Divné správanie ntb
Napsal: 30 kvě 2017 16:02
Ahojte.
Manželov ntb sa správa divne. Najprv ho fb "donútil" nainštalovať kaspersky kvôli podozreniu na malvér, teraz fb nemá ikonku na odhlásenie sa.
Prikladám log.
Logfile of random's system information tool 1.16 (written by random/random)
Run by lenovo at 2017-05-30 16:57:23
Microsoft Windows 10 Home
System drive C: has 377 GB (87%) free of 435 GB
Total RAM: 3979 MB (46% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:57:33, on 30.5.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\lenovo_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [OneDrive] "C:\Users\lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [World of Tanks] "C:\Games\World_of_Tanks\WargamingGameUpdater.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_EE07359CBB5DF117C451479D648E72F4] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem44.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: LUService - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo PhoneCompanionPusher Service (PhoneCompanionPusher) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
O23 - Service: Lenovo PhoneCompanionVap Service (PhoneCompanionVap) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8969 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-648ab688-a8b2-4aea-a07b-78f6fa6e6efb -SystemEventPortName:HostProcess-0b78d371-a93c-416e-bb5b-8d2fb850aa24 -IoCancelEventPortName:HostProcess-aaf0df86-1271-4b9d-8bf3-3aaabcbdad19 -NonStateChangingEventPortName:HostProcess-7b54c021-2f22-44f6-8949-9969a85cfaf6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f932d5d8-668d-4ded-9fdc-056736c2dd0b -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe"
C:\WINDOWS\system32\ibtsiva.exe
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
C:\windows\system32\CxAudMsg64.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\WINDOWS\SysWOW64\SAsrv.exe
"C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Windows\RTFTrack.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe"
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\lenovo\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=58.0.3029.110 --initial-client-data=0x1a8,0x1ac,0x1b0,0x1a4,0x1b4,0x7ffc18cb2968,0x7ffc18cb2980,0x7ffc18cb2990
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=5892 --on-initialized-event-handle=552 --parent-handle=556 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=920 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,19,23,41,61,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x8086 --gpu-device-id=0x0f31 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --gpu-driver-date=8-17-2015 --service-request-channel-token=D398AE9B511464678F2C5F186725F316 --mojo-platform-channel-handle=1316 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=920 --primordial-pipe-token=20662AD5929753BA925AB2D56BF87A24 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=20662AD5929753BA925AB2D56BF87A24 --renderer-client-id=4 --mojo-platform-channel-handle=2568 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=920 --primordial-pipe-token=F6D777935B401A49911A51FFF79F0C6E --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=F6D777935B401A49911A51FFF79F0C6E --renderer-client-id=5 --mojo-platform-channel-handle=2820 /prefetch:1
C:\Program Files\CCleaner\CCleaner64.exe
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\igfxTray.exe
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Program Files\Lenovo PhoneCompanion\adb.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\Program Files (x86)\Lenovo\Lenovo Updates\LU.exe
C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "0x13c8_0x1608_0x5293b93c"
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\Program Files\Windows Defender\MpCmdRun.exe
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=920 --primordial-pipe-token=3205D0E2A4BF5FA02FEDEE27B648A9A7 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=3205D0E2A4BF5FA02FEDEE27B648A9A7 --renderer-client-id=92 --mojo-platform-channel-handle=7996 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe21_ Global\UsGthrCtrlFltPipeMssGthrPipe21 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 640 644 652 8192 648
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x3c0
"C:\Users\lenovo\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
====== Scheduled tasks folder ======
C:\WINDOWS\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\OFFICE2013ACT - C:\ProgramData\Office2013\OFFICEICON.vbs
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\lenovo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\PDVDServ Task - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1468983576 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{4E45834B-0768-41BB-982F-3983D6935570} - C:\windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\windows\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\PLA\LSC Memory - C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Lenovo\Dependency Package Auto Update - C:\Program Files\Lenovo\iMController\AutoUpdate.exe
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Customer Feedback Program 64 35 - "%ProgramFiles(x86)%\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe"
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Solution Center Launcher - %programfiles%\lenovo\lenovo solution center\App\LSCService.exe Actions UpdateStatus
C:\WINDOWS\system32\tasks\Lenovo\LSC\LSCHardwareScan - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\WINDOWS\system32\tasks\Lenovo\LSC\LSCHardwareScanPostpone - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\WINDOWS\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Google Chrome=========
C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentácie Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Web Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 0 Adblock Plus 1.13.2
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 0 Avast SafePrice 12.0.199
Extension fbldghhileplklbgaekmnikbkhkhnenl 1 Razagepu 3.3.9
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabuľky Google 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google v režime offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 0 Avast Online Security 12.0.214
Extension gpdjojdkbbmdfjfahjcgigfpmkopogic 1 Tlačidlo Uložiť na Pintereste 2.0.8
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5817.313.0.5
Homepage: http://www.delta-search.com/?babsrc=HP_ ... 5&tsp=5024
default_search_provider.search_url:
C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={1D17B0D6-9F6F-4BFB-9CCB-4ABAAC19D362}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1D17B0D6-9F6F-4BFB-9CCB-4ABAAC19D362}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={1D17B0D6-9F6F-4BFB-9CCB-4ABAAC19D362}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{1D17B0D6-9F6F-4BFB-9CCB-4ABAAC19D362}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2016-09-21 3814624]
"RtsFT"=RTFTrack.exe []
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"PhoneCompanion"=C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [2014-10-10 836592]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2014-10-10 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2014-10-10 10841584]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-05-10 213824]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-04-28 631808]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-06 9288408]
"OneDrive"=C:\Users\lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-05-26 1518808]
"World of Tanks"=C:\Games\World_of_Tanks\WargamingGameUpdater.exe [2016-11-18 3135752]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-05-04 27716568]
"GoogleChromeAutoLaunch_EE07359CBB5DF117C451479D648E72F4"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2017-05-09 1143640]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-05-30 16:57:24 ----D---- C:\Program Files\trend micro
2017-05-30 16:57:23 ----D---- C:\rsit
2017-05-30 10:29:13 ----N---- C:\WINDOWS\system32\drivers\1CF00083.sys
2017-05-30 10:29:12 ----N---- C:\WINDOWS\system32\drivers\65185320.sys
2017-05-30 10:29:12 ----D---- C:\KVRT_Data
2017-05-30 10:28:36 ----D---- C:\ProgramData\AppData
2017-05-29 22:50:22 ----D---- C:\ProgramData\SWCUTemp
2017-05-29 21:20:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.TMP
2017-05-24 18:08:48 ----D---- C:\Users\lenovo\AppData\Roaming\Google
2017-05-10 19:09:44 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-05-10 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-05-10 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-05-10 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-05-10 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-05-10 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-05-10 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-10 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-05-10 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-05-10 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-05-10 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-05-10 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-05-10 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-05-10 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-05-10 19:09:35 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-05-10 19:09:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-05-10 19:09:34 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-05-10 19:09:33 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-05-10 19:09:33 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-05-10 19:09:32 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-05-10 19:09:32 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-05-10 19:09:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-05-10 19:09:30 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-05-10 19:09:30 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-05-10 19:09:30 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-05-10 19:09:29 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-05-10 19:09:29 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-05-10 19:09:29 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-05-10 19:09:29 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-05-10 19:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-05-10 19:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-05-10 19:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-05-10 19:09:27 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-05-10 19:09:20 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-05-10 19:09:20 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-05-10 19:09:20 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-05-10 19:09:20 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-05-10 19:09:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-05-10 19:09:19 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-05-10 19:09:19 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-05-10 19:09:19 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-05-10 19:09:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-05-10 19:09:18 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-05-10 19:09:18 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-05-10 19:09:18 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-05-10 19:09:16 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-05-10 19:09:15 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-05-10 19:09:15 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-05-10 19:09:15 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-05-10 19:09:15 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-05-10 19:09:14 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-05-10 19:09:14 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-05-10 19:09:14 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-05-10 19:09:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-05-10 19:09:13 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-05-10 19:09:12 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-05-10 19:09:12 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-05-10 19:09:11 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-05-10 19:09:11 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-05-10 19:09:10 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-05-10 19:09:10 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-05-10 19:09:09 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2017-05-10 19:09:09 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-05-10 19:09:08 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-05-10 19:09:08 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2017-05-10 19:09:08 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-05-10 19:09:08 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2017-05-10 19:09:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-05-10 19:09:07 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-05-10 19:09:07 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2017-05-10 19:09:07 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-05-10 19:09:06 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-05-10 19:09:06 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-05-10 19:09:06 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-05-10 19:09:06 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2017-05-10 19:09:05 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-05-10 19:09:05 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-05-10 19:09:05 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-05-10 19:09:05 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-05-10 19:09:04 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-05-10 19:09:04 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2017-05-10 19:09:04 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-10 19:09:04 ----A---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2017-05-10 19:09:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2017-05-10 19:09:03 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-05-10 19:09:03 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2017-05-10 19:09:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-05-10 19:09:02 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-05-10 19:09:02 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\adsnt.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2017-05-10 19:08:59 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2017-05-10 19:08:59 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-05-10 19:08:59 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2017-05-10 19:08:59 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-05-10 19:08:58 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-05-10 19:08:57 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\BthTelemetry.dll
2017-05-10 19:08:53 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-05-10 19:08:52 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-05-10 19:08:51 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-10 19:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-05-10 19:08:51 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-10 19:08:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-05-10 19:08:50 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-05-10 19:08:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-05-10 19:08:48 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-10 19:08:48 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-05-10 19:08:46 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-10 19:08:44 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-05-10 19:08:44 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-05-10 19:08:35 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 19:08:31 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 19:08:25 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-10 19:08:25 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 19:08:25 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-10 19:08:25 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-10 19:08:24 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-05-10 19:08:24 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-10 19:08:24 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-05-10 19:08:23 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-05-10 19:08:23 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-05-10 19:08:23 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-10 19:08:22 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-10 19:08:22 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-10 19:08:21 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-10 19:08:21 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-10 19:08:20 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-10 19:08:19 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-05-10 19:08:18 ----A---- C:\WINDOWS\system32\localspl.dll
2017-05-10 19:08:18 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-10 19:08:17 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-10 19:08:17 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-05-10 19:08:17 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-10 19:08:16 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-10 19:08:16 ----A---- C:\WINDOWS\system32\shell32.dll
2017-05-10 19:08:15 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 19:08:14 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-10 19:08:12 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-10 19:08:11 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-10 19:08:11 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-10 19:08:10 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-05-10 19:08:09 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-10 19:08:09 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-10 19:08:09 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-10 19:08:09 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-10 19:08:08 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 19:08:07 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-10 19:08:05 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 19:08:05 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\services.exe
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\mf.dll
2017-05-10 19:08:03 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-05-10 19:08:03 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-10 19:08:03 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-10 19:08:03 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-10 19:08:02 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-10 19:08:02 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-10 19:08:02 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-10 19:08:02 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-10 19:08:01 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-10 19:08:01 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-10 19:08:00 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-10 19:08:00 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-10 19:08:00 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-10 19:08:00 ----A---- C:\WINDOWS\system32\mfps.dll
2017-05-10 19:07:59 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-10 19:07:58 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-10 19:07:56 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-10 19:07:55 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-10 19:07:43 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-10 19:07:42 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-10 19:07:42 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2017-05-10 19:07:42 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-10 19:07:42 ----A---- C:\WINDOWS\system32\fvecpl.dll
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\wksprt.exe
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\rdpclip.exe
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-10 19:07:40 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-05-10 19:07:40 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-10 19:07:38 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-05-10 19:07:38 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-05-10 19:07:38 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-05-10 19:07:38 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 19:07:35 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-05-10 19:07:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-05-10 19:07:34 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-10 19:07:34 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-10 19:07:34 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 19:07:32 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-05-10 19:07:31 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-05-10 19:07:30 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-05-10 19:07:30 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-05-10 19:07:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-10 19:07:29 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-05-10 19:07:29 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-10 19:07:28 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-05-10 19:07:27 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-10 19:07:27 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-10 19:07:27 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-05-10 19:07:27 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-05-10 19:07:26 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-05-10 19:07:26 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 19:07:25 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-05-10 19:07:24 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-10 19:07:24 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-10 19:07:23 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 19:07:23 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-10 19:07:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-10 19:07:22 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-10 19:07:22 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-10 19:07:22 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-10 19:07:22 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-10 19:07:21 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 19:07:21 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-05-10 19:07:21 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-05-10 19:07:20 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 19:07:20 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 19:07:18 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 19:07:18 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-10 19:07:18 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 19:07:18 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-05-10 19:07:15 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-10 19:07:11 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-10 19:07:11 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-10 19:07:11 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-05-10 19:07:10 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-10 19:07:08 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-05-10 19:07:07 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-05-10 19:07:06 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-05-10 19:07:06 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 19:07:06 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-10 19:07:06 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-10 19:07:05 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-10 19:07:05 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-05-10 19:07:04 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-10 19:07:04 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-10 19:07:04 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-10 19:07:03 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-05-10 19:07:02 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-05-10 19:07:02 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-10 19:07:01 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-10 19:07:01 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-05-10 19:07:01 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-10 19:07:00 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-10 19:06:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-10 19:06:59 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-10 19:06:59 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-10 19:06:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-10 19:06:58 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-05-10 19:06:58 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-10 19:06:57 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-10 19:06:57 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-10 19:06:54 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-10 19:06:54 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-10 19:06:54 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-10 19:06:52 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-05-10 19:06:52 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-10 19:06:52 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-10 19:06:52 ----A---- C:\WINDOWS\system32\catsrvps.dll
2017-05-10 19:06:51 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-05-10 19:06:51 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-05-10 19:06:51 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-10 19:06:51 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2017-05-10 19:06:48 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-10 19:06:47 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-05-10 19:06:47 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-10 19:06:45 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 19:06:44 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-10 19:06:44 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-10 19:06:43 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-10 19:06:43 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-10 19:06:43 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-05-10 19:06:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 19:06:42 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-10 19:06:41 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-10 19:06:41 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-05-10 19:06:41 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 19:06:40 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-05-10 19:06:39 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-05-10 19:06:39 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-05-10 19:06:39 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-10 19:06:38 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-10 19:06:38 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-10 19:06:38 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-10 19:06:37 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-10 19:06:33 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-05-10 19:06:33 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-05-10 19:06:30 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-10 19:06:30 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-10 19:06:29 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-10 19:06:29 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 19:06:28 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-05-10 19:06:28 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 19:06:28 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-10 19:06:28 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-05-10 19:06:27 ----A---- C:\WINDOWS\explorer.exe
2017-05-10 19:06:25 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-10 19:06:25 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-10 19:06:25 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-05-10 19:06:24 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-10 19:06:24 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-10 19:06:22 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-05-10 19:06:22 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-10 19:06:22 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-10 19:06:22 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-10 19:06:21 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-05-10 19:06:21 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 19:06:21 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 19:06:21 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-10 19:06:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-10 19:06:20 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-05-10 19:06:20 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-10 19:06:20 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\resutils.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-10 19:06:18 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-05-10 19:06:18 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-10 19:06:18 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 19:06:17 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-10 19:06:17 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-05-10 19:06:16 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-10 19:06:16 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-10 19:06:16 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\spwizeng.dll
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\input.dll
2017-05-10 19:06:14 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-10 19:06:14 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-10 19:06:14 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-05-10 19:06:14 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 19:06:13 ----A---- C:\WINDOWS\system32\vds.exe
2017-05-10 19:06:13 ----A---- C:\WINDOWS\system32\cryptui.dll
2017-05-10 19:06:13 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-10 19:06:13 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-10 19:06:12 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-10 19:06:12 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-10 19:06:12 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-10 19:06:12 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-10 19:06:10 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-10 19:06:10 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-10 19:06:10 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-10 10:03:14 ----A---- C:\WINDOWS\system32\aswBoot.exe
====== List of files/folders modified in the last 1 month ======
2017-05-30 16:57:33 ----D---- C:\WINDOWS\Prefetch
2017-05-30 16:57:24 ----RD---- C:\Program Files
2017-05-30 16:57:15 ----D---- C:\WINDOWS\Temp
2017-05-30 16:45:15 ----D---- C:\Users\lenovo\AppData\Roaming\Skype
2017-05-30 16:07:08 ----D---- C:\WINDOWS\system32\sru
2017-05-30 16:07:01 ----D---- C:\WINDOWS\system32\SleepStudy
2017-05-30 10:29:13 ----D---- C:\WINDOWS\system32\drivers
2017-05-30 10:28:36 ----HD---- C:\ProgramData
2017-05-29 22:49:57 ----RD---- C:\WINDOWS\Microsoft.NET
2017-05-29 22:47:32 ----D---- C:\Windows
2017-05-29 22:37:04 ----D---- C:\WINDOWS\system32\wbem
2017-05-29 22:09:10 ----D---- C:\WINDOWS\registration
2017-05-29 21:59:22 ----SHD---- C:\System Volume Information
2017-05-29 21:57:45 ----D---- C:\WINDOWS\Logs
2017-05-29 21:52:38 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2017-05-29 21:33:16 ----D---- C:\WINDOWS\INF
2017-05-29 21:33:16 ----D---- C:\WINDOWS\debug
2017-05-29 21:28:34 ----D---- C:\WINDOWS\System32
2017-05-29 21:15:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-29 21:09:46 ----D---- C:\WINDOWS\system32\catroot2
2017-05-28 21:47:51 ----SD---- C:\Users\lenovo\AppData\Roaming\Microsoft
2017-05-27 20:47:55 ----D---- C:\WINDOWS\AppReadiness
2017-05-26 19:23:36 ----HD---- C:\Program Files\WindowsApps
2017-05-26 19:19:20 ----D---- C:\WINDOWS\system32\Tasks
2017-05-25 13:31:16 ----D---- C:\WINDOWS\system32\config
2017-05-24 21:14:13 ----D---- C:\WINDOWS\WinSxS
2017-05-24 18:38:33 ----D---- C:\WINDOWS\CbsTemp
2017-05-24 18:38:31 ----D---- C:\WINDOWS\system32\appraiser
2017-05-24 18:38:25 ----D---- C:\WINDOWS\system32\MRT
2017-05-24 18:32:40 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-24 18:08:46 ----D---- C:\ProgramData\Energy Manager
2017-05-12 20:24:10 ----D---- C:\WINDOWS\rescache
2017-05-12 16:40:20 ----RSD---- C:\WINDOWS\assembly
2017-05-11 20:42:30 ----D---- C:\WINDOWS\system32\DriverStore
2017-05-11 19:22:39 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-05-11 19:22:39 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-05-11 19:22:39 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-05-11 19:22:39 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2017-05-11 19:22:38 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-05-11 19:22:38 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-05-11 19:22:38 ----D---- C:\WINDOWS\SysWOW64
2017-05-11 19:22:34 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-05-11 19:22:34 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-05-11 19:22:32 ----SD---- C:\WINDOWS\system32\F12
2017-05-11 19:22:32 ----D---- C:\WINDOWS\system32\sk-SK
2017-05-11 19:22:32 ----D---- C:\WINDOWS\system32\oobe
2017-05-11 19:22:32 ----D---- C:\WINDOWS\system32\en-US
2017-05-11 19:22:26 ----D---- C:\WINDOWS\ShellExperiences
2017-05-11 19:22:26 ----D---- C:\WINDOWS\Provisioning
2017-05-11 19:22:26 ----D---- C:\WINDOWS\PolicyDefinitions
2017-05-11 19:22:25 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-05-11 19:22:25 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-05-11 19:22:25 ----D---- C:\Program Files (x86)\Windows Defender
2017-05-11 19:22:24 ----RD---- C:\Program Files\Windows Defender
2017-05-11 19:22:24 ----D---- C:\Program Files\Windows Photo Viewer
2017-05-11 18:05:48 ----SHD---- C:\WINDOWS\Installer
2017-05-11 18:05:47 ----D---- C:\ProgramData\Skype
2017-05-11 18:05:40 ----RD---- C:\Program Files (x86)\Skype
2017-05-11 18:05:40 ----D---- C:\Program Files (x86)\Common Files
2017-05-10 10:31:06 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2017-05-10 10:28:24 ----D---- C:\WINDOWS\system32\NDF
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-05-10 190256]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-05-10 334576]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-05-10 49016]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-05-10 75704]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-05-10 339696]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 MBI;@oem39.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\WINDOWS\System32\drivers\MBI.sys [2013-10-10 29464]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-05-10 311808]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-05-10 32600]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-05-10 101152]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-05-10 1007160]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-05-10 569192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-05-10 128648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-05-12 158880]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R3 ACPIVPC;@oem25.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-10-10 35576]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-09-03 114176]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2017-04-28 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-09-03 84992]
R3 CnxtHdAudService;@oem48.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-05-19 1543912]
R3 ETD;@oem12.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2016-09-21 602704]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [2016-09-21 41040]
R3 ibtusb;@oem44.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-01-13 231168]
R3 iwdbus;@oem40.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2016-07-16 3485696]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
R3 rt640x64;@oem22.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-22 886528]
R3 RTSUER;@oem35.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-03 410880]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2014-02-27 9109720]
R3 TXEIx64;@oem23.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\WINDOWS\System32\drivers\TXEIx64.sys [2014-01-15 88592]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-04-28 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-05-10 38296]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2017-04-28 967680]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2013-09-24 329944]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-05-10 263304]
R2 CDPUserSvc_29098;CDPUserSvc_29098; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2016-09-21 143584]
R2 ibtsiva;@oem44.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-09-24 328616]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2014-05-22 584960]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-10-10 198192]
R2 LUService;LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [2014-02-18 38896]
R2 OneSyncSvc_29098;Sync Host_29098; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [2014-10-10 288240]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 SAService;Conexant SmartAudio service; C:\WINDOWS\syswow64\SAsrv.exe [2011-09-01 447104]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-05-10 7346208]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-26 43696]
R3 PimIndexMaintenanceSvc_29098;Contact Data_29098; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-04-05 317400]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-06-03 533760]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-05-07 1663880]
S3 MessagingService_29098;MessagingService_29098; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [2014-10-10 305136]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
Manželov ntb sa správa divne. Najprv ho fb "donútil" nainštalovať kaspersky kvôli podozreniu na malvér, teraz fb nemá ikonku na odhlásenie sa.
Prikladám log.
Logfile of random's system information tool 1.16 (written by random/random)
Run by lenovo at 2017-05-30 16:57:23
Microsoft Windows 10 Home
System drive C: has 377 GB (87%) free of 435 GB
Total RAM: 3979 MB (46% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:57:33, on 30.5.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\lenovo_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [OneDrive] "C:\Users\lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [World of Tanks] "C:\Games\World_of_Tanks\WargamingGameUpdater.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_EE07359CBB5DF117C451479D648E72F4] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem44.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: LUService - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo PhoneCompanionPusher Service (PhoneCompanionPusher) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
O23 - Service: Lenovo PhoneCompanionVap Service (PhoneCompanionVap) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8969 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-648ab688-a8b2-4aea-a07b-78f6fa6e6efb -SystemEventPortName:HostProcess-0b78d371-a93c-416e-bb5b-8d2fb850aa24 -IoCancelEventPortName:HostProcess-aaf0df86-1271-4b9d-8bf3-3aaabcbdad19 -NonStateChangingEventPortName:HostProcess-7b54c021-2f22-44f6-8949-9969a85cfaf6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f932d5d8-668d-4ded-9fdc-056736c2dd0b -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe"
C:\WINDOWS\system32\ibtsiva.exe
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
C:\windows\system32\CxAudMsg64.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\WINDOWS\SysWOW64\SAsrv.exe
"C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Windows\RTFTrack.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe"
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\lenovo\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=58.0.3029.110 --initial-client-data=0x1a8,0x1ac,0x1b0,0x1a4,0x1b4,0x7ffc18cb2968,0x7ffc18cb2980,0x7ffc18cb2990
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=5892 --on-initialized-event-handle=552 --parent-handle=556 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=920 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,19,23,41,61,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x8086 --gpu-device-id=0x0f31 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --gpu-driver-date=8-17-2015 --service-request-channel-token=D398AE9B511464678F2C5F186725F316 --mojo-platform-channel-handle=1316 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=920 --primordial-pipe-token=20662AD5929753BA925AB2D56BF87A24 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=20662AD5929753BA925AB2D56BF87A24 --renderer-client-id=4 --mojo-platform-channel-handle=2568 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=920 --primordial-pipe-token=F6D777935B401A49911A51FFF79F0C6E --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=F6D777935B401A49911A51FFF79F0C6E --renderer-client-id=5 --mojo-platform-channel-handle=2820 /prefetch:1
C:\Program Files\CCleaner\CCleaner64.exe
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\igfxTray.exe
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Program Files\Lenovo PhoneCompanion\adb.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\Program Files (x86)\Lenovo\Lenovo Updates\LU.exe
C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "0x13c8_0x1608_0x5293b93c"
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\Program Files\Windows Defender\MpCmdRun.exe
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=920 --primordial-pipe-token=3205D0E2A4BF5FA02FEDEE27B648A9A7 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=3205D0E2A4BF5FA02FEDEE27B648A9A7 --renderer-client-id=92 --mojo-platform-channel-handle=7996 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe21_ Global\UsGthrCtrlFltPipeMssGthrPipe21 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 640 644 652 8192 648
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x3c0
"C:\Users\lenovo\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
====== Scheduled tasks folder ======
C:\WINDOWS\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\OFFICE2013ACT - C:\ProgramData\Office2013\OFFICEICON.vbs
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\lenovo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\PDVDServ Task - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1468983576 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{4E45834B-0768-41BB-982F-3983D6935570} - C:\windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\windows\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\PLA\LSC Memory - C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Lenovo\Dependency Package Auto Update - C:\Program Files\Lenovo\iMController\AutoUpdate.exe
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Customer Feedback Program 64 35 - "%ProgramFiles(x86)%\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe"
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Solution Center Launcher - %programfiles%\lenovo\lenovo solution center\App\LSCService.exe Actions UpdateStatus
C:\WINDOWS\system32\tasks\Lenovo\LSC\LSCHardwareScan - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\WINDOWS\system32\tasks\Lenovo\LSC\LSCHardwareScanPostpone - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\WINDOWS\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Google Chrome=========
C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentácie Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Web Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 0 Adblock Plus 1.13.2
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 0 Avast SafePrice 12.0.199
Extension fbldghhileplklbgaekmnikbkhkhnenl 1 Razagepu 3.3.9
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabuľky Google 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google v režime offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 0 Avast Online Security 12.0.214
Extension gpdjojdkbbmdfjfahjcgigfpmkopogic 1 Tlačidlo Uložiť na Pintereste 2.0.8
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5817.313.0.5
Homepage: http://www.delta-search.com/?babsrc=HP_ ... 5&tsp=5024
default_search_provider.search_url:
C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={1D17B0D6-9F6F-4BFB-9CCB-4ABAAC19D362}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1D17B0D6-9F6F-4BFB-9CCB-4ABAAC19D362}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={1D17B0D6-9F6F-4BFB-9CCB-4ABAAC19D362}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{1D17B0D6-9F6F-4BFB-9CCB-4ABAAC19D362}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2016-09-21 3814624]
"RtsFT"=RTFTrack.exe []
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"PhoneCompanion"=C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [2014-10-10 836592]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2014-10-10 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2014-10-10 10841584]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-05-10 213824]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-04-28 631808]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-06 9288408]
"OneDrive"=C:\Users\lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-05-26 1518808]
"World of Tanks"=C:\Games\World_of_Tanks\WargamingGameUpdater.exe [2016-11-18 3135752]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-05-04 27716568]
"GoogleChromeAutoLaunch_EE07359CBB5DF117C451479D648E72F4"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2017-05-09 1143640]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-05-30 16:57:24 ----D---- C:\Program Files\trend micro
2017-05-30 16:57:23 ----D---- C:\rsit
2017-05-30 10:29:13 ----N---- C:\WINDOWS\system32\drivers\1CF00083.sys
2017-05-30 10:29:12 ----N---- C:\WINDOWS\system32\drivers\65185320.sys
2017-05-30 10:29:12 ----D---- C:\KVRT_Data
2017-05-30 10:28:36 ----D---- C:\ProgramData\AppData
2017-05-29 22:50:22 ----D---- C:\ProgramData\SWCUTemp
2017-05-29 21:20:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.TMP
2017-05-24 18:08:48 ----D---- C:\Users\lenovo\AppData\Roaming\Google
2017-05-10 19:09:44 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-05-10 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-05-10 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-05-10 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-05-10 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-05-10 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-05-10 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-10 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-05-10 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-05-10 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-05-10 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-05-10 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-05-10 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-05-10 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-05-10 19:09:36 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-05-10 19:09:35 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-05-10 19:09:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-05-10 19:09:34 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-05-10 19:09:33 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-05-10 19:09:33 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-05-10 19:09:32 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-05-10 19:09:32 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-05-10 19:09:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-05-10 19:09:30 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-05-10 19:09:30 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-05-10 19:09:30 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-05-10 19:09:29 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-05-10 19:09:29 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-05-10 19:09:29 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-05-10 19:09:29 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-05-10 19:09:28 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-05-10 19:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-05-10 19:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-05-10 19:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-05-10 19:09:27 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2017-05-10 19:09:26 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-05-10 19:09:25 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-05-10 19:09:24 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-05-10 19:09:23 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-05-10 19:09:22 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-05-10 19:09:21 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-05-10 19:09:20 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-05-10 19:09:20 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-05-10 19:09:20 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-05-10 19:09:20 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-05-10 19:09:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-05-10 19:09:19 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-05-10 19:09:19 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-05-10 19:09:19 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-05-10 19:09:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-05-10 19:09:18 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-05-10 19:09:18 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-05-10 19:09:18 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-05-10 19:09:16 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-05-10 19:09:15 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-05-10 19:09:15 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-05-10 19:09:15 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-05-10 19:09:15 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-05-10 19:09:14 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-05-10 19:09:14 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-05-10 19:09:14 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-05-10 19:09:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-05-10 19:09:13 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-05-10 19:09:12 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-05-10 19:09:12 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-05-10 19:09:11 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-05-10 19:09:11 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-05-10 19:09:10 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-05-10 19:09:10 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-05-10 19:09:09 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2017-05-10 19:09:09 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-05-10 19:09:08 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-05-10 19:09:08 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2017-05-10 19:09:08 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-05-10 19:09:08 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2017-05-10 19:09:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-05-10 19:09:07 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-05-10 19:09:07 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2017-05-10 19:09:07 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-05-10 19:09:06 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-05-10 19:09:06 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-05-10 19:09:06 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-05-10 19:09:06 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2017-05-10 19:09:05 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-05-10 19:09:05 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-05-10 19:09:05 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-05-10 19:09:05 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-05-10 19:09:04 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-05-10 19:09:04 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2017-05-10 19:09:04 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-10 19:09:04 ----A---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2017-05-10 19:09:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2017-05-10 19:09:03 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-05-10 19:09:03 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2017-05-10 19:09:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-05-10 19:09:02 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-05-10 19:09:02 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2017-05-10 19:09:01 ----A---- C:\WINDOWS\SYSWOW64\adsnt.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2017-05-10 19:09:00 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2017-05-10 19:08:59 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2017-05-10 19:08:59 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-05-10 19:08:59 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2017-05-10 19:08:59 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-05-10 19:08:58 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-05-10 19:08:57 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2017-05-10 19:08:56 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-05-10 19:08:55 ----A---- C:\WINDOWS\SYSWOW64\BthTelemetry.dll
2017-05-10 19:08:53 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-05-10 19:08:52 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-05-10 19:08:51 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-10 19:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-05-10 19:08:51 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-10 19:08:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-05-10 19:08:50 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-05-10 19:08:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-10 19:08:49 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-05-10 19:08:48 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-10 19:08:48 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-05-10 19:08:46 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-10 19:08:44 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-05-10 19:08:44 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-05-10 19:08:35 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 19:08:31 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 19:08:27 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 19:08:26 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 19:08:25 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-10 19:08:25 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 19:08:25 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-10 19:08:25 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-10 19:08:24 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-05-10 19:08:24 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-10 19:08:24 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-05-10 19:08:23 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-05-10 19:08:23 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-05-10 19:08:23 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-10 19:08:22 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-10 19:08:22 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-10 19:08:21 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-10 19:08:21 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-10 19:08:20 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-10 19:08:19 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-05-10 19:08:18 ----A---- C:\WINDOWS\system32\localspl.dll
2017-05-10 19:08:18 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-10 19:08:17 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-10 19:08:17 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-05-10 19:08:17 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-10 19:08:16 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-10 19:08:16 ----A---- C:\WINDOWS\system32\shell32.dll
2017-05-10 19:08:15 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 19:08:14 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-10 19:08:12 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-10 19:08:11 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-10 19:08:11 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-10 19:08:10 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-05-10 19:08:09 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-10 19:08:09 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-10 19:08:09 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-10 19:08:09 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-10 19:08:08 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 19:08:07 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-10 19:08:05 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 19:08:05 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\services.exe
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-10 19:08:04 ----A---- C:\WINDOWS\system32\mf.dll
2017-05-10 19:08:03 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-05-10 19:08:03 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-10 19:08:03 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-10 19:08:03 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-10 19:08:02 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-10 19:08:02 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-10 19:08:02 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-10 19:08:02 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-10 19:08:01 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-10 19:08:01 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-10 19:08:00 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-10 19:08:00 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-10 19:08:00 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-10 19:08:00 ----A---- C:\WINDOWS\system32\mfps.dll
2017-05-10 19:07:59 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-10 19:07:58 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-10 19:07:56 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-10 19:07:55 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-10 19:07:43 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-10 19:07:42 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-10 19:07:42 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2017-05-10 19:07:42 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-10 19:07:42 ----A---- C:\WINDOWS\system32\fvecpl.dll
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\wksprt.exe
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\rdpclip.exe
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-10 19:07:41 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-10 19:07:40 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-05-10 19:07:40 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-10 19:07:38 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-05-10 19:07:38 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-05-10 19:07:38 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-05-10 19:07:38 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 19:07:35 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-05-10 19:07:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-05-10 19:07:34 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-10 19:07:34 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-10 19:07:34 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 19:07:32 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-05-10 19:07:31 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-05-10 19:07:30 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-05-10 19:07:30 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-05-10 19:07:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-10 19:07:29 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-05-10 19:07:29 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-10 19:07:28 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-05-10 19:07:27 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-10 19:07:27 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-10 19:07:27 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-05-10 19:07:27 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-05-10 19:07:26 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-05-10 19:07:26 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 19:07:25 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-05-10 19:07:24 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-10 19:07:24 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-10 19:07:23 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 19:07:23 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-10 19:07:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-10 19:07:22 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-10 19:07:22 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-10 19:07:22 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-10 19:07:22 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-10 19:07:21 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 19:07:21 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-05-10 19:07:21 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-05-10 19:07:20 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 19:07:20 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-10 19:07:19 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 19:07:18 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 19:07:18 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-10 19:07:18 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 19:07:18 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-05-10 19:07:15 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-10 19:07:13 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-10 19:07:12 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-10 19:07:11 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-10 19:07:11 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-10 19:07:11 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-05-10 19:07:10 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-10 19:07:08 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-05-10 19:07:07 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-05-10 19:07:06 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-05-10 19:07:06 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 19:07:06 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-10 19:07:06 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-10 19:07:05 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-10 19:07:05 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-05-10 19:07:04 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-10 19:07:04 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-10 19:07:04 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-10 19:07:03 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-05-10 19:07:02 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-05-10 19:07:02 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-10 19:07:01 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-10 19:07:01 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-05-10 19:07:01 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-10 19:07:00 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-10 19:06:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-10 19:06:59 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-10 19:06:59 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-10 19:06:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-10 19:06:58 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-05-10 19:06:58 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-10 19:06:57 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-10 19:06:57 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-10 19:06:54 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-10 19:06:54 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-10 19:06:54 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-10 19:06:53 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-10 19:06:52 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-05-10 19:06:52 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-10 19:06:52 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-10 19:06:52 ----A---- C:\WINDOWS\system32\catsrvps.dll
2017-05-10 19:06:51 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-05-10 19:06:51 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-05-10 19:06:51 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-10 19:06:51 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2017-05-10 19:06:48 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-10 19:06:47 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-05-10 19:06:47 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-10 19:06:45 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 19:06:44 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-10 19:06:44 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-10 19:06:43 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-10 19:06:43 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-10 19:06:43 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-05-10 19:06:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 19:06:42 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-10 19:06:41 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-10 19:06:41 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-05-10 19:06:41 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 19:06:40 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-05-10 19:06:39 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-05-10 19:06:39 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-05-10 19:06:39 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-10 19:06:38 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-10 19:06:38 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-10 19:06:38 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-10 19:06:37 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-10 19:06:33 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-05-10 19:06:33 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-10 19:06:32 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-10 19:06:31 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-05-10 19:06:30 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-10 19:06:30 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-10 19:06:29 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-10 19:06:29 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 19:06:28 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-05-10 19:06:28 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 19:06:28 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-10 19:06:28 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-05-10 19:06:27 ----A---- C:\WINDOWS\explorer.exe
2017-05-10 19:06:25 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-10 19:06:25 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-10 19:06:25 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-05-10 19:06:24 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-10 19:06:24 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-10 19:06:23 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-10 19:06:22 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-05-10 19:06:22 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-10 19:06:22 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-10 19:06:22 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-10 19:06:21 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-05-10 19:06:21 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 19:06:21 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 19:06:21 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-10 19:06:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-10 19:06:20 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-05-10 19:06:20 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-10 19:06:20 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\resutils.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-10 19:06:19 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-10 19:06:18 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-05-10 19:06:18 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-10 19:06:18 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 19:06:17 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-10 19:06:17 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-05-10 19:06:16 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-10 19:06:16 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-10 19:06:16 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\spwizeng.dll
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-10 19:06:15 ----A---- C:\WINDOWS\system32\input.dll
2017-05-10 19:06:14 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-10 19:06:14 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-10 19:06:14 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-05-10 19:06:14 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 19:06:13 ----A---- C:\WINDOWS\system32\vds.exe
2017-05-10 19:06:13 ----A---- C:\WINDOWS\system32\cryptui.dll
2017-05-10 19:06:13 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-10 19:06:13 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-10 19:06:12 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-10 19:06:12 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-10 19:06:12 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-10 19:06:12 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-10 19:06:11 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-10 19:06:10 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-10 19:06:10 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-10 19:06:10 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-10 10:03:14 ----A---- C:\WINDOWS\system32\aswBoot.exe
====== List of files/folders modified in the last 1 month ======
2017-05-30 16:57:33 ----D---- C:\WINDOWS\Prefetch
2017-05-30 16:57:24 ----RD---- C:\Program Files
2017-05-30 16:57:15 ----D---- C:\WINDOWS\Temp
2017-05-30 16:45:15 ----D---- C:\Users\lenovo\AppData\Roaming\Skype
2017-05-30 16:07:08 ----D---- C:\WINDOWS\system32\sru
2017-05-30 16:07:01 ----D---- C:\WINDOWS\system32\SleepStudy
2017-05-30 10:29:13 ----D---- C:\WINDOWS\system32\drivers
2017-05-30 10:28:36 ----HD---- C:\ProgramData
2017-05-29 22:49:57 ----RD---- C:\WINDOWS\Microsoft.NET
2017-05-29 22:47:32 ----D---- C:\Windows
2017-05-29 22:37:04 ----D---- C:\WINDOWS\system32\wbem
2017-05-29 22:09:10 ----D---- C:\WINDOWS\registration
2017-05-29 21:59:22 ----SHD---- C:\System Volume Information
2017-05-29 21:57:45 ----D---- C:\WINDOWS\Logs
2017-05-29 21:52:38 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2017-05-29 21:33:16 ----D---- C:\WINDOWS\INF
2017-05-29 21:33:16 ----D---- C:\WINDOWS\debug
2017-05-29 21:28:34 ----D---- C:\WINDOWS\System32
2017-05-29 21:15:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-29 21:09:46 ----D---- C:\WINDOWS\system32\catroot2
2017-05-28 21:47:51 ----SD---- C:\Users\lenovo\AppData\Roaming\Microsoft
2017-05-27 20:47:55 ----D---- C:\WINDOWS\AppReadiness
2017-05-26 19:23:36 ----HD---- C:\Program Files\WindowsApps
2017-05-26 19:19:20 ----D---- C:\WINDOWS\system32\Tasks
2017-05-25 13:31:16 ----D---- C:\WINDOWS\system32\config
2017-05-24 21:14:13 ----D---- C:\WINDOWS\WinSxS
2017-05-24 18:38:33 ----D---- C:\WINDOWS\CbsTemp
2017-05-24 18:38:31 ----D---- C:\WINDOWS\system32\appraiser
2017-05-24 18:38:25 ----D---- C:\WINDOWS\system32\MRT
2017-05-24 18:32:40 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-24 18:08:46 ----D---- C:\ProgramData\Energy Manager
2017-05-12 20:24:10 ----D---- C:\WINDOWS\rescache
2017-05-12 16:40:20 ----RSD---- C:\WINDOWS\assembly
2017-05-11 20:42:30 ----D---- C:\WINDOWS\system32\DriverStore
2017-05-11 19:22:39 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-05-11 19:22:39 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-05-11 19:22:39 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-05-11 19:22:39 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2017-05-11 19:22:38 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-05-11 19:22:38 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-05-11 19:22:38 ----D---- C:\WINDOWS\SysWOW64
2017-05-11 19:22:34 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-05-11 19:22:34 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-05-11 19:22:32 ----SD---- C:\WINDOWS\system32\F12
2017-05-11 19:22:32 ----D---- C:\WINDOWS\system32\sk-SK
2017-05-11 19:22:32 ----D---- C:\WINDOWS\system32\oobe
2017-05-11 19:22:32 ----D---- C:\WINDOWS\system32\en-US
2017-05-11 19:22:26 ----D---- C:\WINDOWS\ShellExperiences
2017-05-11 19:22:26 ----D---- C:\WINDOWS\Provisioning
2017-05-11 19:22:26 ----D---- C:\WINDOWS\PolicyDefinitions
2017-05-11 19:22:25 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-05-11 19:22:25 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-05-11 19:22:25 ----D---- C:\Program Files (x86)\Windows Defender
2017-05-11 19:22:24 ----RD---- C:\Program Files\Windows Defender
2017-05-11 19:22:24 ----D---- C:\Program Files\Windows Photo Viewer
2017-05-11 18:05:48 ----SHD---- C:\WINDOWS\Installer
2017-05-11 18:05:47 ----D---- C:\ProgramData\Skype
2017-05-11 18:05:40 ----RD---- C:\Program Files (x86)\Skype
2017-05-11 18:05:40 ----D---- C:\Program Files (x86)\Common Files
2017-05-10 10:31:06 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2017-05-10 10:28:24 ----D---- C:\WINDOWS\system32\NDF
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-05-10 190256]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-05-10 334576]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-05-10 49016]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-05-10 75704]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-05-10 339696]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 MBI;@oem39.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\WINDOWS\System32\drivers\MBI.sys [2013-10-10 29464]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-05-10 311808]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-05-10 32600]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-05-10 101152]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-05-10 1007160]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-05-10 569192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-05-10 128648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-05-12 158880]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R3 ACPIVPC;@oem25.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-10-10 35576]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-09-03 114176]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2017-04-28 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-09-03 84992]
R3 CnxtHdAudService;@oem48.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-05-19 1543912]
R3 ETD;@oem12.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2016-09-21 602704]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [2016-09-21 41040]
R3 ibtusb;@oem44.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-01-13 231168]
R3 iwdbus;@oem40.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2016-07-16 3485696]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
R3 rt640x64;@oem22.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-22 886528]
R3 RTSUER;@oem35.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-03 410880]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2014-02-27 9109720]
R3 TXEIx64;@oem23.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\WINDOWS\System32\drivers\TXEIx64.sys [2014-01-15 88592]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-04-28 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-05-10 38296]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2017-04-28 967680]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2013-09-24 329944]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-05-10 263304]
R2 CDPUserSvc_29098;CDPUserSvc_29098; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2016-09-21 143584]
R2 ibtsiva;@oem44.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-09-24 328616]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2014-05-22 584960]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-10-10 198192]
R2 LUService;LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [2014-02-18 38896]
R2 OneSyncSvc_29098;Sync Host_29098; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [2014-10-10 288240]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 SAService;Conexant SmartAudio service; C:\WINDOWS\syswow64\SAsrv.exe [2011-09-01 447104]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-05-10 7346208]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-26 43696]
R3 PimIndexMaintenanceSvc_29098;Contact Data_29098; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-04-05 317400]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-06-03 533760]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-05-07 1663880]
S3 MessagingService_29098;MessagingService_29098; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [2014-10-10 305136]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
