2015-12-12 15:07:16 ----D---- C:\ProgramData\Microsoft OneDrive
2015-12-12 14:59:48 ----D---- C:\WINDOWS\SoftwareDistribution
2015-12-12 14:51:57 ----ASH---- C:\swapfile.sys
2015-12-12 14:51:56 ----ASH---- C:\pagefile.sys
2015-12-12 14:51:55 ----SHD---- C:\System Volume Information
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\vcruntime140.dll
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\vccorlib140.dll
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\msvcp140.dll
2015-12-04 07:21:20 ----A---- C:\WINDOWS\system32\concrt140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\vcruntime140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\vccorlib140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\msvcp140.dll
2015-12-04 05:22:22 ----A---- C:\WINDOWS\SYSWOW64\concrt140.dll

======List of files/folders modified in the last 1 month======

2016-01-03 20:43:27 ----D---- C:\WINDOWS\Temp
2016-01-03 20:40:27 ----D---- C:\WINDOWS\system32\sru
2016-01-03 13:22:35 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-03 12:54:02 ----D---- C:\WINDOWS\System32
2016-01-03 12:54:02 ----D---- C:\WINDOWS\INF
2016-01-03 10:33:32 ----RD---- C:\Program Files
2016-01-02 15:40:20 ----D---- C:\WINDOWS\system32\config
2016-01-01 20:43:29 ----D---- C:\WINDOWS\WinSxS
2016-01-01 15:03:05 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 15:02:41 ----D---- C:\WINDOWS\system32\WDI
2015-12-31 14:27:42 ----D---- C:\WINDOWS\CbsTemp
2015-12-31 14:27:38 ----D---- C:\WINDOWS\SysWOW64
2015-12-31 11:46:10 ----HD---- C:\Program Files\WindowsApps
2015-12-29 18:01:58 ----D---- C:\WINDOWS\system32\drivers
2015-12-29 18:01:56 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-29 18:01:54 ----SHD---- C:\WINDOWS\Installer
2015-12-29 18:01:35 ----HD---- C:\WINDOWS\ELAMBKUP
2015-12-29 18:00:30 ----HD---- C:\ProgramData
2015-12-29 09:47:38 ----RD---- C:\Program Files (x86)
2015-12-28 18:43:48 ----D---- C:\WINDOWS\system32\Tasks
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-23 17:01:31 ----D---- C:\WINDOWS\system32\appraiser
2015-12-23 17:01:30 ----D---- C:\WINDOWS\Provisioning
2015-12-23 17:01:30 ----D---- C:\WINDOWS\bcastdvr
2015-12-23 17:01:30 ----D---- C:\WINDOWS\AppPatch
2015-12-23 16:51:37 ----D---- C:\WINDOWS\debug
2015-12-20 20:37:53 ----D---- C:\WINDOWS\ModemLogs
2015-12-20 19:25:55 ----D---- C:\WINDOWS\system32\catroot2
2015-12-17 11:16:53 ----D---- C:\WINDOWS\system32\LogFiles
2015-12-16 12:29:11 ----D---- C:\Program Files (x86)\Common Files
2015-12-16 12:11:36 ----RD---- C:\WINDOWS\assembly
2015-12-16 12:11:29 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2015-12-16 12:11:26 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-16 11:42:06 ----RSD---- C:\WINDOWS\Fonts
2015-12-16 11:39:07 ----SD---- C:\ProgramData\Microsoft
2015-12-16 11:39:05 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-16 00:08:12 ----D---- C:\WINDOWS\LiveKernelReports
2015-12-15 21:37:33 ----D---- C:\WINDOWS\Logs
2015-12-15 00:19:17 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-14 13:23:54 ----D---- C:\WINDOWS\Tasks
2015-12-13 08:58:34 ----D---- C:\WINDOWS\system32\restore
2015-12-13 04:35:01 ----D---- C:\WINDOWS\appcompat
2015-12-13 04:32:42 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-12 22:28:36 ----D---- C:\Windows
2015-12-12 20:05:06 ----D---- C:\WINDOWS\rescache
2015-12-12 20:04:28 ----RD---- C:\WINDOWS\PrintDialog
2015-12-12 20:04:27 ----RD---- C:\WINDOWS\MiracastView
2015-12-12 20:03:56 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-12 20:02:46 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-12 20:01:45 ----D---- C:\WINDOWS\Registration
2015-12-12 19:59:35 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-12 19:59:27 ----D---- C:\WINDOWS\system32\wbem
2015-12-12 19:56:56 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-12 19:56:01 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-12-12 19:55:56 ----D---- C:\WINDOWS\system32\spool
2015-12-12 19:55:55 ----D---- C:\WINDOWS\system32\slmgr
2015-12-12 19:55:51 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-12 19:55:49 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-12 19:55:46 ----RD---- C:\Users
2015-12-12 19:55:44 ----D---- C:\ProgramData\USOPrivate
2015-12-12 19:55:44 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-12 19:55:34 ----D---- C:\WINDOWS\system32\Recovery
2015-12-12 19:53:52 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-12 19:51:59 ----D---- C:\WINDOWS\twain_32
2015-12-12 19:51:29 ----D---- C:\Program Files\Common Files
2015-12-12 19:47:01 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\sk-SK
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\oobe
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\migration
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\Dism
2015-12-12 19:42:25 ----D---- C:\Program Files\Internet Explorer
2015-12-12 19:42:25 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-12 19:25:46 ----HD---- C:\$WINDOWS.~BT
2015-12-12 18:02:51 ----SHD---- C:\$Recycle.Bin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem5.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-12-12 82704]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-11-20 69840]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 263528]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 186784]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-11-20 206312]
R1 EpfwLWF;@oem38.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-11-20 52872]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2015-11-20 142976]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 ACPIVPC;@oem2.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-12-12 42328]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-12 21633552]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-12 673816]
R3 AtiHDAudioService;@oem1.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-12-12 102912]
R3 bcbtums;@oem9.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-12-12 227144]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2015-10-30 7585280]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2015-10-30 84992]
R3 CnxtHdAudService;@oem0.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-12-12 1561728]
R3 ETD;@oem7.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-12-12 525512]
R3 ew_usbenumfilter;@oem13.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [2012-12-22 14976]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2013-11-30 91648]
R3 hwusb_cdcacm;hwusb_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
R3 hwusb_wwanecm;hwusb_wwanecm; C:\WINDOWS\System32\drivers\ew_wwanecm.sys [2014-09-30 380672]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2015-10-30 121344]
R3 rtsuvc;@oem8.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-12-12 3059440]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14976]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2015-10-30 953344]
S3 btwampfl;@oem9.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-12-12 234800]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-12 117248]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RTSUER;@oem6.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-12-12 410880]
S3 t_mouse.sys;@oem4.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2015-12-12 6144]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 254816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 131424]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 27488]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-12 255504]
R2 BcmBtRSupport;@oem9.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-12-12 2297104]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2015-12-04 2748600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2015-11-20 2522616]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-12-12 144072]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 OneSyncSvc_3258a;Sync Host_3258a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_3258a;Kontaktné údaje_3258a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 UnistoreSvc_3258a;Ukladací priestor používateľských údajov_3258a; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_107624;MessagingService_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_32571;MessagingService_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_3258a;MessagingService_3258a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_37fea;MessagingService_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2013-10-26 651856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_107624;Sync Host_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_32571;Sync Host_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_37fea;Sync Host_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_c3535;Sync Host_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService_c3535;MessagingService_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-12-04 202928]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_107624;Kontaktné údaje_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_32571;Kontaktné údaje_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_37fea;Kontaktné údaje_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_c3535;Kontaktné údaje_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_107624;Ukladací priestor používateľských údajov_107624; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_32571;Ukladací priestor používateľských údajov_32571; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_37fea;Ukladací priestor používateľských údajov_37fea; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_c3535;Ukladací priestor používateľských údajov_c3535; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 21:22
od Rudy
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 21:53
od ype3it
Problemy s vyskakovacimi reklamami prestali. Dakujem za pomoc, vrela vdaka.

Re: vyskakovanie newpoptab v prehliadači

Napsal: 03 led 2016 21:59
od Rudy
Nemáte zač! :)

Re: vyskakovanie newpoptab v prehliadači

Napsal: 07 led 2016 02:31
od ype3it
Rudy, zial robi mi to opat neplechu, vyskakovanie newpoptab.com....navyse mi nejde kliknut na dolnu listu panel uloh. ked kliknem na znak microsoftu tak mi to neotvori ponuku start, taktiez v pravom dolnom rohu ako je cas a datum tak mi to neotvori, siet, atd...

Re: vyskakovanie newpoptab v prehliadači

Napsal: 07 led 2016 17:18
od Rudy
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Re: vyskakovanie newpoptab v prehliadači

Napsal: 07 led 2016 21:55
od ype3it
tento log som tu hodil po tom ako som spravil MBAM kde mi naslo malware ale este som ho nevymazal, tak ako ste vraveli.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Pc at 2016-01-07 21:50:44
Microsoft Windows 10 Home
System drive C: has 905 GB (95%) free of 953 GB
Total RAM: 7383 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:50:50, on 07.01.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal

Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamresearch.exe
C:\Program Files\trend micro\Pc.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://houmpage.com/?src=hp&ssid=145132 ... a835a5ee84
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://stoppblock.me/wpad.dat?b9b17efdb ... 0503370283
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Mobile Partner] C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O17 - HKLM\System\CCS\Services\Tcpip\..\{a853f6a2-f7cc-4be1-8f52-e079b13c5bd6}: NameServer = 10.50.24.160 10.50.24.161
O17 - HKLM\System\CCS\Services\Tcpip\..\{d4d39155-cd0e-4827-9d20-ece283586698}: NameServer = 10.50.24.160 10.50.24.161
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: @oem9.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10130 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
dashost.exe {bac36e01-8579-4827-8176e2bc81f151f9}
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\WINDOWS\system32\CxAudMsg64.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files\Elantech\ETDService.exe"
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

winlogon.exe

winlogon.exe
"dwm.exe"
atieclxx
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Windows\RTFTrack.exe"
"C:\Windows\System32\TiltWheelMouse.exe"
"C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\ESET\ESET Smart Security\\eOPPFrame.exe"
C:\Windows\System32\LockAppHost.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"fontdrvhost.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe"
mbamresearch.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe101_ Global\UsGthrCtrlFltPipeMssGthrPipe101 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 628 632 640 8192 636

"C:\Users\Pc.DESKTOP-KGMSNJL\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Mozilla\Firefox\Profiles\ul3n3zc6.default

prefs.js - "browser.startup.homepage" - "www.google.sk"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2015-12-16 220840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12 2134656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2015-12-16 2083032]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12 1725056]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-12-12 3242696]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2015-12-12 9309936]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2015-12-12 241152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-13 551112]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-14 50377336]
"Mobile Partner"=C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe [2014-10-30 515072]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Family Tree Builder Update"=C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2015-03-02 2477056]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-07 21:50:44 ----D---- C:\rsit
2016-01-07 21:23:30 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-01-07 21:23:02 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2016-01-07 21:23:01 ----D---- C:\ProgramData\Malwarebytes
2016-01-07 21:23:01 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-01-07 21:23:01 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2016-01-07 21:23:01 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2016-01-03 12:43:05 ----D---- C:\AdwCleaner
2016-01-03 10:33:32 ----D---- C:\Program Files\trend micro
2015-12-29 18:00:30 ----D---- C:\ProgramData\ESET
2015-12-29 18:00:25 ----D---- C:\Program Files\ESET
2015-12-28 18:42:25 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Opera Software
2015-12-20 19:32:55 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-20 19:32:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-20 19:32:47 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-20 19:32:43 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-20 19:32:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-20 19:32:42 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-20 19:32:42 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-20 19:32:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-20 19:32:40 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-20 19:32:40 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-20 19:32:39 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-20 19:32:38 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-20 19:32:38 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-20 19:32:37 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-20 19:32:36 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-20 19:32:35 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-20 19:32:35 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-20 19:32:34 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-20 19:32:33 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-20 19:32:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-20 19:32:31 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-20 19:32:30 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-20 19:32:29 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-20 19:32:28 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-20 19:32:27 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-20 19:32:27 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-20 19:32:26 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-20 19:32:25 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-20 19:32:24 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-20 19:32:23 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-20 19:32:22 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-20 19:32:21 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-20 19:32:21 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-20 19:32:20 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-20 19:32:19 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-20 19:32:18 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-20 19:32:17 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-20 19:32:16 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-20 19:32:15 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-20 19:32:14 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-20 19:32:13 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-18 20:54:46 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\MyHeritage
2015-12-18 20:54:46 ----D---- C:\ProgramData\MyHeritage
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\PDFDocScout.DLL
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\PaintX.dll
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\MSSTDFMT.DLL
2015-12-18 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\ijl15.dll
2015-12-18 20:54:38 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\The Complete Genealogy Reporter - FTB
2015-12-18 20:54:38 ----A---- C:\WINDOWS\SYSWOW64\unicows.dll
2015-12-18 20:53:33 ----AD---- C:\Program Files (x86)\MyHeritage
2015-12-17 20:18:57 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\vlc
2015-12-17 10:00:03 ----D---- C:\ProgramData\Mobile Partner
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\WdfCoInstaller01007.dll
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewusbwwan.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_wwanecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_juwwanecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_juextctrl.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_jubusenum.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_hwupgrade.sys
2015-12-17 09:59:38 ----A---- C:\WINDOWS\system32\drivers\ew_cdcacm.sys
2015-12-17 09:59:03 ----D---- C:\Program Files (x86)\Mobile Partner
2015-12-17 09:58:47 ----D---- C:\ProgramData\DatacardService
2015-12-16 12:29:22 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Skype
2015-12-16 12:29:11 ----RD---- C:\Program Files (x86)\Skype
2015-12-16 12:29:06 ----D---- C:\ProgramData\Skype
2015-12-16 11:39:13 ----AD---- C:\Program Files (x86)\Microsoft Office
2015-12-16 11:39:07 ----D---- C:\Program Files\Microsoft Office 15
2015-12-15 00:35:34 ----D---- C:\kniznica robota
2015-12-14 14:51:10 ----D---- C:\Program Files (x86)\VideoLAN
2015-12-14 14:47:43 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\calibre
2015-12-14 14:47:01 ----AD---- C:\Program Files\Calibre2
2015-12-14 14:17:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-14 12:59:26 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Macromedia
2015-12-13 09:30:13 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Mozilla
2015-12-13 09:30:00 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2015-12-13 04:31:29 ----D---- C:\WINDOWS\SYSWOW64\sda
2015-12-12 20:02:54 ----SHD---- C:\Recovery
2015-12-12 20:01:13 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-12-12 19:57:21 ----ASH---- C:\hiberfil.sys
2015-12-12 19:54:32 ----SD---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Microsoft
2015-12-12 19:51:29 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-12-12 19:51:10 ----D---- C:\Program Files\AMD
2015-12-12 19:50:23 ----A---- C:\WINDOWS\SYSWOW64\SASrv.exe
2015-12-12 19:50:20 ----A---- C:\WINDOWS\system32\drivers\CxSfPt.dat
2015-12-12 19:50:01 ----A---- C:\WINDOWS\system32\CxAudMsg64.exe
2015-12-12 19:49:44 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-12 19:49:43 ----AD---- C:\Program Files\Dolby Digital Plus
2015-12-12 19:49:30 ----HD---- C:\Program Files\Uninstall Information
2015-12-12 19:49:04 ----D---- C:\ProgramData\Conexant
2015-12-12 19:48:57 ----D---- C:\Program Files\CONEXANT
2015-12-12 19:48:27 ----D---- C:\Program Files\Elantech
2015-12-12 19:48:13 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-12 19:47:38 ----D---- C:\WINDOWS\Prefetch
2015-12-12 19:46:52 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-12 19:46:08 ----DC---- C:\WINDOWS\Panther
2015-12-12 19:42:39 ----D---- C:\Windows.old
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-12 19:41:32 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-12 19:41:31 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-12 19:41:31 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\services.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-12 19:41:27 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-12 19:41:23 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-12 19:41:22 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-12 19:37:56 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-12 19:22:06 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-12 18:56:03 ----A---- C:\WINDOWS\SYSWOW64\RsCRIcon.dll
2015-12-12 18:56:03 ----A---- C:\WINDOWS\system32\RtCRX64.dll
2015-12-12 18:56:03 ----A---- C:\WINDOWS\system32\drivers\RtsUer.sys
2015-12-12 18:51:24 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\TiltWheelMouse.exe
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\mousecpl.dll
2015-12-12 17:29:00 ----A---- C:\WINDOWS\system32\drivers\t_mouse.sys
2015-12-12 17:27:32 ----A---- C:\WINDOWS\system32\drivers\amdkmpfd.sys
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\UCI64A96.DLL
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\SPKVol.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\OrVerbs.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\Mixer.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\MicGain.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\MicEQ.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\ISAPSII.ini
2015-12-12 17:17:17 ----A---- C:\WINDOWS\system32\drivers\FXMisc.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\drivers\EdgeEQ.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\drivers\DS1Parm.ini
2015-12-12 17:17:16 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\CHDRT64.sys
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\BIT_CLK.ini
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\ALTMIXER.INI
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\drivers\AFA.ini
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CxPageMaster64.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CX64BP16.dll
2015-12-12 17:17:15 ----A---- C:\WINDOWS\system32\CSpkExt64.dll
2015-12-12 17:00:53 ----A---- C:\WINDOWS\system32\drivers\AtihdWT6.sys
2015-12-12 17:00:53 ----A---- C:\WINDOWS\system32\DelayAPO.dll
2015-12-12 17:00:48 ----A---- C:\WINDOWS\system32\drivers\AcpiVpc.sys
2015-12-12 16:58:06 ----A---- C:\WINDOWS\system32\drivers\rtsuvc.sys
2015-12-12 16:58:05 ----A---- C:\WINDOWS\SYSWOW64\RtCamX.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\SYSWOW64\RsDecode.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\system32\RtCamX64.dll
2015-12-12 16:58:05 ----A---- C:\WINDOWS\RTFTrack.exe
2015-12-12 16:58:05 ----A---- C:\WINDOWS\RtCamU64.exe
2015-12-12 16:57:39 ----A---- C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-12-12 16:57:38 ----A---- C:\WINDOWS\system32\drivers\ETD.sys
2015-12-12 16:57:36 ----A---- C:\WINDOWS\system32\BtwRSupportService.exe
2015-12-12 16:57:36 ----A---- C:\WINDOWS\system32\btwdi.dll
2015-12-12 16:57:35 ----A---- C:\WINDOWS\system32\drivers\btwampfl.sys
2015-12-12 16:57:31 ----A---- C:\WINDOWS\system32\drivers\bcbtums.sys
2015-12-12 16:57:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-12 16:56:13 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2015-12-12 16:56:13 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2015-12-12 16:56:11 ----A---- C:\WINDOWS\system32\detoured.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\ativvsvl.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\ativvsva.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2015-12-12 16:56:10 ----A---- C:\WINDOWS\system32\ativvsva.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_vi.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativce03.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\ativce02.dat
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2015-12-12 16:56:09 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atiumd64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atitmm64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\atisamu64.dll
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-12-12 16:56:08 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-12-12 16:56:07 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atio6axx.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atimpc64.dll
2015-12-12 16:56:07 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atig6txx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-12-12 16:56:06 ----A---- C:\WINDOWS\system32\atieah64.exe
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atidxx64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticfx64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2015-12-12 16:56:05 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-12-12 16:56:04 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdxc64.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2015-12-12 16:56:03 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2015-12-12 16:56:02 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2015-12-12 16:56:01 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2015-12-12 16:55:59 ----A---- C:\WINDOWS\system32\amdocl64.dll
2015-12-12 16:55:59 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll
2015-12-12 16:55:58 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\system32\amdmmcl6.dll
2015-12-12 16:55:57 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-12-12 16:55:56 ----A---- C:\WINDOWS\system32\amdicdxx.dat
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2015-12-12 16:55:55 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2015-12-12 16:55:54 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2015-12-12 16:55:54 ----A---- C:\WINDOWS\system32\amde31a.dat
2015-12-12 16:55:54 ----A---- C:\WINDOWS\system32\amdave64.dll
2015-12-12 16:55:53 ----A---- C:\WINDOWS\system32\drivers\amdacpksd.sys
2015-12-12 16:54:42 ----D---- C:\Users\Pc.DESKTOP-KGMSNJL\AppData\Roaming\Adobe
2015-12-12 16:21:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-12-12 16:08:03 ----D---- C:\Program Files\AMD Quick Stream
2015-12-12 16:07:24 ----D---- C:\ProgramData\AMD
2015-12-12 16:04:24 ----D---- C:\Program Files (x86)\AMD
2015-12-12 16:04:18 ----D---- C:\ProgramData\Package Cache
2015-12-12 16:02:10 ----D---- C:\drivers
2015-12-12 15:38:05 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-12 15:21:53 ----D---- C:\WINDOWS\system32\MRT
2015-12-12 15:07:16 ----D---- C:\ProgramData\Microsoft OneDrive
2015-12-12 14:59:48 ----D---- C:\WINDOWS\SoftwareDistribution
2015-12-12 14:51:57 ----ASH---- C:\swapfile.sys
2015-12-12 14:51:56 ----ASH---- C:\pagefile.sys
2015-12-12 14:51:55 ----SHD---- C:\System Volume Information

======List of files/folders modified in the last 1 month======

2016-01-07 21:24:26 ----D---- C:\WINDOWS\Temp
2016-01-07 21:23:30 ----D---- C:\WINDOWS\system32\drivers
2016-01-07 21:23:01 ----RD---- C:\Program Files (x86)
2016-01-07 21:23:01 ----HD---- C:\ProgramData
2016-01-07 21:12:00 ----D---- C:\WINDOWS\system32\sru
2016-01-07 20:10:59 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-07 15:10:38 ----D---- C:\WINDOWS\AppReadiness
2016-01-07 15:10:37 ----HD---- C:\Program Files\WindowsApps
2016-01-07 15:06:08 ----D---- C:\WINDOWS\System32
2016-01-07 15:06:07 ----D---- C:\WINDOWS\INF
2016-01-06 22:05:04 ----D---- C:\WINDOWS\system32\NDF
2016-01-06 17:36:28 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-01-05 22:46:09 ----D---- C:\WINDOWS\system32\config
2016-01-05 22:43:09 ----D---- C:\WINDOWS\CbsTemp
2016-01-05 22:43:06 ----D---- C:\WINDOWS\WinSxS
2016-01-05 22:43:06 ----D---- C:\WINDOWS\SysWOW64
2016-01-03 10:33:32 ----RD---- C:\Program Files
2016-01-03 02:40:25 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-01-01 15:02:41 ----D---- C:\WINDOWS\system32\WDI
2015-12-29 18:01:56 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-29 18:01:54 ----SHD---- C:\WINDOWS\Installer
2015-12-29 18:01:35 ----HD---- C:\WINDOWS\ELAMBKUP
2015-12-28 18:43:48 ----D---- C:\WINDOWS\system32\Tasks
2015-12-23 17:01:31 ----D---- C:\WINDOWS\system32\appraiser
2015-12-23 17:01:30 ----D---- C:\WINDOWS\Provisioning
2015-12-23 17:01:30 ----D---- C:\WINDOWS\bcastdvr
2015-12-23 17:01:30 ----D---- C:\WINDOWS\AppPatch
2015-12-23 16:51:37 ----D---- C:\WINDOWS\debug
2015-12-20 20:37:53 ----D---- C:\WINDOWS\ModemLogs
2015-12-20 19:25:55 ----D---- C:\WINDOWS\system32\catroot2
2015-12-17 11:16:53 ----D---- C:\WINDOWS\system32\LogFiles
2015-12-16 12:29:11 ----D---- C:\Program Files (x86)\Common Files
2015-12-16 12:11:36 ----RD---- C:\WINDOWS\assembly
2015-12-16 12:11:29 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2015-12-16 12:11:26 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-16 11:42:06 ----RSD---- C:\WINDOWS\Fonts
2015-12-16 11:39:07 ----SD---- C:\ProgramData\Microsoft
2015-12-16 11:39:05 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-16 00:08:12 ----D---- C:\WINDOWS\LiveKernelReports
2015-12-15 21:37:33 ----D---- C:\WINDOWS\Logs
2015-12-14 13:23:54 ----D---- C:\WINDOWS\Tasks
2015-12-13 08:58:34 ----D---- C:\WINDOWS\system32\restore
2015-12-13 04:35:01 ----D---- C:\WINDOWS\appcompat
2015-12-13 04:32:42 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-12 22:28:36 ----D---- C:\Windows
2015-12-12 20:05:06 ----D---- C:\WINDOWS\rescache
2015-12-12 20:04:28 ----RD---- C:\WINDOWS\PrintDialog
2015-12-12 20:04:27 ----RD---- C:\WINDOWS\MiracastView
2015-12-12 20:03:56 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-12 20:02:46 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-12 20:01:45 ----D---- C:\WINDOWS\Registration
2015-12-12 19:59:35 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-12 19:59:27 ----D---- C:\WINDOWS\system32\wbem
2015-12-12 19:56:56 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-12 19:56:01 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-12-12 19:55:56 ----D---- C:\WINDOWS\system32\spool
2015-12-12 19:55:55 ----D---- C:\WINDOWS\system32\slmgr
2015-12-12 19:55:51 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-12 19:55:49 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-12 19:55:46 ----RD---- C:\Users
2015-12-12 19:55:44 ----D---- C:\ProgramData\USOPrivate
2015-12-12 19:55:44 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-12 19:55:34 ----D---- C:\WINDOWS\system32\Recovery
2015-12-12 19:53:52 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-12 19:51:59 ----D---- C:\WINDOWS\twain_32
2015-12-12 19:51:29 ----D---- C:\Program Files\Common Files
2015-12-12 19:47:01 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-12 19:42:26 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\sk-SK
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\oobe
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\migration
2015-12-12 19:42:25 ----D---- C:\WINDOWS\system32\Dism
2015-12-12 19:42:25 ----D---- C:\Program Files\Internet Explorer
2015-12-12 19:42:25 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-12 19:25:46 ----HD---- C:\$WINDOWS.~BT
2015-12-12 18:02:51 ----SHD---- C:\$Recycle.Bin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem5.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-12-12 82704]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-11-20 69840]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 263528]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 186784]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-11-20 206312]
R1 EpfwLWF;@oem38.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-11-20 52872]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2015-11-20 142976]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 ACPIVPC;@oem2.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-12-12 42328]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-12 21633552]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-12 673816]
R3 AtiHDAudioService;@oem1.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-12-12 102912]
R3 bcbtums;@oem9.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-12-12 227144]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2015-10-30 7585280]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2015-10-30 84992]
R3 CnxtHdAudService;@oem0.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-12-12 1561728]
R3 ETD;@oem7.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-12-12 525512]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2013-11-30 91648]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2015-10-30 121344]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2016-01-07 192216]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-10-05 64216]
R3 rtsuvc;@oem8.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-12-12 3059440]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14976]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2015-10-30 953344]
S3 btwampfl;@oem9.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-12-12 234800]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-12 117248]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 ew_usbenumfilter;@oem13.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [2012-12-22 14976]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
S3 hwusb_wwanecm;hwusb_wwanecm; C:\WINDOWS\System32\drivers\ew_wwanecm.sys [2014-09-30 380672]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RTSUER;@oem6.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-12-12 410880]
S3 t_mouse.sys;@oem4.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2015-12-12 6144]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 254816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 131424]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-12 255504]
R2 BcmBtRSupport;@oem9.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-12-12 2297104]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2015-12-04 2748600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2015-11-20 2522616]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-12-12 144072]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-10-05 1513784]
R2 OneSyncSvc_853ba66;Sync Host_853ba66; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_853ba66;Kontaktné údaje_853ba66; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 UnistoreSvc_853ba66;Ukladací priestor používateľských údajov_853ba66; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_107624;MessagingService_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_32571;MessagingService_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_37fea;MessagingService_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MessagingService_853ba66;MessagingService_853ba66; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2013-10-26 651856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_107624;Sync Host_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_32571;Sync Host_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_37fea;Sync Host_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_c3535;Sync Host_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_c3535;MessagingService_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-12-04 202928]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_107624;Kontaktné údaje_107624; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_32571;Kontaktné údaje_32571; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_37fea;Kontaktné údaje_37fea; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_c3535;Kontaktné údaje_c3535; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_107624;Ukladací priestor používateľských údajov_107624; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_32571;Ukladací priestor používateľských údajov_32571; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_37fea;Ukladací priestor používateľských údajov_37fea; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_c3535;Ukladací priestor používateľských údajov_c3535; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz