Prosím o kontrolu
Napsal: 16 kvě 2016 23:39
Dobrý den, prosím o kontrolu logu. Otevřel jsem si nějakej divnej mail, tak raději žádám o kontrolu.
Díky moc.
Logfile of random's system information tool 1.10 (written by random/random)
Run by MZelectronic at 2016-05-17 00:36:39
Microsoft Windows 10 Pro
System drive C: has 36 GB (32%) free of 114 GB
Total RAM: 3984 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:36:43, on 17.5.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Users\MZelectronic\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\MZelectronic.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKCU\..\Run: [OneDrive] "C:\Users\MZelectronic\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Global Startup: Canon LBP5000 Status Window.lnk = C:\Windows\System32\spool\drivers\x64\3\CNAC4LAD.EXE
O8 - Extra context menu item: Nová poznámka - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Vystřihnout obrázek - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Vystřihnout tuto stránku - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Vystřihnout výběr - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Vystřihnout záložku - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {53049A9A-1122-4673-B8D4-12F545AE3285} (CV781Object Object) - http://192.168.1.10:84/AVC_AX_764.cab
O16 - DPF: {6D0E375A-7C00-4DB2-9D7E-D5B1ACDAF1F2} - http://192.168.1.201/FEWatch.cab
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HTCMonitorService - Nero AG - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10749 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe"
C:\Windows\system32\IProsetMonitor.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
dashost.exe {65956896-b39b-4b62-b0b947aafbe785bb}
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe"
adb fork-server server
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Users\MZelectronic\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe"
C:\WINDOWS\system32\CNAC4RPD.EXE
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" -startup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5584 CREDAT:75009 /prefetch:2
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\MZelectronic\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-11-16 629456]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-11-23 183216]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-11-23 411056]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-11-23 453552]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-09-13 6839952]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2016-01-07 3933496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\MZelectronic\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-04-26 554176]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-04-08 51656320]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2016-04-25 23484296]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-10-08 113656]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-05-17 7400576]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2014-08-01 49976]
""= []
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-05-07 23745808]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Canon LBP5000 Status Window.lnk - C:\Windows\System32\spool\drivers\x64\3\CNAC4LAD.EXE
C:\Users\MZelectronic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
EvernoteClipper.lnk - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-11-23 451584]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-05-17 00:36:39 ----D---- C:\rsit
2016-05-17 00:36:39 ----D---- C:\Program Files\trend micro
2016-05-17 00:24:58 ----A---- C:\WINDOWS\system32\aswBoot.exe
2016-05-17 00:24:55 ----A---- C:\WINDOWS\avastSS.scr
2016-05-10 21:03:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-10 21:03:52 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-10 21:03:49 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-05-10 21:03:49 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-05-10 21:03:49 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-05-10 21:03:48 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-10 21:03:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-05-10 21:03:43 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-05-10 21:03:41 ----A---- C:\WINDOWS\system32\shell32.dll
2016-05-10 21:03:40 ----A---- C:\WINDOWS\system32\twinui.dll
2016-05-10 21:03:40 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-10 21:03:39 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-05-10 21:03:39 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-10 21:03:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-05-10 21:03:38 ----A---- C:\WINDOWS\system32\mos.dll
2016-05-10 21:03:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-10 21:03:36 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-05-10 21:03:36 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-05-10 21:03:35 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-05-10 21:03:35 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-05-10 21:03:35 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-10 21:03:34 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-10 21:03:34 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-10 21:03:34 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-05-10 21:03:34 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-10 21:03:33 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-10 21:03:32 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-05-10 21:03:32 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-05-10 21:03:31 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-10 21:03:30 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-10 21:03:30 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-05-10 21:03:29 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-05-10 21:03:29 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-05-10 21:03:29 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-05-10 21:03:29 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-05-10 21:03:29 ----A---- C:\WINDOWS\explorer.exe
2016-05-10 21:03:28 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-05-10 21:03:28 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-10 21:03:28 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-05-10 21:03:28 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-05-10 21:03:27 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-05-10 21:03:27 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-05-10 21:03:27 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-10 21:03:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-10 21:03:25 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-05-10 21:03:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-05-10 21:03:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-05-10 21:03:23 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-10 21:03:22 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-05-10 21:03:22 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-05-10 21:03:22 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-05-10 21:03:22 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\devinv.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-05-10 21:03:20 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-05-10 21:03:18 ----A---- C:\WINDOWS\system32\invagent.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-05-10 21:03:17 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-05-10 21:03:16 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-05-10 21:03:16 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-05-10 21:03:16 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-05-10 21:03:16 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-05-10 21:03:15 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-10 21:03:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-05-10 21:03:15 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-05-10 21:03:15 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-05-10 21:03:15 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-05-10 21:03:14 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\system32\user32.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\provengine.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\aepic.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\drivers\sdport.sys
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\shacct.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\moshost.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-05-10 21:03:09 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-05-10 21:03:09 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2016-05-10 21:03:09 ----A---- C:\WINDOWS\system32\wininit.exe
2016-05-10 21:03:09 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-05-10 21:03:09 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-10 21:03:07 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-05-10 21:03:06 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-05-10 21:03:06 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-10 21:03:05 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2016-05-10 21:03:04 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-05-10 21:03:04 ----A---- C:\WINDOWS\system32\dwminit.dll
2016-05-10 21:03:04 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-05-10 21:03:04 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-05-10 21:03:03 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-05-10 21:03:03 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2016-05-10 21:03:03 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-05-10 21:03:03 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-10 21:03:02 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\drivers\filecrypt.sys
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\system32\hmkd.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-05-10 21:03:01 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\wups.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-05-10 21:02:59 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2016-05-10 21:02:59 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-05-10 21:02:59 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2016-05-10 21:02:59 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2016-05-10 21:02:59 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-10 21:02:55 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\wshbth.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-05-10 21:02:54 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-05-10 21:02:54 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-05-10 21:02:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-10 21:02:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-04-29 01:41:46 ----AD---- C:\Program Files (x86)\WinSCP
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4SMD.DLL
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4RPD.EXE
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4PTD.DLL
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4LMD.DLL
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4EMD.DLL
2016-04-25 23:52:47 ----D---- C:\Program Files\Canon
2016-04-22 22:19:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-04-22 22:19:51 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-04-22 22:19:51 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-04-22 22:19:50 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-04-22 22:19:50 ----A---- C:\WINDOWS\system32\wininet.dll
2016-04-22 22:19:50 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-04-22 22:19:49 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-04-22 22:19:49 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-04-22 22:19:47 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-04-22 22:19:46 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-04-22 22:19:46 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-22 22:19:39 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-04-22 22:19:39 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-04-22 22:19:39 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-04-22 22:19:38 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-04-22 22:19:38 ----A---- C:\WINDOWS\system32\InputService.dll
2016-04-22 22:19:36 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-22 22:19:34 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-04-22 22:19:33 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-04-22 22:19:33 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-22 22:19:33 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-04-22 22:19:32 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-04-22 22:19:32 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-04-22 22:19:32 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-04-22 22:19:32 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-04-22 22:19:31 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-22 22:19:31 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-04-22 22:19:31 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-04-22 22:19:30 ----A---- C:\WINDOWS\system32\esent.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-22 22:19:28 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-22 22:19:28 ----A---- C:\WINDOWS\system32\SRH.dll
2016-04-22 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-04-22 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-04-22 22:19:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-04-22 22:19:26 ----A---- C:\WINDOWS\system32\winload.exe
2016-04-22 22:19:26 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-22 22:19:26 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-04-22 22:19:26 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-22 22:19:25 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-04-22 22:19:24 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-04-22 22:19:24 ----A---- C:\WINDOWS\system32\winresume.exe
2016-04-22 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-04-22 22:19:23 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-22 22:19:23 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-22 22:19:22 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-04-22 22:19:22 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-04-22 22:19:22 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-04-22 22:19:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-04-22 22:19:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-04-22 22:19:21 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-04-22 22:19:21 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-04-22 22:19:21 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-04-22 22:19:20 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-04-22 22:19:20 ----A---- C:\WINDOWS\SYSWOW64\AccountsRt.dll
2016-04-22 22:19:20 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-04-22 22:19:19 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-22 22:19:18 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-04-22 22:19:18 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-22 22:19:18 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-22 22:19:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-04-22 22:19:16 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-22 22:19:15 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-04-22 22:19:13 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-22 22:19:13 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-04-22 22:19:13 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-04-22 22:19:12 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-04-22 22:19:12 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-04-22 22:19:12 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-04-22 22:19:12 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\msi.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-22 22:19:08 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-04-22 22:19:08 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-04-22 22:19:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-04-22 22:19:07 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-22 22:19:07 ----A---- C:\WINDOWS\system32\ncbservice.dll
2016-04-22 22:19:07 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\omadmapi.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\fveui.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-04-22 22:19:05 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-04-22 22:19:05 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-04-22 22:19:04 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-04-22 22:19:03 ----A---- C:\WINDOWS\SYSWOW64\srvcli.dll
2016-04-22 22:19:02 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-04-22 22:19:02 ----A---- C:\WINDOWS\system32\srvcli.dll
2016-04-22 22:19:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-04-22 22:19:01 ----A---- C:\WINDOWS\system32\netapi32.dll
2016-04-22 22:19:00 ----A---- C:\WINDOWS\SYSWOW64\netapi32.dll
2016-04-22 22:18:59 ----A---- C:\WINDOWS\SYSWOW64\wkscli.dll
2016-04-22 22:18:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2016-04-22 22:18:59 ----A---- C:\WINDOWS\system32\wkscli.dll
2016-04-22 22:18:59 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-04-22 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.dll
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\oleacc.dll
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\iuilp.dll
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-22 22:18:57 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2016-04-22 22:18:57 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-04-22 22:18:57 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-04-22 22:18:57 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-22 22:18:57 ----A---- C:\WINDOWS\system32\easinvoker.exe
2016-04-22 22:18:57 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-04-22 22:18:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\wsdchngr.dll
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\wsdchngr.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-04-22 22:18:53 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-04-22 22:18:53 ----A---- C:\WINDOWS\system32\WSDApi.dll
2016-04-22 22:18:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-22 22:18:53 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\SYSWOW64\browcli.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\browser.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\browcli.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-04-22 22:18:51 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-04-22 22:18:51 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-22 22:18:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\tbauth.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-04-22 22:18:49 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-22 22:18:49 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-22 22:18:49 ----A---- C:\WINDOWS\system32\samlib.dll
2016-04-22 22:18:48 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2016-04-22 22:18:48 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2016-04-22 22:18:48 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-04-22 22:18:48 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-22 22:18:48 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-04-22 22:18:48 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2016-04-22 22:18:47 ----A---- C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-22 22:18:47 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\OnDemandConnRouteHelper.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\SYSWOW64\oleacchooks.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\system32\oleacchooks.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-04-22 22:18:44 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-04-22 22:18:44 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-04-22 22:18:44 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-04-22 22:18:43 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-04-22 22:18:43 ----A---- C:\WINDOWS\system32\MTF.dll
2016-04-22 22:18:42 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-04-21 15:22:07 ----DC---- C:\WINDOWS\Panther
2016-04-21 15:20:41 ----D---- C:\Windows.old
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\wpninprc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\wmp.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\wfapigp.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfds.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\fwbase.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\WiFiDisplay.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\TimeBrokerClient.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\werui.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\localspl.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataTypeHelperUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataPlatformHelperUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataLanguageUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\POSyncServices.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\PimIndexMaintenanceClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\ExtrasXmlParser.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\cemapi.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\WSService.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\wer.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\VCardParser.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\seclogon.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\scapi.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\POSyncServices.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ole32.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\irmon.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ExSMime.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\cemapi.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\profext.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\profext.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\dssvc.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\AuthHost.exe
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\AppxSip.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-04-21 15:16:38 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2016-04-21 15:16:38 ----D---- C:\Program Files\Reference Assemblies
2016-04-21 15:16:38 ----D---- C:\Program Files\MSBuild
2016-04-21 15:16:38 ----D---- C:\Program Files (x86)\Reference Assemblies
2016-04-21 15:16:38 ----D---- C:\Program Files (x86)\MSBuild
2016-04-21 15:16:18 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2016-04-21 15:16:18 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2016-04-21 15:16:18 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-04-21 15:16:17 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-04-21 15:16:16 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-04-21 15:16:16 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-04-21 15:16:11 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-04-21 15:16:11 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-04-21 14:43:31 ----D---- C:\WINDOWS\system32\SleepStudy
2016-04-21 14:28:46 ----SHD---- C:\Recovery
2016-04-21 14:24:21 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-04-21 14:23:53 ----SD---- C:\Users\MZelectronic\AppData\Roaming\Microsoft
2016-04-21 14:23:07 ----D---- C:\WINDOWS\system32\SRSLabs
2016-04-21 14:23:06 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-04-21 14:23:06 ----D---- C:\Program Files\Realtek
2016-04-21 14:22:50 ----D---- C:\WINDOWS\Prefetch
======List of files/folders modified in the last 1 month======
2016-05-17 00:36:39 ----RD---- C:\Program Files
2016-05-17 00:31:35 ----D---- C:\WINDOWS\System32
2016-05-17 00:31:35 ----D---- C:\WINDOWS\INF
2016-05-17 00:31:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-17 00:29:10 ----D---- C:\WINDOWS\Temp
2016-05-17 00:28:08 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-05-17 00:27:44 ----D---- C:\Users\MZelectronic\AppData\Roaming\Skype
2016-05-17 00:26:46 ----D---- C:\WINDOWS\system32\Tasks
2016-05-17 00:26:40 ----D---- C:\WINDOWS\system32\drivers
2016-05-17 00:26:03 ----D---- C:\WINDOWS\system32\sru
2016-05-17 00:24:59 ----D---- C:\WINDOWS\WinSxS
2016-05-17 00:24:58 ----D---- C:\Windows
2016-05-16 23:29:27 ----HD---- C:\ProgramData
2016-05-16 21:21:49 ----D---- C:\WINDOWS\Microsoft.NET
2016-05-16 21:19:03 ----D---- C:\WINDOWS\AppReadiness
2016-05-16 21:13:54 ----HD---- C:\Program Files\WindowsApps
2016-05-14 22:49:45 ----D---- C:\Users\MZelectronic\AppData\Roaming\vlc
2016-05-14 21:51:46 ----D---- C:\WINDOWS\system32\config
2016-05-14 15:49:22 ----D---- C:\WINDOWS\system32\DriverStore
2016-05-14 14:58:03 ----D---- C:\WINDOWS\CbsTemp
2016-05-14 14:58:02 ----D---- C:\WINDOWS\SysWOW64
2016-05-13 17:29:21 ----D---- C:\WINDOWS\rescache
2016-05-12 21:43:16 ----D---- C:\Program Files (x86)\Dropbox
2016-05-12 21:28:15 ----D---- C:\WINDOWS\system32\catroot2
2016-05-12 21:23:33 ----RD---- C:\WINDOWS\assembly
2016-05-12 01:43:05 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-05-12 01:43:05 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\oobe
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\migration
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\appraiser
2016-05-12 01:43:04 ----D---- C:\WINDOWS\Provisioning
2016-05-12 01:43:04 ----D---- C:\WINDOWS\bcastdvr
2016-05-12 01:43:04 ----D---- C:\WINDOWS\AppPatch
2016-05-12 01:43:04 ----D---- C:\Program Files\Windows Journal
2016-05-12 01:43:04 ----D---- C:\Program Files\Internet Explorer
2016-05-12 01:43:04 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-11 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-11 13:26:44 ----D---- C:\AVtech
2016-05-11 08:22:07 ----SHDC---- C:\WINDOWS\Installer
2016-05-11 08:22:07 ----HD---- C:\Config.Msi
2016-05-11 01:11:31 ----RD---- C:\Program Files (x86)
2016-05-11 01:11:30 ----D---- C:\WINDOWS\Tasks
2016-05-10 22:04:43 ----D---- C:\WINDOWS\system32\MRT
2016-05-10 21:55:02 ----D---- C:\WINDOWS\debug
2016-05-10 21:55:00 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-02 23:14:30 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-05-01 20:26:55 ----RD---- C:\Program Files (x86)\Skype
2016-04-26 13:05:32 ----D---- C:\WINDOWS\system32\LogFiles
2016-04-23 01:48:36 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-04-23 01:48:36 ----D---- C:\WINDOWS\system32\Boot
2016-04-23 01:48:36 ----D---- C:\WINDOWS\PolicyDefinitions
2016-04-22 22:01:21 ----D---- C:\WINDOWS\Logs
2016-04-22 08:44:03 ----D---- C:\WINDOWS\appcompat
2016-04-22 08:42:37 ----D---- C:\WINDOWS\system32\WDI
2016-04-21 15:20:32 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-04-21 15:20:32 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-04-21 15:20:32 ----D---- C:\WINDOWS\system32\Dism
2016-04-21 15:20:32 ----D---- C:\Program Files\Windows Portable Devices
2016-04-21 15:20:32 ----D---- C:\Program Files\Windows Multimedia Platform
2016-04-21 15:20:32 ----D---- C:\Program Files\Windows Media Player
2016-04-21 15:20:32 ----D---- C:\Program Files (x86)\Windows Portable Devices
2016-04-21 15:20:32 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2016-04-21 15:17:22 ----SD---- C:\WINDOWS\system32\Microsoft
2016-04-21 15:16:38 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-04-21 15:16:38 ----D---- C:\WINDOWS\system32\MUI
2016-04-21 14:30:33 ----D---- C:\WINDOWS\system32\wbem
2016-04-21 14:28:57 ----SD---- C:\ProgramData\Microsoft
2016-04-21 14:28:46 ----D---- C:\Program Files\Windows NT
2016-04-21 14:28:42 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-04-21 14:28:36 ----D---- C:\WINDOWS\Registration
2016-04-21 14:28:33 ----D---- C:\WINDOWS\SoftwareDistribution
2016-04-21 14:27:25 ----RSD---- C:\WINDOWS\Media
2016-04-21 14:27:23 ----D---- C:\WINDOWS\system32\drivers\etc
2016-04-21 14:25:50 ----RSD---- C:\WINDOWS\Fonts
2016-04-21 14:25:50 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-04-21 14:24:43 ----D---- C:\WINDOWS\twain_32
2016-04-21 14:24:42 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2016-04-21 14:24:42 ----D---- C:\WINDOWS\SYSWOW64\IME
2016-04-21 14:24:42 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-04-21 14:24:40 ----D---- C:\WINDOWS\system32\NDF
2016-04-21 14:24:39 ----D---- C:\WINDOWS\system32\IME
2016-04-21 14:24:39 ----D---- C:\WINDOWS\system32\en-US
2016-04-21 14:24:28 ----D---- C:\WINDOWS\schemas
2016-04-21 14:24:27 ----RD---- C:\WINDOWS\PurchaseDialog
2016-04-21 14:24:27 ----D---- C:\WINDOWS\OCR
2016-04-21 14:24:26 ----D---- C:\WINDOWS\ehome
2016-04-21 14:24:24 ----RD---- C:\Users
2016-04-21 14:24:22 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2016-04-21 14:24:22 ----D---- C:\Program Files (x86)\Windows Mail
2016-04-21 14:24:22 ----D---- C:\Program Files (x86)\Intel
2016-04-21 14:24:22 ----D---- C:\Program Files (x86)\Common Files
2016-04-21 14:24:21 ----SHD---- C:\Program Files\Windows Sidebar
2016-04-21 14:24:21 ----D---- C:\Program Files\Windows Mail
2016-04-21 14:24:21 ----D---- C:\Program Files\Common Files\microsoft shared
2016-04-21 14:24:21 ----D---- C:\Program Files\Common Files
2016-04-21 14:24:17 ----D---- C:\WINDOWS\system32\Recovery
2016-04-21 14:23:34 ----D---- C:\WINDOWS\system32\Sysprep
2016-04-21 14:10:18 ----HD---- C:\$WINDOWS.~BT
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-05-17 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-05-17 287528]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-05-17 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-05-17 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-05-17 1070904]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-05-17 465792]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-05-17 37656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-05-17 107792]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-05-17 166432]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 e1cexpress;@oem13.inf,%e1cExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\WINDOWS\system32\DRIVERS\e1c62x64.sys [2012-01-11 360624]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-11-23 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-09-13 4145936]
R3 IntcDAud;@oem25.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-03-26 342528]
R3 MEIx64;@oem6.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-10-08 57376]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-13 117248]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 HTCAND64;HTC Device Driver; C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
S3 htcnprot;@oem26.inf,%NDISPROT_Desc%;HTC NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [2013-10-17 36928]
S3 HtcVCom32;HTC Diagnostic Port; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [2010-03-09 121800]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-04-23 63488]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-03-29 258912]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-04-23 131424]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 27488]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2015-10-30 46080]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2016-04-23 67072]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2009-11-17 98208]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-05-17 243296]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 HTCMonitorService;HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2014-06-27 87368]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2011-11-09 189608]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-10-08 327672]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 OneSyncSvc_27d22;Hostitel synchronizace_27d22; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2013-10-17 166912]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2012-08-31 201360]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-10-08 2595832]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-09 143144]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-23 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_477a7;Hostitel synchronizace_477a7; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-11-23 290224]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-09 143144]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-23 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_27d22;Služba zasílání zpráv_27d22; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-07 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_27d22;Data kontaktů_27d22; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_27d22;Úložiště uživatelských dat_27d22; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
Díky moc.
Logfile of random's system information tool 1.10 (written by random/random)
Run by MZelectronic at 2016-05-17 00:36:39
Microsoft Windows 10 Pro
System drive C: has 36 GB (32%) free of 114 GB
Total RAM: 3984 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:36:43, on 17.5.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Users\MZelectronic\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\MZelectronic.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKCU\..\Run: [OneDrive] "C:\Users\MZelectronic\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Global Startup: Canon LBP5000 Status Window.lnk = C:\Windows\System32\spool\drivers\x64\3\CNAC4LAD.EXE
O8 - Extra context menu item: Nová poznámka - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Vystřihnout obrázek - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Vystřihnout tuto stránku - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Vystřihnout výběr - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Vystřihnout záložku - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {53049A9A-1122-4673-B8D4-12F545AE3285} (CV781Object Object) - http://192.168.1.10:84/AVC_AX_764.cab
O16 - DPF: {6D0E375A-7C00-4DB2-9D7E-D5B1ACDAF1F2} - http://192.168.1.201/FEWatch.cab
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HTCMonitorService - Nero AG - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10749 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe"
C:\Windows\system32\IProsetMonitor.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
dashost.exe {65956896-b39b-4b62-b0b947aafbe785bb}
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe"
adb fork-server server
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Users\MZelectronic\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe"
C:\WINDOWS\system32\CNAC4RPD.EXE
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" -startup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5584 CREDAT:75009 /prefetch:2
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\MZelectronic\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-11-16 629456]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-11-23 183216]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-11-23 411056]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-11-23 453552]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-09-13 6839952]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2016-01-07 3933496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\MZelectronic\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-04-26 554176]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-04-08 51656320]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2016-04-25 23484296]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-10-08 113656]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-05-17 7400576]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2014-08-01 49976]
""= []
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-05-07 23745808]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Canon LBP5000 Status Window.lnk - C:\Windows\System32\spool\drivers\x64\3\CNAC4LAD.EXE
C:\Users\MZelectronic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
EvernoteClipper.lnk - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-11-23 451584]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-05-17 00:36:39 ----D---- C:\rsit
2016-05-17 00:36:39 ----D---- C:\Program Files\trend micro
2016-05-17 00:24:58 ----A---- C:\WINDOWS\system32\aswBoot.exe
2016-05-17 00:24:55 ----A---- C:\WINDOWS\avastSS.scr
2016-05-10 21:03:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-10 21:03:52 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-10 21:03:49 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-05-10 21:03:49 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-05-10 21:03:49 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-05-10 21:03:48 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-10 21:03:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-05-10 21:03:43 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-05-10 21:03:41 ----A---- C:\WINDOWS\system32\shell32.dll
2016-05-10 21:03:40 ----A---- C:\WINDOWS\system32\twinui.dll
2016-05-10 21:03:40 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-10 21:03:39 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-05-10 21:03:39 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-10 21:03:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-05-10 21:03:38 ----A---- C:\WINDOWS\system32\mos.dll
2016-05-10 21:03:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-10 21:03:36 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-05-10 21:03:36 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-05-10 21:03:35 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-05-10 21:03:35 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-05-10 21:03:35 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-10 21:03:34 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-10 21:03:34 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-10 21:03:34 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-05-10 21:03:34 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-10 21:03:33 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-10 21:03:32 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-05-10 21:03:32 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-05-10 21:03:31 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-10 21:03:30 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-10 21:03:30 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-05-10 21:03:29 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-05-10 21:03:29 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-05-10 21:03:29 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-05-10 21:03:29 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-05-10 21:03:29 ----A---- C:\WINDOWS\explorer.exe
2016-05-10 21:03:28 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-05-10 21:03:28 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-10 21:03:28 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-05-10 21:03:28 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-05-10 21:03:27 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-05-10 21:03:27 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-05-10 21:03:27 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-10 21:03:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-10 21:03:25 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-05-10 21:03:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-10 21:03:24 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-05-10 21:03:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-05-10 21:03:23 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-10 21:03:22 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-05-10 21:03:22 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-05-10 21:03:22 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-05-10 21:03:22 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-05-10 21:03:21 ----A---- C:\WINDOWS\system32\devinv.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-05-10 21:03:20 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-10 21:03:20 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-10 21:03:19 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-05-10 21:03:18 ----A---- C:\WINDOWS\system32\invagent.dll
2016-05-10 21:03:18 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-05-10 21:03:17 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-10 21:03:17 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-05-10 21:03:16 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-05-10 21:03:16 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-05-10 21:03:16 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-05-10 21:03:16 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-05-10 21:03:15 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-10 21:03:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-05-10 21:03:15 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-05-10 21:03:15 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-05-10 21:03:15 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-05-10 21:03:14 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\system32\user32.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-05-10 21:03:14 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\provengine.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\aepic.dll
2016-05-10 21:03:13 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\drivers\sdport.sys
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-10 21:03:12 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\shacct.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-05-10 21:03:11 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\moshost.dll
2016-05-10 21:03:10 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-05-10 21:03:09 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-05-10 21:03:09 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2016-05-10 21:03:09 ----A---- C:\WINDOWS\system32\wininit.exe
2016-05-10 21:03:09 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-05-10 21:03:09 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2016-05-10 21:03:08 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-10 21:03:07 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-05-10 21:03:07 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-05-10 21:03:06 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-05-10 21:03:06 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-10 21:03:06 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-05-10 21:03:05 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-10 21:03:05 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2016-05-10 21:03:04 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-05-10 21:03:04 ----A---- C:\WINDOWS\system32\dwminit.dll
2016-05-10 21:03:04 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-05-10 21:03:04 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-05-10 21:03:03 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-05-10 21:03:03 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2016-05-10 21:03:03 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-05-10 21:03:03 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-10 21:03:02 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2016-05-10 21:03:02 ----A---- C:\WINDOWS\system32\drivers\filecrypt.sys
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\system32\hmkd.dll
2016-05-10 21:03:01 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-05-10 21:03:01 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\wups.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-05-10 21:03:00 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-05-10 21:02:59 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2016-05-10 21:02:59 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-05-10 21:02:59 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2016-05-10 21:02:59 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2016-05-10 21:02:59 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-05-10 21:02:56 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-10 21:02:55 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\wshbth.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-10 21:02:55 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-05-10 21:02:54 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-05-10 21:02:54 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-05-10 21:02:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-10 21:02:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-04-29 01:41:46 ----AD---- C:\Program Files (x86)\WinSCP
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4SMD.DLL
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4RPD.EXE
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4PTD.DLL
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4LMD.DLL
2016-04-25 23:53:17 ----A---- C:\WINDOWS\system32\CNAC4EMD.DLL
2016-04-25 23:52:47 ----D---- C:\Program Files\Canon
2016-04-22 22:19:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-04-22 22:19:51 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-04-22 22:19:51 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-04-22 22:19:50 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-04-22 22:19:50 ----A---- C:\WINDOWS\system32\wininet.dll
2016-04-22 22:19:50 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-04-22 22:19:49 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-04-22 22:19:49 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-04-22 22:19:47 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-04-22 22:19:46 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-04-22 22:19:46 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-22 22:19:39 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-04-22 22:19:39 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-04-22 22:19:39 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-04-22 22:19:38 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-04-22 22:19:38 ----A---- C:\WINDOWS\system32\InputService.dll
2016-04-22 22:19:36 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-22 22:19:34 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-04-22 22:19:33 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-04-22 22:19:33 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-22 22:19:33 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-04-22 22:19:32 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-04-22 22:19:32 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-04-22 22:19:32 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-04-22 22:19:32 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-04-22 22:19:31 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-22 22:19:31 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-04-22 22:19:31 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-04-22 22:19:30 ----A---- C:\WINDOWS\system32\esent.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-04-22 22:19:29 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-22 22:19:28 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-22 22:19:28 ----A---- C:\WINDOWS\system32\SRH.dll
2016-04-22 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-04-22 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-04-22 22:19:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-04-22 22:19:26 ----A---- C:\WINDOWS\system32\winload.exe
2016-04-22 22:19:26 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-22 22:19:26 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-04-22 22:19:26 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-22 22:19:25 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-04-22 22:19:24 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-04-22 22:19:24 ----A---- C:\WINDOWS\system32\winresume.exe
2016-04-22 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-04-22 22:19:23 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-22 22:19:23 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-22 22:19:22 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-04-22 22:19:22 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-04-22 22:19:22 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-04-22 22:19:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-04-22 22:19:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-04-22 22:19:21 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-04-22 22:19:21 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-04-22 22:19:21 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-04-22 22:19:20 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-04-22 22:19:20 ----A---- C:\WINDOWS\SYSWOW64\AccountsRt.dll
2016-04-22 22:19:20 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-04-22 22:19:19 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-22 22:19:19 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-22 22:19:18 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-04-22 22:19:18 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-22 22:19:18 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-22 22:19:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-04-22 22:19:16 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-22 22:19:15 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-04-22 22:19:13 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-22 22:19:13 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-04-22 22:19:13 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-04-22 22:19:12 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-04-22 22:19:12 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-04-22 22:19:12 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-04-22 22:19:12 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\msi.dll
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-04-22 22:19:11 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-04-22 22:19:10 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2016-04-22 22:19:09 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-22 22:19:08 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-04-22 22:19:08 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-04-22 22:19:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-04-22 22:19:07 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-22 22:19:07 ----A---- C:\WINDOWS\system32\ncbservice.dll
2016-04-22 22:19:07 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\omadmapi.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\fveui.dll
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-04-22 22:19:06 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-04-22 22:19:05 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-04-22 22:19:05 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-04-22 22:19:04 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-04-22 22:19:03 ----A---- C:\WINDOWS\SYSWOW64\srvcli.dll
2016-04-22 22:19:02 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-04-22 22:19:02 ----A---- C:\WINDOWS\system32\srvcli.dll
2016-04-22 22:19:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-04-22 22:19:01 ----A---- C:\WINDOWS\system32\netapi32.dll
2016-04-22 22:19:00 ----A---- C:\WINDOWS\SYSWOW64\netapi32.dll
2016-04-22 22:18:59 ----A---- C:\WINDOWS\SYSWOW64\wkscli.dll
2016-04-22 22:18:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2016-04-22 22:18:59 ----A---- C:\WINDOWS\system32\wkscli.dll
2016-04-22 22:18:59 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-04-22 22:18:58 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.dll
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\oleacc.dll
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\iuilp.dll
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-04-22 22:18:58 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-22 22:18:57 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2016-04-22 22:18:57 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-04-22 22:18:57 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-04-22 22:18:57 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-22 22:18:57 ----A---- C:\WINDOWS\system32\easinvoker.exe
2016-04-22 22:18:57 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-04-22 22:18:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\wsdchngr.dll
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2016-04-22 22:18:56 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\wsdchngr.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-04-22 22:18:54 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-04-22 22:18:53 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-04-22 22:18:53 ----A---- C:\WINDOWS\system32\WSDApi.dll
2016-04-22 22:18:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-22 22:18:53 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\SYSWOW64\browcli.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\browser.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\browcli.dll
2016-04-22 22:18:52 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-04-22 22:18:51 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-04-22 22:18:51 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-22 22:18:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\tbauth.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2016-04-22 22:18:50 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-04-22 22:18:49 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-22 22:18:49 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-22 22:18:49 ----A---- C:\WINDOWS\system32\samlib.dll
2016-04-22 22:18:48 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2016-04-22 22:18:48 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2016-04-22 22:18:48 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-04-22 22:18:48 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-22 22:18:48 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-04-22 22:18:48 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2016-04-22 22:18:47 ----A---- C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-22 22:18:47 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\OnDemandConnRouteHelper.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-04-22 22:18:46 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\SYSWOW64\oleacchooks.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\system32\oleacchooks.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-22 22:18:45 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-04-22 22:18:44 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-04-22 22:18:44 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-04-22 22:18:44 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-04-22 22:18:43 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-04-22 22:18:43 ----A---- C:\WINDOWS\system32\MTF.dll
2016-04-22 22:18:42 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-04-21 15:22:07 ----DC---- C:\WINDOWS\Panther
2016-04-21 15:20:41 ----D---- C:\Windows.old
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\wpninprc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\wmp.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\wfapigp.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfds.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\fwbase.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-04-21 15:19:56 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\WiFiDisplay.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\TimeBrokerClient.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\werui.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\localspl.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-04-21 15:19:55 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataTypeHelperUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataPlatformHelperUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataLanguageUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\POSyncServices.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\PimIndexMaintenanceClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\ExtrasXmlParser.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\cemapi.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\WSService.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\wer.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\VCardParser.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\seclogon.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\scapi.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\POSyncServices.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ole32.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\irmon.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ExSMime.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\cemapi.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2016-04-21 15:19:51 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\profext.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\profext.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\dssvc.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\AuthHost.exe
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-04-21 15:19:50 ----A---- C:\WINDOWS\system32\AppxSip.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-04-21 15:17:48 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-04-21 15:16:38 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2016-04-21 15:16:38 ----D---- C:\Program Files\Reference Assemblies
2016-04-21 15:16:38 ----D---- C:\Program Files\MSBuild
2016-04-21 15:16:38 ----D---- C:\Program Files (x86)\Reference Assemblies
2016-04-21 15:16:38 ----D---- C:\Program Files (x86)\MSBuild
2016-04-21 15:16:18 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2016-04-21 15:16:18 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2016-04-21 15:16:18 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-04-21 15:16:17 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-04-21 15:16:16 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-04-21 15:16:16 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-04-21 15:16:11 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-04-21 15:16:11 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-04-21 14:43:31 ----D---- C:\WINDOWS\system32\SleepStudy
2016-04-21 14:28:46 ----SHD---- C:\Recovery
2016-04-21 14:24:21 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-04-21 14:23:53 ----SD---- C:\Users\MZelectronic\AppData\Roaming\Microsoft
2016-04-21 14:23:07 ----D---- C:\WINDOWS\system32\SRSLabs
2016-04-21 14:23:06 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-04-21 14:23:06 ----D---- C:\Program Files\Realtek
2016-04-21 14:22:50 ----D---- C:\WINDOWS\Prefetch
======List of files/folders modified in the last 1 month======
2016-05-17 00:36:39 ----RD---- C:\Program Files
2016-05-17 00:31:35 ----D---- C:\WINDOWS\System32
2016-05-17 00:31:35 ----D---- C:\WINDOWS\INF
2016-05-17 00:31:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-17 00:29:10 ----D---- C:\WINDOWS\Temp
2016-05-17 00:28:08 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-05-17 00:27:44 ----D---- C:\Users\MZelectronic\AppData\Roaming\Skype
2016-05-17 00:26:46 ----D---- C:\WINDOWS\system32\Tasks
2016-05-17 00:26:40 ----D---- C:\WINDOWS\system32\drivers
2016-05-17 00:26:03 ----D---- C:\WINDOWS\system32\sru
2016-05-17 00:24:59 ----D---- C:\WINDOWS\WinSxS
2016-05-17 00:24:58 ----D---- C:\Windows
2016-05-16 23:29:27 ----HD---- C:\ProgramData
2016-05-16 21:21:49 ----D---- C:\WINDOWS\Microsoft.NET
2016-05-16 21:19:03 ----D---- C:\WINDOWS\AppReadiness
2016-05-16 21:13:54 ----HD---- C:\Program Files\WindowsApps
2016-05-14 22:49:45 ----D---- C:\Users\MZelectronic\AppData\Roaming\vlc
2016-05-14 21:51:46 ----D---- C:\WINDOWS\system32\config
2016-05-14 15:49:22 ----D---- C:\WINDOWS\system32\DriverStore
2016-05-14 14:58:03 ----D---- C:\WINDOWS\CbsTemp
2016-05-14 14:58:02 ----D---- C:\WINDOWS\SysWOW64
2016-05-13 17:29:21 ----D---- C:\WINDOWS\rescache
2016-05-12 21:43:16 ----D---- C:\Program Files (x86)\Dropbox
2016-05-12 21:28:15 ----D---- C:\WINDOWS\system32\catroot2
2016-05-12 21:23:33 ----RD---- C:\WINDOWS\assembly
2016-05-12 01:43:05 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-05-12 01:43:05 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\oobe
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\migration
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-12 01:43:05 ----D---- C:\WINDOWS\system32\appraiser
2016-05-12 01:43:04 ----D---- C:\WINDOWS\Provisioning
2016-05-12 01:43:04 ----D---- C:\WINDOWS\bcastdvr
2016-05-12 01:43:04 ----D---- C:\WINDOWS\AppPatch
2016-05-12 01:43:04 ----D---- C:\Program Files\Windows Journal
2016-05-12 01:43:04 ----D---- C:\Program Files\Internet Explorer
2016-05-12 01:43:04 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-11 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-11 13:26:44 ----D---- C:\AVtech
2016-05-11 08:22:07 ----SHDC---- C:\WINDOWS\Installer
2016-05-11 08:22:07 ----HD---- C:\Config.Msi
2016-05-11 01:11:31 ----RD---- C:\Program Files (x86)
2016-05-11 01:11:30 ----D---- C:\WINDOWS\Tasks
2016-05-10 22:04:43 ----D---- C:\WINDOWS\system32\MRT
2016-05-10 21:55:02 ----D---- C:\WINDOWS\debug
2016-05-10 21:55:00 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-02 23:14:30 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-05-01 20:26:55 ----RD---- C:\Program Files (x86)\Skype
2016-04-26 13:05:32 ----D---- C:\WINDOWS\system32\LogFiles
2016-04-23 01:48:36 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-04-23 01:48:36 ----D---- C:\WINDOWS\system32\Boot
2016-04-23 01:48:36 ----D---- C:\WINDOWS\PolicyDefinitions
2016-04-22 22:01:21 ----D---- C:\WINDOWS\Logs
2016-04-22 08:44:03 ----D---- C:\WINDOWS\appcompat
2016-04-22 08:42:37 ----D---- C:\WINDOWS\system32\WDI
2016-04-21 15:20:32 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-04-21 15:20:32 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-04-21 15:20:32 ----D---- C:\WINDOWS\system32\Dism
2016-04-21 15:20:32 ----D---- C:\Program Files\Windows Portable Devices
2016-04-21 15:20:32 ----D---- C:\Program Files\Windows Multimedia Platform
2016-04-21 15:20:32 ----D---- C:\Program Files\Windows Media Player
2016-04-21 15:20:32 ----D---- C:\Program Files (x86)\Windows Portable Devices
2016-04-21 15:20:32 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2016-04-21 15:17:22 ----SD---- C:\WINDOWS\system32\Microsoft
2016-04-21 15:16:38 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-04-21 15:16:38 ----D---- C:\WINDOWS\system32\MUI
2016-04-21 14:30:33 ----D---- C:\WINDOWS\system32\wbem
2016-04-21 14:28:57 ----SD---- C:\ProgramData\Microsoft
2016-04-21 14:28:46 ----D---- C:\Program Files\Windows NT
2016-04-21 14:28:42 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-04-21 14:28:36 ----D---- C:\WINDOWS\Registration
2016-04-21 14:28:33 ----D---- C:\WINDOWS\SoftwareDistribution
2016-04-21 14:27:25 ----RSD---- C:\WINDOWS\Media
2016-04-21 14:27:23 ----D---- C:\WINDOWS\system32\drivers\etc
2016-04-21 14:25:50 ----RSD---- C:\WINDOWS\Fonts
2016-04-21 14:25:50 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-04-21 14:24:43 ----D---- C:\WINDOWS\twain_32
2016-04-21 14:24:42 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2016-04-21 14:24:42 ----D---- C:\WINDOWS\SYSWOW64\IME
2016-04-21 14:24:42 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-04-21 14:24:40 ----D---- C:\WINDOWS\system32\NDF
2016-04-21 14:24:39 ----D---- C:\WINDOWS\system32\IME
2016-04-21 14:24:39 ----D---- C:\WINDOWS\system32\en-US
2016-04-21 14:24:28 ----D---- C:\WINDOWS\schemas
2016-04-21 14:24:27 ----RD---- C:\WINDOWS\PurchaseDialog
2016-04-21 14:24:27 ----D---- C:\WINDOWS\OCR
2016-04-21 14:24:26 ----D---- C:\WINDOWS\ehome
2016-04-21 14:24:24 ----RD---- C:\Users
2016-04-21 14:24:22 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2016-04-21 14:24:22 ----D---- C:\Program Files (x86)\Windows Mail
2016-04-21 14:24:22 ----D---- C:\Program Files (x86)\Intel
2016-04-21 14:24:22 ----D---- C:\Program Files (x86)\Common Files
2016-04-21 14:24:21 ----SHD---- C:\Program Files\Windows Sidebar
2016-04-21 14:24:21 ----D---- C:\Program Files\Windows Mail
2016-04-21 14:24:21 ----D---- C:\Program Files\Common Files\microsoft shared
2016-04-21 14:24:21 ----D---- C:\Program Files\Common Files
2016-04-21 14:24:17 ----D---- C:\WINDOWS\system32\Recovery
2016-04-21 14:23:34 ----D---- C:\WINDOWS\system32\Sysprep
2016-04-21 14:10:18 ----HD---- C:\$WINDOWS.~BT
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-05-17 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-05-17 287528]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-05-17 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-05-17 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-05-17 1070904]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-05-17 465792]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-05-17 37656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-05-17 107792]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-05-17 166432]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 e1cexpress;@oem13.inf,%e1cExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\WINDOWS\system32\DRIVERS\e1c62x64.sys [2012-01-11 360624]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-11-23 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-09-13 4145936]
R3 IntcDAud;@oem25.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-03-26 342528]
R3 MEIx64;@oem6.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-10-08 57376]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-13 117248]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 HTCAND64;HTC Device Driver; C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
S3 htcnprot;@oem26.inf,%NDISPROT_Desc%;HTC NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [2013-10-17 36928]
S3 HtcVCom32;HTC Diagnostic Port; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [2010-03-09 121800]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-04-23 63488]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-03-29 258912]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-04-23 131424]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 27488]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2015-10-30 46080]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2016-04-23 67072]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2009-11-17 98208]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-05-17 243296]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 HTCMonitorService;HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2014-06-27 87368]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2011-11-09 189608]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-10-08 327672]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 OneSyncSvc_27d22;Hostitel synchronizace_27d22; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2013-10-17 166912]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2012-08-31 201360]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-10-08 2595832]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-09 143144]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-23 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_477a7;Hostitel synchronizace_477a7; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-11-23 290224]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-09 143144]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-23 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_27d22;Služba zasílání zpráv_27d22; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-07 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_27d22;Data kontaktů_27d22; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_27d22;Úložiště uživatelských dat_27d22; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
