Monitor sám mění nastavení
Napsal: 15 pro 2016 01:29
Dobrý den, prosím o pomoc, už mi přijde, že můj pc ovládá někdo ze vzdáleného připojení, i když to asi ne, protože mi zrovna tohle hlídá antivir. Právě proto si ale myslím, že jde o nějaký vir, nebo prostě škodlivý kód, jenž nelze odhalit antivirem, který se mi snaží maximálně znepříjemnit práci na pc. Mám nový výkonný pc, dobrý antivir, ale dnes mi monitor najednou sám od sebe začal vybírat ze svého menu nastavení různé změny. Pokaždé, když se následně snažím čudlíky na monitoru samovolné změny upravit, vždy bojuji proti nějaké cizí síle a hrajeme si na podivnou hru kdo mačká čudlíky rychleji. Když to náhodou vyhraji já, na monitor lze aspoň nějak koukat. Pokud jsem ale pomalejší, jako nyní před několika vteřinami, monitor se sám upravil a plochu mám smrsknutou doleva, jas, barvy a ostrost na max, takže z toho šíleně pálí oči a jako bonus se mi změnil jazyk menu monitoru na asi korejštinu. Při běžné práci na pc, ať už v aplikacích nebo hrách, nebo jen při projíždění netu, se samovolně spustí nastavení monitoru a samostatně se začne vše měnit. Log RSIT posílám níže. Děkuji za pomoc.
Logfile of random's system information tool 1.10 (written by random/random)
Run by jakub at 2016-12-15 01:16:36
Microsoft Windows 10 Pro
System drive C: has 144 GB (63%) free of 228 GB
Total RAM: 16345 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:16:40, on 15.12.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\EXPERTool\TBPanel.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\jakub.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O4 - HKLM\..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKCU\..\Run: [TBPanel] "C:\Program Files (x86)\EXPERTool\TBPanel.exe" /A
O4 - HKCU\..\Run: [SmartGenius] "C:\Users\jakub\AppData\Local\SmartGenius\SGStartup.exe" -noShow
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [SmartHID] C:\Users\jakub\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHID.exe
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Startup: Slack.lnk = jakub\AppData\Local\slack\Update.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Wireless Controller Service - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe
O23 - Service: ZoneAlarm ICM Service - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe
--
End of file - 12448 bytes
======Listing Processes======
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\IProsetMonitor.exe
"C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\SysWoW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Origin\OriginWebHelperService.exe"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe" /start ZoneAlarm ICM Service
dashost.exe {5474bc30-0ce1-4c08-b21cc873ad3d8bcf}
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
sihost.exe
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\EXPERTool\TBPanel.exe" /A
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\Explorer.EXE
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
/QuitInfo:0000000000000C6C;0000000000000C70;
/loadhooks /Parent:0000000000001bb4
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Users\jakub\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHID.exe"
"C:\Users\jakub\AppData\Local\SmartGenius\SmartGenius.exe"
"C:\Users\jakub\AppData\Local\SmartGenius\SmartGenius.exe" --type=gpu-process --channel="3972.0.1348999692\1121190592" --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x1c03 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7570 /prefetch:822062411
"C:\Users\jakub\AppData\Local\SmartGenius\SmartGenius.exe" --type=renderer --no-sandbox --lang=cs --app-user-model-id=electron.app.SmartGenius --node-integration=true --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="3972.1.1335573315\1472757847" /prefetch:673131151
"C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe"
"C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe" --startup
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
"C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe" --type=gpu-process --channel="9820.0.1051550969\527934791" --mojo-application-channel-token=1A6CDD5D11AB75C41C16074DD7D5F592 --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,13,27,55,71 --gpu-vendor-id=0x10de --gpu-device-id=0x1c03 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7570 --gpu-driver-date=10-25-2016 --mojo-platform-channel-handle=1332 /prefetch:2
C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe --reporter-url=https://slack.com/apps/breakpad --application-name=Slack --v=1
"C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe" --type=renderer --disable-pinch --no-sandbox --primordial-pipe-token=6EBA26CCD9CABE532340804FE5B12ED4 --lang=cs --standard-schemes=slack-resources,slack-webapp-dev --app-user-model-id=com.squirrel.slack.slack --node-integration=true --preload="C:\Users\jakub\AppData\Local\slack\app-2.3.4\resources\app.asar\src\static\index.js" --hidden-page --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=6CB98495F862E8BC6EC128DE589D49E2 --mojo-application-channel-token=20060F87CD490AF9A7EAC5D2CC470EBB --channel="9820.2.1204883292\1265281032" --mojo-platform-channel-handle=1796 /prefetch:1
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"
C:\Windows\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.16102.10341.0_x64__8wekyb3d8bbwe\Music.UI.exe" -ServerName:Microsoft.ZuneMusic.AppX48dcrcgzqqdshm3kf61t0cm5e9pyd6h6.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7705.42037.0_x64__8wekyb3d8bbwe\HxMail.exe" -ServerName:microsoft.windowslive.mail.AppX7fgs1v31b27fq9zen50wdw83aappcatm.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7705.42037.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\Windows\system32\SettingSyncHost.exe -Embedding
"C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe" --type=renderer --disable-pinch --no-sandbox --primordial-pipe-token=F0C0197F32F3F57E0F89079B20A5DA37 --lang=cs --standard-schemes=slack-resources,slack-webapp-dev --app-user-model-id=com.squirrel.slack.slack --node-integration=false --preload="C:\Users\jakub\AppData\Local\slack\app-2.3.4\resources\app.asar\src\static\ssb-interop" --guest-instance-id=1 --enable-blink-features --disable-blink-features --hidden-page --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=E294EB7FC131483D21EEC7AFB97BE584 --mojo-application-channel-token=C858B1C36EFBD867F7E5A7570935C0D3 --channel="9820.9.1297620657\1236647847" --mojo-platform-channel-handle=2952 /prefetch:1
"fontdrvhost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files\ESET\ESET Smart Security\\eOPPFrame.exe"
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\system32\AUDIODG.EXE 0x498
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvtray.exe" -nvupdt
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\jakub\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0x1b4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=12712 --on-initialized-event-handle=564 --parent-handle=572 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,*AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/AutofillProfileCleanup/Default/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Control/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Disabled/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/Html5ByDefault/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/Enabled5MinTimeoutOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/StrictSecureCookies/Default/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_95/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=6,17,18,21,37,65 --gpu-vendor-id=0x10de --gpu-device-id=0x1c03 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7570 --gpu-driver-date=10-25-2016 --service-request-channel-token=A88C386B43393463E11051C9F5931061 --mojo-platform-channel-handle=1284 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,*AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutofillProfileCleanup/Default/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Control/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Disabled/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/*Html5ByDefault/Default/*InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/Enabled5MinTimeoutOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_95/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=CA5F5E2556680EE7698665C82C2163BE --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=CA5F5E2556680EE7698665C82C2163BE --mojo-platform-channel-handle=2568 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,*AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutofillProfileCleanup/Default/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Control/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Disabled/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/*Html5ByDefault/Default/*InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/Enabled5MinTimeoutOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_95/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=8C5502E600935653141E133E68031ECA --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=8C5502E600935653141E133E68031ECA --mojo-platform-channel-handle=1820 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe37_ Global\UsGthrCtrlFltPipeMssGthrPipe37 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
"C:\Users\jakub\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\aX3Nr7uR.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\aX3Nr7uR.default\extensions\
abs@avira.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-30 214216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-30 2850608]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-10-30 151240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-10-30 1931056]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-09-03 8521472]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2016-11-17 1854400]
"SmartGenius"=C:\Users\jakub\AppData\Local\SmartGenius\SGStartup.exe [2016-09-02 505856]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TBPanel"=C:\Program Files (x86)\EXPERTool\TBPanel.exe [2016-06-13 2024752]
"SmartGenius"=C:\Users\jakub\AppData\Local\SmartGenius\SGStartup.exe [2016-09-02 505856]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-06 9288408]
"SmartHID"=C:\Users\jakub\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHID.exe [2016-12-09 771584]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2016-11-29 1407912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"=C:\Windows\system32\cmd.exe [2016-07-16 232960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Super Charger"=C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [2015-09-09 1027024]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2016-09-07 144184]
C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Slack.lnk - C:\Users\jakub\AppData\Local\slack\Update.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-12-15 01:16:36 ----D---- C:\rsit
2016-12-15 01:16:36 ----D---- C:\Program Files\trend micro
2016-12-15 00:29:06 ----D---- C:\Windows\LastGood
2016-12-15 00:29:04 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2016-12-15 00:29:04 ----A---- C:\Windows\system32\nvaudcap64v.dll
2016-12-14 14:16:51 ----D---- C:\Users\jakub\AppData\Roaming\ESET
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\InputService.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\ole32.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\msi.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\msdtctm.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\hvix64.exe
2016-12-14 14:08:02 ----A---- C:\Windows\system32\hvax64.exe
2016-12-14 14:08:02 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\WordBreakers.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\TextInputFramework.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\InputLocaleManager.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\EditBufferTestHook.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\Windows.Media.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\MFMediaEngine.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\LicenseManager.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\hvloader.exe
2016-12-14 14:08:01 ----A---- C:\Windows\system32\facecredentialprovider.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\CoreUIComponents.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2016-12-14 14:08:00 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-12-14 14:08:00 ----A---- C:\Windows\system32\aadtb.dll
2016-12-14 14:08:00 ----A---- C:\Windows\system32\aadcloudap.dll
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\win32kfull.sys
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\win32k.sys
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\WordBreakers.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\Windows.UI.Core.TextInput.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\win32kfull.sys
2016-12-14 14:07:59 ----A---- C:\Windows\system32\win32k.sys
2016-12-14 14:07:59 ----A---- C:\Windows\system32\user32.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\TextInputFramework.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\ShareHost.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\InputService.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\InputLocaleManager.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\ieframe.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\EditBufferTestHook.dll
2016-12-14 14:07:58 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-12-14 14:07:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-12-14 14:07:58 ----A---- C:\Windows\system32\CoreMessaging.dll
2016-12-14 14:07:58 ----A---- C:\Windows\system32\cdp.dll
2016-12-14 14:07:57 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2016-12-14 14:07:57 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-12-14 14:07:57 ----A---- C:\Windows\SYSWOW64\gdi32full.dll
2016-12-14 14:07:57 ----A---- C:\Windows\SYSWOW64\combase.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\WinTypes.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\winresume.exe
2016-12-14 14:07:57 ----A---- C:\Windows\system32\winload.exe
2016-12-14 14:07:57 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\securekernel.exe
2016-12-14 14:07:57 ----A---- C:\Windows\system32\lsasrv.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\gdi32full.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\CloudExperienceHost.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\wincorlib.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\ShareHost.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\Chakradiag.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\cdp.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\aadtb.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\wincorlib.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\mdmregistration.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\jscript9.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\Chakra.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\fveapibase.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\enterprisecsps.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\drivers\cng.sys
2016-12-14 14:07:56 ----A---- C:\Windows\system32\drivers\clfs.sys
2016-12-14 14:07:56 ----A---- C:\Windows\system32\DeviceEnroller.exe
2016-12-14 14:07:56 ----A---- C:\Windows\system32\combase.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\bcrypt.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\appraiser.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\acmigration.dll
2016-12-14 14:07:55 ----A---- C:\Windows\system32\win32kbase.sys
2016-12-14 14:07:55 ----A---- C:\Windows\system32\mshtml.dll
2016-12-14 14:07:55 ----A---- C:\Windows\system32\indexeddbserver.dll
2016-12-14 14:07:55 ----A---- C:\Windows\system32\fveapi.dll
2016-12-14 14:07:55 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2016-12-14 14:07:55 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-12-14 14:07:55 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-12-14 14:07:54 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2016-12-14 14:07:54 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2016-12-14 14:07:54 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-12-14 14:07:54 ----A---- C:\Windows\system32\edgehtml.dll
2016-12-14 14:07:54 ----A---- C:\Windows\system32\cdd.dll
2016-12-14 14:07:53 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-12-14 14:07:53 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-12-14 14:07:53 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-12-14 14:07:53 ----A---- C:\Windows\SYSWOW64\indexeddbserver.dll
2016-12-14 14:07:53 ----A---- C:\Windows\system32\sspicli.dll
2016-12-14 14:07:53 ----A---- C:\Windows\system32\d3d10warp.dll
2016-12-14 14:07:53 ----A---- C:\Windows\system32\CryptoWinRT.dll
2016-12-14 13:39:15 ----D---- C:\ProgramData\ESET
2016-12-14 13:39:15 ----D---- C:\Program Files\ESET
2016-12-10 13:57:30 ----D---- C:\Users\jakub\AppData\Roaming\Ashampoo
2016-12-10 13:56:18 ----D---- C:\ProgramData\Ashampoo
2016-12-10 13:56:17 ----D---- C:\Program Files (x86)\Ashampoo
2016-12-10 13:04:13 ----A---- C:\Windows\system32\wpnprv.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\InstallAgentUserBroker.exe
2016-12-10 13:04:13 ----A---- C:\Windows\system32\InstallAgent.exe
2016-12-10 13:04:13 ----A---- C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\browserbroker.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\AudioEng.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2016-12-10 13:04:12 ----A---- C:\Windows\SYSWOW64\netshell.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\StoreAgent.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\RDXService.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\rascustom.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\PlayToManager.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\dosvc.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\AudioSes.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\ntshrui.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\ntdll.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\netshell.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\audiosrv.dll
2016-12-10 13:04:10 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2016-12-10 13:04:10 ----A---- C:\Windows\system32\shell32.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryClient.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2016-12-10 13:04:09 ----A---- C:\Windows\system32\apprepsync.dll
2016-12-10 13:04:09 ----A---- C:\Windows\system32\apprepapi.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\NMAA.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\mos.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\DisplayManager.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2016-12-10 13:04:06 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-12-10 13:04:05 ----A---- C:\Windows\SYSWOW64\MapRouter.dll
2016-12-10 13:04:05 ----A---- C:\Windows\SYSWOW64\MapGeocoder.dll
2016-12-10 13:04:05 ----A---- C:\Windows\system32\MrmCoreR.dll
2016-12-10 13:04:05 ----A---- C:\Windows\system32\HttpsDataSource.dll
2016-12-10 13:04:05 ----A---- C:\Windows\system32\drivers\partmgr.sys
2016-12-10 13:04:05 ----A---- C:\Windows\system32\domgmt.dll
2016-12-10 13:04:05 ----A---- C:\Windows\system32\AUDIOKSE.dll
2016-12-10 13:04:04 ----A---- C:\Windows\SYSWOW64\mfaudiocnv.dll
2016-12-10 13:04:04 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2016-12-10 13:04:04 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2016-12-10 13:04:04 ----A---- C:\Windows\system32\MFPlay.dll
2016-12-10 13:04:03 ----A---- C:\Windows\SYSWOW64\mfmkvsrcsnk.dll
2016-12-10 13:04:03 ----A---- C:\Windows\SYSWOW64\MapsBtSvc.dll
2016-12-10 13:04:03 ----A---- C:\Windows\system32\RTWorkQ.dll
2016-12-10 13:04:03 ----A---- C:\Windows\system32\drivers\fastfat.sys
2016-12-10 13:04:02 ----A---- C:\Windows\SYSWOW64\MosStorage.dll
2016-12-10 13:04:02 ----A---- C:\Windows\SYSWOW64\DeviceFlows.DataModel.dll
2016-12-10 13:04:02 ----A---- C:\Windows\SYSWOW64\CloudStorageWizard.exe
2016-12-10 13:04:02 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-10 13:04:02 ----A---- C:\Windows\system32\SearchFolder.dll
2016-12-10 13:04:02 ----A---- C:\Windows\system32\policymanager.dll
2016-12-10 13:04:02 ----A---- C:\Windows\system32\dmenrollengine.dll
2016-12-10 13:04:02 ----A---- C:\Windows\system32\dmcertinst.exe
2016-12-10 13:04:00 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\ReportingCSP.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\msdtcuiu.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\EDPCleanup.exe
2016-12-10 13:04:00 ----A---- C:\Windows\system32\EAMProgressHandler.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\ActivationManager.dll
2016-12-10 13:03:59 ----A---- C:\Windows\SYSWOW64\msctf.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\wlidsvc.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\hevcdecoder.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\d3d11.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\efswrt.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\BcastDVRHelper.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\bcastdvr.exe
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\AppCapture.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\usercpl.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\RDXTaskFactory.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\NgcCtnr.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\ngccredprov.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\drivers\xboxgip.sys
2016-12-10 13:03:58 ----A---- C:\Windows\system32\AppReadiness.dll
2016-12-10 13:03:57 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\wscsvc.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-12-10 13:03:57 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\netplwiz.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\dxgi.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\DeviceFlows.DataModel.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\actxprxy.dll
2016-12-10 13:03:56 ----A---- C:\Windows\SYSWOW64\RTWorkQ.dll
2016-12-10 13:03:56 ----A---- C:\Windows\system32\wscapi.dll
2016-12-10 13:03:56 ----A---- C:\Windows\system32\services.exe
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\wsecedit.dll
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\ActivationManager.dll
2016-12-10 13:03:55 ----A---- C:\Windows\system32\wscinterop.dll
2016-12-10 13:03:55 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2016-12-10 13:03:55 ----A---- C:\Windows\system32\cryptngc.dll
2016-12-10 13:03:54 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2016-12-10 13:03:54 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-12-10 13:03:54 ----A---- C:\Windows\system32\msctf.dll
2016-12-10 13:03:54 ----A---- C:\Windows\system32\comdlg32.dll
2016-12-10 13:03:53 ----A---- C:\Windows\SYSWOW64\mspaint.exe
2016-12-10 13:03:53 ----A---- C:\Windows\system32\LogonController.dll
2016-12-10 13:03:53 ----A---- C:\Windows\system32\drivers\tpm.sys
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\LaunchWinApp.exe
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\gameux.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2016-12-10 13:03:52 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2016-12-10 13:03:52 ----A---- C:\Windows\system32\modernexecserver.dll
2016-12-10 13:03:51 ----A---- C:\Windows\SYSWOW64\stobject.dll
2016-12-10 13:03:51 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-12-10 13:03:51 ----A---- C:\Windows\system32\sppwinob.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\sppobjs.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\EditionUpgradeManagerObj.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\EditionUpgradeHelper.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\cdpusersvc.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\cdpsvc.dll
2016-12-10 13:03:50 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2016-12-10 13:03:50 ----A---- C:\Windows\SYSWOW64\dmenrollengine.dll
2016-12-10 13:03:50 ----A---- C:\Windows\system32\wuuhext.dll
2016-12-10 13:03:50 ----A---- C:\Windows\system32\wpncore.dll
2016-12-10 13:03:50 ----A---- C:\Windows\system32\winlogon.exe
2016-12-10 13:03:50 ----A---- C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2016-12-10 13:03:49 ----A---- C:\Windows\SYSWOW64\rasapi32.dll
2016-12-10 13:03:49 ----A---- C:\Windows\SYSWOW64\policymanager.dll
2016-12-10 13:03:49 ----A---- C:\Windows\SYSWOW64\msdtcprx.dll
2016-12-10 13:03:49 ----A---- C:\Windows\system32\wsecedit.dll
2016-12-10 13:03:49 ----A---- C:\Windows\system32\VPNv2CSP.dll
2016-12-10 13:03:49 ----A---- C:\Windows\system32\SRHInproc.dll
2016-12-10 13:03:49 ----A---- C:\Windows\system32\DeviceReactivation.dll
2016-12-10 13:03:48 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-10 13:03:48 ----A---- C:\Windows\SYSWOW64\sendmail.dll
2016-12-10 13:03:48 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2016-12-10 13:03:48 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-12-10 13:03:48 ----A---- C:\Windows\system32\StorSvc.dll
2016-12-10 13:03:48 ----A---- C:\Windows\system32\SRH.dll
2016-12-10 13:03:48 ----A---- C:\Windows\system32\lpremove.exe
2016-12-10 13:03:47 ----A---- C:\Windows\SYSWOW64\xolehlp.dll
2016-12-10 13:03:47 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2016-12-10 13:03:47 ----A---- C:\Windows\SYSWOW64\ngccredprov.dll
2016-12-10 13:03:47 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-12-10 13:03:47 ----A---- C:\Windows\system32\wkssvc.dll
2016-12-10 13:03:47 ----A---- C:\Windows\system32\mfsvr.dll
2016-12-10 13:03:47 ----A---- C:\Windows\system32\mfplat.dll
2016-12-10 13:03:47 ----A---- C:\Windows\system32\drivers\modem.sys
2016-12-10 13:03:47 ----A---- C:\Windows\system32\bcastdvr.exe
2016-12-10 13:03:46 ----A---- C:\Windows\SYSWOW64\LogonController.dll
2016-12-10 13:03:46 ----A---- C:\Windows\SYSWOW64\cryptngc.dll
2016-12-10 13:03:46 ----A---- C:\Windows\system32\mfcore.dll
2016-12-10 13:03:46 ----A---- C:\Windows\system32\BcastDVRHelper.dll
2016-12-10 13:03:45 ----A---- C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-12-10 13:03:45 ----A---- C:\Windows\system32\lsm.dll
2016-12-10 13:03:45 ----A---- C:\Windows\system32\KernelBase.dll
2016-12-10 13:03:44 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2016-12-10 13:03:44 ----A---- C:\Windows\system32\windows.storage.dll
2016-12-10 13:03:44 ----A---- C:\Windows\system32\drivers\pci.sys
2016-12-10 13:03:44 ----A---- C:\Windows\system32\DisplayManager.dll
2016-12-10 13:03:44 ----A---- C:\Windows\system32\AppCapture.dll
2016-12-10 13:03:43 ----A---- C:\Windows\system32\dwmcore.dll
2016-12-10 13:03:42 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-12-10 13:03:42 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-12-10 13:03:39 ----A---- C:\Windows\SYSWOW64\migisol.dll
2016-12-10 13:03:39 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\ProvSysprep.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\msdtcprx.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\migisol.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\mfmkvsrcsnk.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\mfaudiocnv.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\dialserver.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\CloudStorageWizard.exe
2016-12-10 13:03:38 ----A---- C:\Windows\SYSWOW64\msdtcuiu.dll
2016-12-10 13:03:38 ----A---- C:\Windows\SYSWOW64\InstallAgentUserBroker.exe
2016-12-10 13:03:38 ----A---- C:\Windows\SYSWOW64\InstallAgent.exe
2016-12-10 13:03:38 ----A---- C:\Windows\system32\sppnp.dll
2016-12-10 13:03:38 ----A---- C:\Windows\system32\RjvMDMConfig.dll
2016-12-10 13:03:38 ----A---- C:\Windows\system32\ReAgentc.exe
2016-12-10 13:03:38 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-12-10 13:03:38 ----A---- C:\Windows\system32\dpapisrv.dll
2016-12-10 13:03:38 ----A---- C:\Windows\system32\aitstatic.exe
2016-12-10 13:03:37 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-12-10 13:03:37 ----A---- C:\Windows\SYSWOW64\StoreAgent.dll
2016-12-10 13:03:34 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2016-12-10 13:03:34 ----A---- C:\Windows\system32\stobject.dll
2016-12-10 13:03:34 ----A---- C:\Windows\system32\mspaint.exe
2016-12-10 13:03:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-12-10 13:03:34 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2016-12-10 13:03:33 ----A---- C:\Windows\system32\urlmon.dll
2016-12-10 13:03:33 ----A---- C:\Windows\system32\ieproxy.dll
2016-12-10 13:03:33 ----A---- C:\Windows\system32\gameux.dll
2016-12-10 13:03:33 ----A---- C:\Windows\system32\DevicePairing.dll
2016-12-10 13:03:32 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2016-12-10 13:03:32 ----A---- C:\Windows\system32\NMAA.dll
2016-12-10 13:03:32 ----A---- C:\Windows\system32\MapControlCore.dll
2016-12-10 13:03:32 ----A---- C:\Windows\system32\LaunchWinApp.exe
2016-12-10 13:03:32 ----A---- C:\Windows\system32\drivers\rdbss.sys
2016-12-10 13:03:32 ----A---- C:\Windows\explorer.exe
2016-12-10 13:03:31 ----A---- C:\Windows\system32\zipfldr.dll
2016-12-10 13:03:31 ----A---- C:\Windows\system32\twinui.dll
2016-12-10 13:03:31 ----A---- C:\Windows\system32\IdCtrls.dll
2016-12-10 13:03:31 ----A---- C:\Windows\system32\efswrt.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\wuaueng.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\WsmSvc.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\wininet.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\UIAutomationCore.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\mos.dll
2016-12-10 13:03:29 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2016-12-10 13:03:29 ----A---- C:\Windows\system32\SyncCenter.dll
2016-12-10 13:03:29 ----A---- C:\Windows\system32\cscui.dll
2016-12-10 13:03:28 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-12-10 13:03:28 ----A---- C:\Windows\system32\JpMapControl.dll
2016-12-10 13:03:28 ----A---- C:\Windows\system32\BingMaps.dll
2016-12-10 13:03:27 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2016-12-10 13:03:26 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2016-12-10 13:03:26 ----A---- C:\Windows\system32\rasmans.dll
2016-12-10 13:03:26 ----A---- C:\Windows\system32\moshostcore.dll
2016-12-10 13:03:26 ----A---- C:\Windows\system32\MapsStore.dll
2016-12-10 13:03:25 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2016-12-10 13:03:25 ----A---- C:\Windows\system32\MapRouter.dll
2016-12-10 13:03:25 ----A---- C:\Windows\system32\MapGeocoder.dll
2016-12-10 13:03:24 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2016-12-10 13:03:24 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-10 13:03:24 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2016-12-10 13:03:24 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\vpnike.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\umpoext.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\setupugc.exe
2016-12-10 13:03:24 ----A---- C:\Windows\system32\sendmail.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\rasapi32.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\NetSetupShim.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\MosStorage.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\moshost.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\MapsBtSvc.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\MapConfiguration.dll
2016-12-10 13:03:23 ----A---- C:\Windows\SYSWOW64\wscinterop.dll
2016-12-10 13:03:23 ----A---- C:\Windows\SYSWOW64\NetCfgNotifyObjectHost.exe
2016-12-10 13:03:23 ----A---- C:\Windows\system32\NetCfgNotifyObjectHost.exe
2016-12-10 13:03:23 ----A---- C:\Windows\system32\CbtBackgroundManagerPolicy.dll
2016-12-05 23:39:13 ----D---- C:\Users\jakub\AppData\Roaming\Slack
2016-11-28 14:11:15 ----D---- C:\Users\jakub\AppData\Roaming\Macromedia
2016-11-28 13:55:43 ----D---- C:\ProgramData\GARMIN
2016-11-28 13:51:16 ----D---- C:\Program Files\DIFX
2016-11-28 13:51:10 ----D---- C:\Garmin
2016-11-28 13:51:10 ----AD---- C:\Program Files (x86)\Garmin
2016-11-28 13:35:51 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-28 13:35:39 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-11-28 13:17:18 ----AD---- C:\Program Files (x86)\Garmin GPS Plugin
2016-11-28 13:17:17 ----AD---- C:\Program Files\Garmin GPS Plugin
2016-11-28 13:16:57 ----D---- C:\Users\jakub\AppData\Roaming\Garmin
2016-11-23 04:13:10 ----AD---- C:\Program Files\7-Zip
======List of files/folders modified in the last 1 month======
2016-12-15 01:16:36 ----RD---- C:\Program Files
2016-12-15 01:16:30 ----D---- C:\Windows\Temp
2016-12-15 01:15:08 ----D---- C:\Windows\Prefetch
2016-12-15 01:05:51 ----D---- C:\Windows\SysWOW64
2016-12-15 00:29:29 ----D---- C:\Windows\INF
2016-12-15 00:29:17 ----D---- C:\ProgramData\NVIDIA Corporation
2016-12-15 00:29:17 ----D---- C:\ProgramData\NVIDIA
2016-12-15 00:29:15 ----D---- C:\Windows\system32\Tasks
2016-12-15 00:29:15 ----D---- C:\Windows\System32
2016-12-15 00:29:13 ----D---- C:\Windows\system32\DriverStore
2016-12-15 00:29:13 ----D---- C:\Windows\system32\CatRoot
2016-12-15 00:29:11 ----D---- C:\Program Files\NVIDIA Corporation
2016-12-15 00:29:11 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2016-12-15 00:29:06 ----D---- C:\Windows\system32\drivers
2016-12-15 00:29:06 ----D---- C:\Windows
2016-12-15 00:29:03 ----D---- C:\Windows\SoftwareDistribution
2016-12-15 00:29:00 ----D---- C:\Windows\system32\sru
2016-12-15 00:07:24 ----D---- C:\Windows\system32\SleepStudy
2016-12-14 21:14:24 ----D---- C:\Users\jakub\AppData\Roaming\Origin
2016-12-14 21:07:43 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2016-12-14 17:39:02 ----SHD---- C:\System Volume Information
2016-12-14 17:33:23 ----D---- C:\ProgramData\Origin
2016-12-14 16:56:08 ----D---- C:\Windows\debug
2016-12-14 16:55:29 ----AD---- C:\Program Files\CCleaner
2016-12-14 15:17:18 ----RD---- C:\Windows\Microsoft.NET
2016-12-14 15:16:55 ----RSD---- C:\Windows\assembly
2016-12-14 14:38:53 ----D---- C:\Windows\system32\config
2016-12-14 14:33:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-12-14 14:28:27 ----D---- C:\Windows\AppReadiness
2016-12-14 14:28:22 ----D---- C:\Windows\WinSxS
2016-12-14 14:27:07 ----D---- C:\Program Files (x86)\Avira
2016-12-14 14:26:13 ----D---- C:\Windows\SYSWOW64\en-US
2016-12-14 14:26:13 ----D---- C:\Windows\system32\en-US
2016-12-14 14:26:13 ----D---- C:\Windows\ShellExperiences
2016-12-14 14:26:13 ----D---- C:\Windows\AppPatch
2016-12-14 14:26:12 ----D---- C:\Windows\system32\Boot
2016-12-14 14:09:04 ----D---- C:\Windows\CbsTemp
2016-12-14 14:06:33 ----D---- C:\Windows\system32\catroot2
2016-12-14 13:48:56 ----D---- C:\Windows\system32\MRT
2016-12-14 13:47:17 ----AC---- C:\Windows\system32\MRT.exe
2016-12-14 13:39:25 ----SHD---- C:\Windows\Installer
2016-12-14 13:39:23 ----HD---- C:\Windows\ELAMBKUP
2016-12-14 13:39:15 ----HD---- C:\ProgramData
2016-12-14 13:37:21 ----D---- C:\ProgramData\Package Cache
2016-12-14 12:13:45 ----HD---- C:\Program Files\WindowsApps
2016-12-13 13:14:18 ----D---- C:\Windows\LiveKernelReports
2016-12-12 11:06:08 ----D---- C:\Windows\rescache
2016-12-12 00:56:25 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-12-11 01:08:11 ----D---- C:\Windows\SYSWOW64\oobe
2016-12-11 01:08:11 ----D---- C:\Windows\SYSWOW64\Dism
2016-12-11 01:08:11 ----D---- C:\Windows\system32\WinBioPlugIns
2016-12-11 01:08:11 ----D---- C:\Windows\system32\wbem
2016-12-11 01:08:11 ----D---- C:\Windows\system32\Sysprep
2016-12-11 01:08:11 ----D---- C:\Windows\system32\sr-Latn-CS
2016-12-11 01:08:11 ----D---- C:\Windows\system32\oobe
2016-12-11 01:08:11 ----D---- C:\Windows\system32\Dism
2016-12-11 01:08:10 ----RD---- C:\Windows\ImmersiveControlPanel
2016-12-11 01:08:10 ----D---- C:\Windows\servicing
2016-12-11 01:08:10 ----D---- C:\Windows\bcastdvr
2016-12-11 01:08:10 ----D---- C:\Program Files\Internet Explorer
2016-12-11 01:08:10 ----D---- C:\Program Files (x86)\Internet Explorer
2016-12-10 13:56:17 ----RD---- C:\Program Files (x86)
2016-12-10 12:55:34 ----A---- C:\Windows\system32\enrollmentapi.dll
2016-12-07 19:28:40 ----D---- C:\Windows\system32\NDF
2016-12-06 22:26:00 ----AD---- C:\Program Files (x86)\Origin
2016-12-06 01:53:17 ----D---- C:\Windows\system32\LogFiles
2016-12-03 13:33:28 ----SD---- C:\ProgramData\Microsoft
2016-11-28 13:55:33 ----SD---- C:\Users\jakub\AppData\Roaming\Microsoft
2016-11-28 13:36:09 ----D---- C:\Users\jakub\AppData\Roaming\Mozilla
2016-11-28 13:03:04 ----N---- C:\Windows\system32\MpSigStub.exe
2016-11-28 00:03:11 ----D---- C:\ProgramData\firebird
2016-11-24 12:07:26 ----D---- C:\Windows\system32\drivers\UMDF
2016-11-18 15:35:42 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2016-11-18 15:35:32 ----D---- C:\Program Files (x86)\Common Files
2016-11-18 15:35:09 ----AD---- C:\Program Files (x86)\Microsoft Office
2016-11-17 14:45:32 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2016-11-17 14:45:32 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2016-11-17 14:45:32 ----A---- C:\Windows\system32\nvspcap64.dll
2016-11-17 14:45:32 ----A---- C:\Windows\system32\nvspbridge64.dll
2016-11-17 14:45:32 ----A---- C:\Windows\system32\NvRtmpStreamer64.dll
2016-11-16 17:42:27 ----A---- C:\Windows\NvContainerRecovery.bat
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2016-10-13 212096]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\Windows\system32\drivers\iorate.sys [2016-11-02 48992]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2016-08-02 554416]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-10-13 232072]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-10-13 177792]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-10-13 76416]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-10-13 91784]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2016-08-02 422344]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2016-08-02 1005512]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\Windows\System32\drivers\registry.sys [2016-07-16 70144]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-10-13 48768]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 asmthub3;@oem27.inf,%asmthub3_ServiceDescription%;ASMedia USB3 Hub Service; C:\Windows\System32\drivers\asmthub3.sys [2015-06-05 149240]
R3 asmtxhci;@oem26.inf,%asmtxhci_ServiceDescription%;ASMEDIA XHCI Service; C:\Windows\System32\drivers\asmtxhci.sys [2015-06-05 442104]
R3 e1dexpress;@oem18.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d65x64.sys [2015-06-18 530416]
R3 gFilterMouUsb;@oem35.inf,%gFilterMouUsb.SvcDesc%;SmartGenius Mouse Drv; C:\Windows\System32\drivers\gFilterMouUsb.sys [2016-11-09 32472]
R3 iaLPSS2_GPIO2;iaLPSS2_GPIO2; C:\Windows\System32\drivers\iaLPSS2_GPIO2.sys [2015-07-20 84264]
R3 iaLPSS2_I2C;@oem24.inf,%iaLPSS2_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2_I2C.sys [2015-07-20 185128]
R3 iaLPSS2_UART2;@oem25.inf,%iaLPSS2_UART2.SVCDESC%;Intel(R) Serial IO UART Driver v2; C:\Windows\System32\drivers\iaLPSS2_UART2.sys [2015-07-20 281896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-09-03 4595968]
R3 ioFakDrv;@oem31.inf,%ioFakDrv%;ioVirtual Device; C:\Windows\System32\drivers\ioFakDrv.sys [2015-08-10 35136]
R3 ioFakMap;@oem31.inf,%ioFakMap.SVCDESC%;MiniHid Driver Service for ioFakeDrv Interface layer; C:\Windows\System32\drivers\ioFakMap.sys [2015-08-10 23880]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2016-08-02 191944]
R3 MEIx64;@oem3.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverW8x64.sys [2016-01-19 204032]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [2012-10-25 13368]
R3 NVHDA;@oem34.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2016-10-26 212936]
R3 nvlddmkm;nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_848dea456d3c865e\nvlddmkm.sys [2016-10-26 14159928]
R3 nvvad_WaveExtensible;@oem48.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2016-11-17 46016]
S0 eelam;eelam; C:\Windows\system32\DRIVERS\eelam.sys [2016-10-13 15488]
S0 klelam;klelam; C:\Windows\system32\DRIVERS\klelam.sys [2016-08-02 28792]
S0 klupd_KLIF_arkmon;klupd_KLIF_arkmon; C:\Windows\System32\Drivers\klupd_KLIF_arkmon.sys [2016-09-19 223528]
S0 klupd_KLIF_klbg;klupd_KLIF_klbg; C:\Windows\System32\Drivers\klupd_KLIF_klbg.sys [2016-09-19 112336]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\Windows\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\Windows\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\Windows\system32\drivers\AppvVemgr.sys [2016-07-16 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\Windows\system32\drivers\AppvVfs.sys [2016-07-16 141152]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\Windows\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2016-09-10 118272]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\Windows\System32\drivers\e1i63x64.sys [2016-07-16 524800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\Windows\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\Windows\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\Windows\system32\drivers\irda.sys [2016-07-16 120320]
S3 klupd_KLIF_arkmon_A10F8B05;klupd_KLIF_arkmon_A10F8B05; \??\C:\ProgramData\CheckPoint\ZoneAlarm\Data\avsys\temp\A10F8B0584926404E5CCF915704D27AA\klupd_KLIF_arkmon.sys []
S3 klupd_KLIF_mark;klupd_KLIF_mark; C:\Windows\System32\Drivers\klupd_KLIF_mark.sys [2016-09-19 167904]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\Windows\system32\drivers\mssecflt.sys [2016-07-16 179040]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-11-17 27584]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\Windows\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_f18ca;CDPUserSvc_f18ca; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-10-30 3294912]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-10-11 2815520]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2015-05-07 272352]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-09-12 207648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-09-12 415520]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [2015-05-18 163280]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-11-17 462784]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-10-25 458176]
R2 NVIDIA Wireless Controller Service;NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [2016-11-17 1163712]
R2 OneSyncSvc_f18ca;Hostitel synchronizace_f18ca; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2016-12-06 2180624]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2016-09-28 76152]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-05-19 335872]
R3 PimIndexMaintenanceSvc_f18ca;Data kontaktů_f18ca; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\Windows\System32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-17 153752]
S2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-05-19 7680]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2016-11-29 1029648]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-17 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_f18ca;Služba zasílání zpráv_f18ca; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-11-05 172488]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-11-17 462784]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-12-06 2119688]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-10-30 209104]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2016-09-07 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\Windows\system32\TieringEngineService.exe [2016-07-16 287744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\Windows\system32\AppVClient.exe [2016-09-15 823136]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\Windows\System32\svchost.exe [2016-07-16 44496]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by jakub at 2016-12-15 01:16:36
Microsoft Windows 10 Pro
System drive C: has 144 GB (63%) free of 228 GB
Total RAM: 16345 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:16:40, on 15.12.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\EXPERTool\TBPanel.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\jakub.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O4 - HKLM\..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKCU\..\Run: [TBPanel] "C:\Program Files (x86)\EXPERTool\TBPanel.exe" /A
O4 - HKCU\..\Run: [SmartGenius] "C:\Users\jakub\AppData\Local\SmartGenius\SGStartup.exe" -noShow
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [SmartHID] C:\Users\jakub\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHID.exe
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Startup: Slack.lnk = jakub\AppData\Local\slack\Update.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Wireless Controller Service - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe
O23 - Service: ZoneAlarm ICM Service - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe
--
End of file - 12448 bytes
======Listing Processes======
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\IProsetMonitor.exe
"C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\SysWoW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Origin\OriginWebHelperService.exe"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe" /start ZoneAlarm ICM Service
dashost.exe {5474bc30-0ce1-4c08-b21cc873ad3d8bcf}
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
sihost.exe
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\EXPERTool\TBPanel.exe" /A
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\Explorer.EXE
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
/QuitInfo:0000000000000C6C;0000000000000C70;
/loadhooks /Parent:0000000000001bb4
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Users\jakub\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHID.exe"
"C:\Users\jakub\AppData\Local\SmartGenius\SmartGenius.exe"
"C:\Users\jakub\AppData\Local\SmartGenius\SmartGenius.exe" --type=gpu-process --channel="3972.0.1348999692\1121190592" --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x1c03 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7570 /prefetch:822062411
"C:\Users\jakub\AppData\Local\SmartGenius\SmartGenius.exe" --type=renderer --no-sandbox --lang=cs --app-user-model-id=electron.app.SmartGenius --node-integration=true --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="3972.1.1335573315\1472757847" /prefetch:673131151
"C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe"
"C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe" --startup
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
"C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe" --type=gpu-process --channel="9820.0.1051550969\527934791" --mojo-application-channel-token=1A6CDD5D11AB75C41C16074DD7D5F592 --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,13,27,55,71 --gpu-vendor-id=0x10de --gpu-device-id=0x1c03 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7570 --gpu-driver-date=10-25-2016 --mojo-platform-channel-handle=1332 /prefetch:2
C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe --reporter-url=https://slack.com/apps/breakpad --application-name=Slack --v=1
"C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe" --type=renderer --disable-pinch --no-sandbox --primordial-pipe-token=6EBA26CCD9CABE532340804FE5B12ED4 --lang=cs --standard-schemes=slack-resources,slack-webapp-dev --app-user-model-id=com.squirrel.slack.slack --node-integration=true --preload="C:\Users\jakub\AppData\Local\slack\app-2.3.4\resources\app.asar\src\static\index.js" --hidden-page --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=6CB98495F862E8BC6EC128DE589D49E2 --mojo-application-channel-token=20060F87CD490AF9A7EAC5D2CC470EBB --channel="9820.2.1204883292\1265281032" --mojo-platform-channel-handle=1796 /prefetch:1
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"
C:\Windows\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.16102.10341.0_x64__8wekyb3d8bbwe\Music.UI.exe" -ServerName:Microsoft.ZuneMusic.AppX48dcrcgzqqdshm3kf61t0cm5e9pyd6h6.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7705.42037.0_x64__8wekyb3d8bbwe\HxMail.exe" -ServerName:microsoft.windowslive.mail.AppX7fgs1v31b27fq9zen50wdw83aappcatm.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7705.42037.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\Windows\system32\SettingSyncHost.exe -Embedding
"C:\Users\jakub\AppData\Local\slack\app-2.3.4\slack.exe" --type=renderer --disable-pinch --no-sandbox --primordial-pipe-token=F0C0197F32F3F57E0F89079B20A5DA37 --lang=cs --standard-schemes=slack-resources,slack-webapp-dev --app-user-model-id=com.squirrel.slack.slack --node-integration=false --preload="C:\Users\jakub\AppData\Local\slack\app-2.3.4\resources\app.asar\src\static\ssb-interop" --guest-instance-id=1 --enable-blink-features --disable-blink-features --hidden-page --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=E294EB7FC131483D21EEC7AFB97BE584 --mojo-application-channel-token=C858B1C36EFBD867F7E5A7570935C0D3 --channel="9820.9.1297620657\1236647847" --mojo-platform-channel-handle=2952 /prefetch:1
"fontdrvhost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files\ESET\ESET Smart Security\\eOPPFrame.exe"
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\system32\AUDIODG.EXE 0x498
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvtray.exe" -nvupdt
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\jakub\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0x1b4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=12712 --on-initialized-event-handle=564 --parent-handle=572 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,*AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/AutofillProfileCleanup/Default/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Control/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Disabled/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/Html5ByDefault/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/Enabled5MinTimeoutOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/StrictSecureCookies/Default/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_95/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=6,17,18,21,37,65 --gpu-vendor-id=0x10de --gpu-device-id=0x1c03 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7570 --gpu-driver-date=10-25-2016 --service-request-channel-token=A88C386B43393463E11051C9F5931061 --mojo-platform-channel-handle=1284 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,*AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutofillProfileCleanup/Default/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Control/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Disabled/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/*Html5ByDefault/Default/*InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/Enabled5MinTimeoutOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_95/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=CA5F5E2556680EE7698665C82C2163BE --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=CA5F5E2556680EE7698665C82C2163BE --mojo-platform-channel-handle=2568 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,*AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutofillProfileCleanup/Default/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Control/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Disabled/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/*Html5ByDefault/Default/*InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/Enabled5MinTimeoutOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_95/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=8C5502E600935653141E133E68031ECA --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=8C5502E600935653141E133E68031ECA --mojo-platform-channel-handle=1820 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe37_ Global\UsGthrCtrlFltPipeMssGthrPipe37 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
"C:\Users\jakub\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\aX3Nr7uR.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\aX3Nr7uR.default\extensions\
abs@avira.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-30 214216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-30 2850608]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-10-30 151240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-10-30 1931056]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-09-03 8521472]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2016-11-17 1854400]
"SmartGenius"=C:\Users\jakub\AppData\Local\SmartGenius\SGStartup.exe [2016-09-02 505856]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TBPanel"=C:\Program Files (x86)\EXPERTool\TBPanel.exe [2016-06-13 2024752]
"SmartGenius"=C:\Users\jakub\AppData\Local\SmartGenius\SGStartup.exe [2016-09-02 505856]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-06 9288408]
"SmartHID"=C:\Users\jakub\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHID.exe [2016-12-09 771584]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2016-11-29 1407912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"=C:\Windows\system32\cmd.exe [2016-07-16 232960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Super Charger"=C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [2015-09-09 1027024]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2016-09-07 144184]
C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Slack.lnk - C:\Users\jakub\AppData\Local\slack\Update.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-12-15 01:16:36 ----D---- C:\rsit
2016-12-15 01:16:36 ----D---- C:\Program Files\trend micro
2016-12-15 00:29:06 ----D---- C:\Windows\LastGood
2016-12-15 00:29:04 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2016-12-15 00:29:04 ----A---- C:\Windows\system32\nvaudcap64v.dll
2016-12-14 14:16:51 ----D---- C:\Users\jakub\AppData\Roaming\ESET
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\InputService.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2016-12-14 14:08:02 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\ole32.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\msi.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\msdtctm.dll
2016-12-14 14:08:02 ----A---- C:\Windows\system32\hvix64.exe
2016-12-14 14:08:02 ----A---- C:\Windows\system32\hvax64.exe
2016-12-14 14:08:02 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\WordBreakers.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\TextInputFramework.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\InputLocaleManager.dll
2016-12-14 14:08:01 ----A---- C:\Windows\SYSWOW64\EditBufferTestHook.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\Windows.Media.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\MFMediaEngine.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\LicenseManager.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\hvloader.exe
2016-12-14 14:08:01 ----A---- C:\Windows\system32\facecredentialprovider.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\CoreUIComponents.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2016-12-14 14:08:01 ----A---- C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2016-12-14 14:08:00 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-12-14 14:08:00 ----A---- C:\Windows\system32\aadtb.dll
2016-12-14 14:08:00 ----A---- C:\Windows\system32\aadcloudap.dll
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\win32kfull.sys
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\win32k.sys
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-12-14 14:07:59 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\WordBreakers.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\Windows.UI.Core.TextInput.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\win32kfull.sys
2016-12-14 14:07:59 ----A---- C:\Windows\system32\win32k.sys
2016-12-14 14:07:59 ----A---- C:\Windows\system32\user32.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\TextInputFramework.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\ShareHost.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\InputService.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\InputLocaleManager.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\ieframe.dll
2016-12-14 14:07:59 ----A---- C:\Windows\system32\EditBufferTestHook.dll
2016-12-14 14:07:58 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-12-14 14:07:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-12-14 14:07:58 ----A---- C:\Windows\system32\CoreMessaging.dll
2016-12-14 14:07:58 ----A---- C:\Windows\system32\cdp.dll
2016-12-14 14:07:57 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2016-12-14 14:07:57 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-12-14 14:07:57 ----A---- C:\Windows\SYSWOW64\gdi32full.dll
2016-12-14 14:07:57 ----A---- C:\Windows\SYSWOW64\combase.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\WinTypes.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\winresume.exe
2016-12-14 14:07:57 ----A---- C:\Windows\system32\winload.exe
2016-12-14 14:07:57 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\securekernel.exe
2016-12-14 14:07:57 ----A---- C:\Windows\system32\lsasrv.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\gdi32full.dll
2016-12-14 14:07:57 ----A---- C:\Windows\system32\CloudExperienceHost.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\wincorlib.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\ShareHost.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\Chakradiag.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\cdp.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2016-12-14 14:07:56 ----A---- C:\Windows\SYSWOW64\aadtb.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\wincorlib.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\mdmregistration.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\jscript9.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\Chakra.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\fveapibase.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\enterprisecsps.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\drivers\cng.sys
2016-12-14 14:07:56 ----A---- C:\Windows\system32\drivers\clfs.sys
2016-12-14 14:07:56 ----A---- C:\Windows\system32\DeviceEnroller.exe
2016-12-14 14:07:56 ----A---- C:\Windows\system32\combase.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\bcrypt.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\appraiser.dll
2016-12-14 14:07:56 ----A---- C:\Windows\system32\acmigration.dll
2016-12-14 14:07:55 ----A---- C:\Windows\system32\win32kbase.sys
2016-12-14 14:07:55 ----A---- C:\Windows\system32\mshtml.dll
2016-12-14 14:07:55 ----A---- C:\Windows\system32\indexeddbserver.dll
2016-12-14 14:07:55 ----A---- C:\Windows\system32\fveapi.dll
2016-12-14 14:07:55 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2016-12-14 14:07:55 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-12-14 14:07:55 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-12-14 14:07:54 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2016-12-14 14:07:54 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2016-12-14 14:07:54 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-12-14 14:07:54 ----A---- C:\Windows\system32\edgehtml.dll
2016-12-14 14:07:54 ----A---- C:\Windows\system32\cdd.dll
2016-12-14 14:07:53 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-12-14 14:07:53 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-12-14 14:07:53 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-12-14 14:07:53 ----A---- C:\Windows\SYSWOW64\indexeddbserver.dll
2016-12-14 14:07:53 ----A---- C:\Windows\system32\sspicli.dll
2016-12-14 14:07:53 ----A---- C:\Windows\system32\d3d10warp.dll
2016-12-14 14:07:53 ----A---- C:\Windows\system32\CryptoWinRT.dll
2016-12-14 13:39:15 ----D---- C:\ProgramData\ESET
2016-12-14 13:39:15 ----D---- C:\Program Files\ESET
2016-12-10 13:57:30 ----D---- C:\Users\jakub\AppData\Roaming\Ashampoo
2016-12-10 13:56:18 ----D---- C:\ProgramData\Ashampoo
2016-12-10 13:56:17 ----D---- C:\Program Files (x86)\Ashampoo
2016-12-10 13:04:13 ----A---- C:\Windows\system32\wpnprv.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\InstallAgentUserBroker.exe
2016-12-10 13:04:13 ----A---- C:\Windows\system32\InstallAgent.exe
2016-12-10 13:04:13 ----A---- C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\browserbroker.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\AudioEng.dll
2016-12-10 13:04:13 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2016-12-10 13:04:12 ----A---- C:\Windows\SYSWOW64\netshell.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\StoreAgent.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\RDXService.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\rascustom.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\PlayToManager.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\dosvc.dll
2016-12-10 13:04:12 ----A---- C:\Windows\system32\AudioSes.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\ntshrui.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\ntdll.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\netshell.dll
2016-12-10 13:04:11 ----A---- C:\Windows\system32\audiosrv.dll
2016-12-10 13:04:10 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2016-12-10 13:04:10 ----A---- C:\Windows\system32\shell32.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryClient.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2016-12-10 13:04:09 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2016-12-10 13:04:09 ----A---- C:\Windows\system32\apprepsync.dll
2016-12-10 13:04:09 ----A---- C:\Windows\system32\apprepapi.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\NMAA.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\mos.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-12-10 13:04:08 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\DisplayManager.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2016-12-10 13:04:07 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2016-12-10 13:04:06 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-12-10 13:04:05 ----A---- C:\Windows\SYSWOW64\MapRouter.dll
2016-12-10 13:04:05 ----A---- C:\Windows\SYSWOW64\MapGeocoder.dll
2016-12-10 13:04:05 ----A---- C:\Windows\system32\MrmCoreR.dll
2016-12-10 13:04:05 ----A---- C:\Windows\system32\HttpsDataSource.dll
2016-12-10 13:04:05 ----A---- C:\Windows\system32\drivers\partmgr.sys
2016-12-10 13:04:05 ----A---- C:\Windows\system32\domgmt.dll
2016-12-10 13:04:05 ----A---- C:\Windows\system32\AUDIOKSE.dll
2016-12-10 13:04:04 ----A---- C:\Windows\SYSWOW64\mfaudiocnv.dll
2016-12-10 13:04:04 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2016-12-10 13:04:04 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2016-12-10 13:04:04 ----A---- C:\Windows\system32\MFPlay.dll
2016-12-10 13:04:03 ----A---- C:\Windows\SYSWOW64\mfmkvsrcsnk.dll
2016-12-10 13:04:03 ----A---- C:\Windows\SYSWOW64\MapsBtSvc.dll
2016-12-10 13:04:03 ----A---- C:\Windows\system32\RTWorkQ.dll
2016-12-10 13:04:03 ----A---- C:\Windows\system32\drivers\fastfat.sys
2016-12-10 13:04:02 ----A---- C:\Windows\SYSWOW64\MosStorage.dll
2016-12-10 13:04:02 ----A---- C:\Windows\SYSWOW64\DeviceFlows.DataModel.dll
2016-12-10 13:04:02 ----A---- C:\Windows\SYSWOW64\CloudStorageWizard.exe
2016-12-10 13:04:02 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-10 13:04:02 ----A---- C:\Windows\system32\SearchFolder.dll
2016-12-10 13:04:02 ----A---- C:\Windows\system32\policymanager.dll
2016-12-10 13:04:02 ----A---- C:\Windows\system32\dmenrollengine.dll
2016-12-10 13:04:02 ----A---- C:\Windows\system32\dmcertinst.exe
2016-12-10 13:04:00 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\ReportingCSP.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\msdtcuiu.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\EDPCleanup.exe
2016-12-10 13:04:00 ----A---- C:\Windows\system32\EAMProgressHandler.dll
2016-12-10 13:04:00 ----A---- C:\Windows\system32\ActivationManager.dll
2016-12-10 13:03:59 ----A---- C:\Windows\SYSWOW64\msctf.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\wlidsvc.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\hevcdecoder.dll
2016-12-10 13:03:59 ----A---- C:\Windows\system32\d3d11.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\efswrt.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\BcastDVRHelper.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\bcastdvr.exe
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2016-12-10 13:03:58 ----A---- C:\Windows\SYSWOW64\AppCapture.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\usercpl.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\RDXTaskFactory.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\NgcCtnr.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\ngccredprov.dll
2016-12-10 13:03:58 ----A---- C:\Windows\system32\drivers\xboxgip.sys
2016-12-10 13:03:58 ----A---- C:\Windows\system32\AppReadiness.dll
2016-12-10 13:03:57 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\wscsvc.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-12-10 13:03:57 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\netplwiz.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\dxgi.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\DeviceFlows.DataModel.dll
2016-12-10 13:03:57 ----A---- C:\Windows\system32\actxprxy.dll
2016-12-10 13:03:56 ----A---- C:\Windows\SYSWOW64\RTWorkQ.dll
2016-12-10 13:03:56 ----A---- C:\Windows\system32\wscapi.dll
2016-12-10 13:03:56 ----A---- C:\Windows\system32\services.exe
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\wsecedit.dll
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-12-10 13:03:55 ----A---- C:\Windows\SYSWOW64\ActivationManager.dll
2016-12-10 13:03:55 ----A---- C:\Windows\system32\wscinterop.dll
2016-12-10 13:03:55 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2016-12-10 13:03:55 ----A---- C:\Windows\system32\cryptngc.dll
2016-12-10 13:03:54 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2016-12-10 13:03:54 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-12-10 13:03:54 ----A---- C:\Windows\system32\msctf.dll
2016-12-10 13:03:54 ----A---- C:\Windows\system32\comdlg32.dll
2016-12-10 13:03:53 ----A---- C:\Windows\SYSWOW64\mspaint.exe
2016-12-10 13:03:53 ----A---- C:\Windows\system32\LogonController.dll
2016-12-10 13:03:53 ----A---- C:\Windows\system32\drivers\tpm.sys
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\LaunchWinApp.exe
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\gameux.dll
2016-12-10 13:03:52 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2016-12-10 13:03:52 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2016-12-10 13:03:52 ----A---- C:\Windows\system32\modernexecserver.dll
2016-12-10 13:03:51 ----A---- C:\Windows\SYSWOW64\stobject.dll
2016-12-10 13:03:51 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-12-10 13:03:51 ----A---- C:\Windows\system32\sppwinob.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\sppobjs.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\EditionUpgradeManagerObj.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\EditionUpgradeHelper.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\cdpusersvc.dll
2016-12-10 13:03:51 ----A---- C:\Windows\system32\cdpsvc.dll
2016-12-10 13:03:50 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2016-12-10 13:03:50 ----A---- C:\Windows\SYSWOW64\dmenrollengine.dll
2016-12-10 13:03:50 ----A---- C:\Windows\system32\wuuhext.dll
2016-12-10 13:03:50 ----A---- C:\Windows\system32\wpncore.dll
2016-12-10 13:03:50 ----A---- C:\Windows\system32\winlogon.exe
2016-12-10 13:03:50 ----A---- C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2016-12-10 13:03:49 ----A---- C:\Windows\SYSWOW64\rasapi32.dll
2016-12-10 13:03:49 ----A---- C:\Windows\SYSWOW64\policymanager.dll
2016-12-10 13:03:49 ----A---- C:\Windows\SYSWOW64\msdtcprx.dll
2016-12-10 13:03:49 ----A---- C:\Windows\system32\wsecedit.dll
2016-12-10 13:03:49 ----A---- C:\Windows\system32\VPNv2CSP.dll
2016-12-10 13:03:49 ----A---- C:\Windows\system32\SRHInproc.dll
2016-12-10 13:03:49 ----A---- C:\Windows\system32\DeviceReactivation.dll
2016-12-10 13:03:48 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-10 13:03:48 ----A---- C:\Windows\SYSWOW64\sendmail.dll
2016-12-10 13:03:48 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2016-12-10 13:03:48 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-12-10 13:03:48 ----A---- C:\Windows\system32\StorSvc.dll
2016-12-10 13:03:48 ----A---- C:\Windows\system32\SRH.dll
2016-12-10 13:03:48 ----A---- C:\Windows\system32\lpremove.exe
2016-12-10 13:03:47 ----A---- C:\Windows\SYSWOW64\xolehlp.dll
2016-12-10 13:03:47 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2016-12-10 13:03:47 ----A---- C:\Windows\SYSWOW64\ngccredprov.dll
2016-12-10 13:03:47 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-12-10 13:03:47 ----A---- C:\Windows\system32\wkssvc.dll
2016-12-10 13:03:47 ----A---- C:\Windows\system32\mfsvr.dll
2016-12-10 13:03:47 ----A---- C:\Windows\system32\mfplat.dll
2016-12-10 13:03:47 ----A---- C:\Windows\system32\drivers\modem.sys
2016-12-10 13:03:47 ----A---- C:\Windows\system32\bcastdvr.exe
2016-12-10 13:03:46 ----A---- C:\Windows\SYSWOW64\LogonController.dll
2016-12-10 13:03:46 ----A---- C:\Windows\SYSWOW64\cryptngc.dll
2016-12-10 13:03:46 ----A---- C:\Windows\system32\mfcore.dll
2016-12-10 13:03:46 ----A---- C:\Windows\system32\BcastDVRHelper.dll
2016-12-10 13:03:45 ----A---- C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-12-10 13:03:45 ----A---- C:\Windows\system32\lsm.dll
2016-12-10 13:03:45 ----A---- C:\Windows\system32\KernelBase.dll
2016-12-10 13:03:44 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2016-12-10 13:03:44 ----A---- C:\Windows\system32\windows.storage.dll
2016-12-10 13:03:44 ----A---- C:\Windows\system32\drivers\pci.sys
2016-12-10 13:03:44 ----A---- C:\Windows\system32\DisplayManager.dll
2016-12-10 13:03:44 ----A---- C:\Windows\system32\AppCapture.dll
2016-12-10 13:03:43 ----A---- C:\Windows\system32\dwmcore.dll
2016-12-10 13:03:42 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-12-10 13:03:42 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-12-10 13:03:39 ----A---- C:\Windows\SYSWOW64\migisol.dll
2016-12-10 13:03:39 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\ProvSysprep.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\msdtcprx.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\migisol.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\mfmkvsrcsnk.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\mfaudiocnv.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\dialserver.dll
2016-12-10 13:03:39 ----A---- C:\Windows\system32\CloudStorageWizard.exe
2016-12-10 13:03:38 ----A---- C:\Windows\SYSWOW64\msdtcuiu.dll
2016-12-10 13:03:38 ----A---- C:\Windows\SYSWOW64\InstallAgentUserBroker.exe
2016-12-10 13:03:38 ----A---- C:\Windows\SYSWOW64\InstallAgent.exe
2016-12-10 13:03:38 ----A---- C:\Windows\system32\sppnp.dll
2016-12-10 13:03:38 ----A---- C:\Windows\system32\RjvMDMConfig.dll
2016-12-10 13:03:38 ----A---- C:\Windows\system32\ReAgentc.exe
2016-12-10 13:03:38 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-12-10 13:03:38 ----A---- C:\Windows\system32\dpapisrv.dll
2016-12-10 13:03:38 ----A---- C:\Windows\system32\aitstatic.exe
2016-12-10 13:03:37 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-12-10 13:03:37 ----A---- C:\Windows\SYSWOW64\StoreAgent.dll
2016-12-10 13:03:34 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2016-12-10 13:03:34 ----A---- C:\Windows\system32\stobject.dll
2016-12-10 13:03:34 ----A---- C:\Windows\system32\mspaint.exe
2016-12-10 13:03:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-12-10 13:03:34 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2016-12-10 13:03:33 ----A---- C:\Windows\system32\urlmon.dll
2016-12-10 13:03:33 ----A---- C:\Windows\system32\ieproxy.dll
2016-12-10 13:03:33 ----A---- C:\Windows\system32\gameux.dll
2016-12-10 13:03:33 ----A---- C:\Windows\system32\DevicePairing.dll
2016-12-10 13:03:32 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2016-12-10 13:03:32 ----A---- C:\Windows\system32\NMAA.dll
2016-12-10 13:03:32 ----A---- C:\Windows\system32\MapControlCore.dll
2016-12-10 13:03:32 ----A---- C:\Windows\system32\LaunchWinApp.exe
2016-12-10 13:03:32 ----A---- C:\Windows\system32\drivers\rdbss.sys
2016-12-10 13:03:32 ----A---- C:\Windows\explorer.exe
2016-12-10 13:03:31 ----A---- C:\Windows\system32\zipfldr.dll
2016-12-10 13:03:31 ----A---- C:\Windows\system32\twinui.dll
2016-12-10 13:03:31 ----A---- C:\Windows\system32\IdCtrls.dll
2016-12-10 13:03:31 ----A---- C:\Windows\system32\efswrt.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\wuaueng.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\WsmSvc.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\wininet.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\UIAutomationCore.dll
2016-12-10 13:03:30 ----A---- C:\Windows\system32\mos.dll
2016-12-10 13:03:29 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2016-12-10 13:03:29 ----A---- C:\Windows\system32\SyncCenter.dll
2016-12-10 13:03:29 ----A---- C:\Windows\system32\cscui.dll
2016-12-10 13:03:28 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-12-10 13:03:28 ----A---- C:\Windows\system32\JpMapControl.dll
2016-12-10 13:03:28 ----A---- C:\Windows\system32\BingMaps.dll
2016-12-10 13:03:27 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2016-12-10 13:03:26 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2016-12-10 13:03:26 ----A---- C:\Windows\system32\rasmans.dll
2016-12-10 13:03:26 ----A---- C:\Windows\system32\moshostcore.dll
2016-12-10 13:03:26 ----A---- C:\Windows\system32\MapsStore.dll
2016-12-10 13:03:25 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2016-12-10 13:03:25 ----A---- C:\Windows\system32\MapRouter.dll
2016-12-10 13:03:25 ----A---- C:\Windows\system32\MapGeocoder.dll
2016-12-10 13:03:24 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2016-12-10 13:03:24 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-10 13:03:24 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2016-12-10 13:03:24 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\vpnike.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\umpoext.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\setupugc.exe
2016-12-10 13:03:24 ----A---- C:\Windows\system32\sendmail.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\rasapi32.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\NetSetupShim.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\MosStorage.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\moshost.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\MapsBtSvc.dll
2016-12-10 13:03:24 ----A---- C:\Windows\system32\MapConfiguration.dll
2016-12-10 13:03:23 ----A---- C:\Windows\SYSWOW64\wscinterop.dll
2016-12-10 13:03:23 ----A---- C:\Windows\SYSWOW64\NetCfgNotifyObjectHost.exe
2016-12-10 13:03:23 ----A---- C:\Windows\system32\NetCfgNotifyObjectHost.exe
2016-12-10 13:03:23 ----A---- C:\Windows\system32\CbtBackgroundManagerPolicy.dll
2016-12-05 23:39:13 ----D---- C:\Users\jakub\AppData\Roaming\Slack
2016-11-28 14:11:15 ----D---- C:\Users\jakub\AppData\Roaming\Macromedia
2016-11-28 13:55:43 ----D---- C:\ProgramData\GARMIN
2016-11-28 13:51:16 ----D---- C:\Program Files\DIFX
2016-11-28 13:51:10 ----D---- C:\Garmin
2016-11-28 13:51:10 ----AD---- C:\Program Files (x86)\Garmin
2016-11-28 13:35:51 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-28 13:35:39 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-11-28 13:17:18 ----AD---- C:\Program Files (x86)\Garmin GPS Plugin
2016-11-28 13:17:17 ----AD---- C:\Program Files\Garmin GPS Plugin
2016-11-28 13:16:57 ----D---- C:\Users\jakub\AppData\Roaming\Garmin
2016-11-23 04:13:10 ----AD---- C:\Program Files\7-Zip
======List of files/folders modified in the last 1 month======
2016-12-15 01:16:36 ----RD---- C:\Program Files
2016-12-15 01:16:30 ----D---- C:\Windows\Temp
2016-12-15 01:15:08 ----D---- C:\Windows\Prefetch
2016-12-15 01:05:51 ----D---- C:\Windows\SysWOW64
2016-12-15 00:29:29 ----D---- C:\Windows\INF
2016-12-15 00:29:17 ----D---- C:\ProgramData\NVIDIA Corporation
2016-12-15 00:29:17 ----D---- C:\ProgramData\NVIDIA
2016-12-15 00:29:15 ----D---- C:\Windows\system32\Tasks
2016-12-15 00:29:15 ----D---- C:\Windows\System32
2016-12-15 00:29:13 ----D---- C:\Windows\system32\DriverStore
2016-12-15 00:29:13 ----D---- C:\Windows\system32\CatRoot
2016-12-15 00:29:11 ----D---- C:\Program Files\NVIDIA Corporation
2016-12-15 00:29:11 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2016-12-15 00:29:06 ----D---- C:\Windows\system32\drivers
2016-12-15 00:29:06 ----D---- C:\Windows
2016-12-15 00:29:03 ----D---- C:\Windows\SoftwareDistribution
2016-12-15 00:29:00 ----D---- C:\Windows\system32\sru
2016-12-15 00:07:24 ----D---- C:\Windows\system32\SleepStudy
2016-12-14 21:14:24 ----D---- C:\Users\jakub\AppData\Roaming\Origin
2016-12-14 21:07:43 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2016-12-14 17:39:02 ----SHD---- C:\System Volume Information
2016-12-14 17:33:23 ----D---- C:\ProgramData\Origin
2016-12-14 16:56:08 ----D---- C:\Windows\debug
2016-12-14 16:55:29 ----AD---- C:\Program Files\CCleaner
2016-12-14 15:17:18 ----RD---- C:\Windows\Microsoft.NET
2016-12-14 15:16:55 ----RSD---- C:\Windows\assembly
2016-12-14 14:38:53 ----D---- C:\Windows\system32\config
2016-12-14 14:33:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-12-14 14:28:27 ----D---- C:\Windows\AppReadiness
2016-12-14 14:28:22 ----D---- C:\Windows\WinSxS
2016-12-14 14:27:07 ----D---- C:\Program Files (x86)\Avira
2016-12-14 14:26:13 ----D---- C:\Windows\SYSWOW64\en-US
2016-12-14 14:26:13 ----D---- C:\Windows\system32\en-US
2016-12-14 14:26:13 ----D---- C:\Windows\ShellExperiences
2016-12-14 14:26:13 ----D---- C:\Windows\AppPatch
2016-12-14 14:26:12 ----D---- C:\Windows\system32\Boot
2016-12-14 14:09:04 ----D---- C:\Windows\CbsTemp
2016-12-14 14:06:33 ----D---- C:\Windows\system32\catroot2
2016-12-14 13:48:56 ----D---- C:\Windows\system32\MRT
2016-12-14 13:47:17 ----AC---- C:\Windows\system32\MRT.exe
2016-12-14 13:39:25 ----SHD---- C:\Windows\Installer
2016-12-14 13:39:23 ----HD---- C:\Windows\ELAMBKUP
2016-12-14 13:39:15 ----HD---- C:\ProgramData
2016-12-14 13:37:21 ----D---- C:\ProgramData\Package Cache
2016-12-14 12:13:45 ----HD---- C:\Program Files\WindowsApps
2016-12-13 13:14:18 ----D---- C:\Windows\LiveKernelReports
2016-12-12 11:06:08 ----D---- C:\Windows\rescache
2016-12-12 00:56:25 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-12-11 01:08:11 ----D---- C:\Windows\SYSWOW64\oobe
2016-12-11 01:08:11 ----D---- C:\Windows\SYSWOW64\Dism
2016-12-11 01:08:11 ----D---- C:\Windows\system32\WinBioPlugIns
2016-12-11 01:08:11 ----D---- C:\Windows\system32\wbem
2016-12-11 01:08:11 ----D---- C:\Windows\system32\Sysprep
2016-12-11 01:08:11 ----D---- C:\Windows\system32\sr-Latn-CS
2016-12-11 01:08:11 ----D---- C:\Windows\system32\oobe
2016-12-11 01:08:11 ----D---- C:\Windows\system32\Dism
2016-12-11 01:08:10 ----RD---- C:\Windows\ImmersiveControlPanel
2016-12-11 01:08:10 ----D---- C:\Windows\servicing
2016-12-11 01:08:10 ----D---- C:\Windows\bcastdvr
2016-12-11 01:08:10 ----D---- C:\Program Files\Internet Explorer
2016-12-11 01:08:10 ----D---- C:\Program Files (x86)\Internet Explorer
2016-12-10 13:56:17 ----RD---- C:\Program Files (x86)
2016-12-10 12:55:34 ----A---- C:\Windows\system32\enrollmentapi.dll
2016-12-07 19:28:40 ----D---- C:\Windows\system32\NDF
2016-12-06 22:26:00 ----AD---- C:\Program Files (x86)\Origin
2016-12-06 01:53:17 ----D---- C:\Windows\system32\LogFiles
2016-12-03 13:33:28 ----SD---- C:\ProgramData\Microsoft
2016-11-28 13:55:33 ----SD---- C:\Users\jakub\AppData\Roaming\Microsoft
2016-11-28 13:36:09 ----D---- C:\Users\jakub\AppData\Roaming\Mozilla
2016-11-28 13:03:04 ----N---- C:\Windows\system32\MpSigStub.exe
2016-11-28 00:03:11 ----D---- C:\ProgramData\firebird
2016-11-24 12:07:26 ----D---- C:\Windows\system32\drivers\UMDF
2016-11-18 15:35:42 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2016-11-18 15:35:32 ----D---- C:\Program Files (x86)\Common Files
2016-11-18 15:35:09 ----AD---- C:\Program Files (x86)\Microsoft Office
2016-11-17 14:45:32 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2016-11-17 14:45:32 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2016-11-17 14:45:32 ----A---- C:\Windows\system32\nvspcap64.dll
2016-11-17 14:45:32 ----A---- C:\Windows\system32\nvspbridge64.dll
2016-11-17 14:45:32 ----A---- C:\Windows\system32\NvRtmpStreamer64.dll
2016-11-16 17:42:27 ----A---- C:\Windows\NvContainerRecovery.bat
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2016-10-13 212096]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\Windows\system32\drivers\iorate.sys [2016-11-02 48992]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2016-08-02 554416]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-10-13 232072]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-10-13 177792]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-10-13 76416]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-10-13 91784]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2016-08-02 422344]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2016-08-02 1005512]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\Windows\System32\drivers\registry.sys [2016-07-16 70144]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-10-13 48768]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 asmthub3;@oem27.inf,%asmthub3_ServiceDescription%;ASMedia USB3 Hub Service; C:\Windows\System32\drivers\asmthub3.sys [2015-06-05 149240]
R3 asmtxhci;@oem26.inf,%asmtxhci_ServiceDescription%;ASMEDIA XHCI Service; C:\Windows\System32\drivers\asmtxhci.sys [2015-06-05 442104]
R3 e1dexpress;@oem18.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d65x64.sys [2015-06-18 530416]
R3 gFilterMouUsb;@oem35.inf,%gFilterMouUsb.SvcDesc%;SmartGenius Mouse Drv; C:\Windows\System32\drivers\gFilterMouUsb.sys [2016-11-09 32472]
R3 iaLPSS2_GPIO2;iaLPSS2_GPIO2; C:\Windows\System32\drivers\iaLPSS2_GPIO2.sys [2015-07-20 84264]
R3 iaLPSS2_I2C;@oem24.inf,%iaLPSS2_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2_I2C.sys [2015-07-20 185128]
R3 iaLPSS2_UART2;@oem25.inf,%iaLPSS2_UART2.SVCDESC%;Intel(R) Serial IO UART Driver v2; C:\Windows\System32\drivers\iaLPSS2_UART2.sys [2015-07-20 281896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-09-03 4595968]
R3 ioFakDrv;@oem31.inf,%ioFakDrv%;ioVirtual Device; C:\Windows\System32\drivers\ioFakDrv.sys [2015-08-10 35136]
R3 ioFakMap;@oem31.inf,%ioFakMap.SVCDESC%;MiniHid Driver Service for ioFakeDrv Interface layer; C:\Windows\System32\drivers\ioFakMap.sys [2015-08-10 23880]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2016-08-02 191944]
R3 MEIx64;@oem3.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverW8x64.sys [2016-01-19 204032]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [2012-10-25 13368]
R3 NVHDA;@oem34.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2016-10-26 212936]
R3 nvlddmkm;nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_848dea456d3c865e\nvlddmkm.sys [2016-10-26 14159928]
R3 nvvad_WaveExtensible;@oem48.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2016-11-17 46016]
S0 eelam;eelam; C:\Windows\system32\DRIVERS\eelam.sys [2016-10-13 15488]
S0 klelam;klelam; C:\Windows\system32\DRIVERS\klelam.sys [2016-08-02 28792]
S0 klupd_KLIF_arkmon;klupd_KLIF_arkmon; C:\Windows\System32\Drivers\klupd_KLIF_arkmon.sys [2016-09-19 223528]
S0 klupd_KLIF_klbg;klupd_KLIF_klbg; C:\Windows\System32\Drivers\klupd_KLIF_klbg.sys [2016-09-19 112336]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\Windows\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\Windows\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\Windows\system32\drivers\AppvVemgr.sys [2016-07-16 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\Windows\system32\drivers\AppvVfs.sys [2016-07-16 141152]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\Windows\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2016-09-10 118272]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\Windows\System32\drivers\e1i63x64.sys [2016-07-16 524800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\Windows\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\Windows\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\Windows\system32\drivers\irda.sys [2016-07-16 120320]
S3 klupd_KLIF_arkmon_A10F8B05;klupd_KLIF_arkmon_A10F8B05; \??\C:\ProgramData\CheckPoint\ZoneAlarm\Data\avsys\temp\A10F8B0584926404E5CCF915704D27AA\klupd_KLIF_arkmon.sys []
S3 klupd_KLIF_mark;klupd_KLIF_mark; C:\Windows\System32\Drivers\klupd_KLIF_mark.sys [2016-09-19 167904]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\Windows\system32\drivers\mssecflt.sys [2016-07-16 179040]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-11-17 27584]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\Windows\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_f18ca;CDPUserSvc_f18ca; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-10-30 3294912]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-10-11 2815520]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2015-05-07 272352]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-09-12 207648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-09-12 415520]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [2015-05-18 163280]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-11-17 462784]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-10-25 458176]
R2 NVIDIA Wireless Controller Service;NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [2016-11-17 1163712]
R2 OneSyncSvc_f18ca;Hostitel synchronizace_f18ca; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2016-12-06 2180624]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2016-09-28 76152]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-05-19 335872]
R3 PimIndexMaintenanceSvc_f18ca;Data kontaktů_f18ca; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\Windows\System32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-17 153752]
S2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-05-19 7680]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2016-11-29 1029648]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-17 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_f18ca;Služba zasílání zpráv_f18ca; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-11-05 172488]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-11-17 462784]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-12-06 2119688]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-10-30 209104]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2016-09-07 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\Windows\system32\TieringEngineService.exe [2016-07-16 287744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\Windows\system32\AppVClient.exe [2016-09-15 823136]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\Windows\System32\svchost.exe [2016-07-16 44496]
-----------------EOF-----------------