VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivka

https://forum.viry.cz:443/viewtopic.php?t=152261

Stránka 1 z 2

Preventivka

Napsal: 02 čer 2017 12:39
od Chimaobim
Ahoj,

prosím o preventivní kontrolu a identifikaci případného crapware k odstranění.

Logfile of random's system information tool 1.16 (written by random/random)
Run by Bea at 2017-06-02 13:35:52
Microsoft Windows 8.1
System drive C: has 865 GB (96%) free of 904 GB
Total RAM: 8058 MB (82% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:35:52, on 2. 6. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\USB Camera2\VM332STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\WINDOWS\SysWOW64\RunDll32.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\trend micro\Bea_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKUS\S-1-5-21-3294375576-709941325-3428392197-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O4 - Global Startup: Bluetooth.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @oem9.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - C:\Program Files\mcafee\msc\McAWFwk.exe
O23 - Service: McAfee Boot Delay Start Service (McBootDelayStartSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee OOBE Service (McOobeSv) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: McAfee Module Core Service (ModuleCoreService) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel Security PEF Service (PEFService) - Intel Security, Inc. - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10093 bytes

====== Enumerating Processes ======

C:\WINDOWS\system32\wininit.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\dwm.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\WINDOWS\system32\CxAudMsg64.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
"C:\windows\system32\mfevtps.exe"
"C:\windows\system32\mfevtps.exe" -mms
"C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe"
C:\WINDOWS\SysWOW64\SAsrv.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0d8e944d-b522-44d2-8b38-539fbae69b42 -SystemEventPortName:HostProcess-fd9aa9e1-4227-4497-a43c-e54971c91d15 -IoCancelEventPortName:HostProcess-a7f1831c-edc4-4ff0-8ff8-933537646b9b -NonStateChangingEventPortName:HostProcess-c9763159-24ed-4746-b58c-7aa30d15161d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7ad4e91c-706b-4ff7-b0bf-dc6d07702f34 -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files\McAfee\MSC\McAPExe.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\taskhostex.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\USB Camera2\VM332STI.EXE"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /runkey
"C:\WINDOWS\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe" -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Bea\Desktop\RSITx64.exe"

====== Scheduled tasks folder ======

C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\McAfee Remediation (Prepare) - C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe /prepare
C:\WINDOWS\system32\tasks\McAfeeLogon - C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
C:\WINDOWS\system32\tasks\MirageAgent - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\WINDOWS\system32\tasks\OFFICE2010ACT - C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\SetupSQMTask - C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE
C:\WINDOWS\system32\tasks\Microsoft\Windows\WS\License Validation - rundll32.exe WSClient.dll,WSpTLR licensing
C:\WINDOWS\system32\tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask - rundll32.exe WSClient.dll,RefreshBannedAppsList
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent /increment
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Customer Feedback Program - "%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Solution Center Launcher - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
C:\WINDOWS\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\WINDOWS\system32\tasks\Lenovo\LSC\LSCHardwareScan - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\WINDOWS\system32\tasks\Lenovo\LSC\RebootCountTask - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -rebootcount
C:\WINDOWS\system32\tasks\Lenovo\LSC\Time72Task - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -canupdate

=========Mozilla firefox=========

ProfilePath - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default

prefs.js - "browser.search.suggest.enabled" - false

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL


C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\addons.json
New Tab Override (browser.newtab.url replacement) - extension - newtaboverride@agenedia.com
Pomocník skrývání prvků pro Adblock Plus - extension - elemhidehelper@adblockplus.org
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
BetterPrivacy-signed - extension - {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d}
Google Image Search - extension - {73007fef-a6e0-47d3-b4e7-dfc116ed6f65}
Firebug - extension - firebug@software.joehewitt.com
Greasemonkey - extension - {e4a8a97b-f2ed-450b-b12d-ee082ba24781}
Resurrect Pages - extension - {0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3}
Search by Image for Google - extension - {ab4b5718-3998-4a2c-91ae-18a7c2db513e}

C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions.json
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Shield Recipe Client - extension - shield-recipe-client@mozilla.org - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\features\{588e1af0-0215-41a8-997d-02e8fec21b5d}\shield-recipe-client@mozilla.org.xpi
New Tab Override (browser.newtab.url replacement) - extension - newtaboverride@agenedia.com - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\newtaboverride@agenedia.com.xpi
Element Hiding Helper for Adblock Plus - extension - elemhidehelper@adblockplus.org - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\elemhidehelper@adblockplus.org.xpi
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
BetterPrivacy - extension - {d40f5e7b-d2cf-4856-b441-cc613eeffbe3} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
Firebug - extension - firebug@software.joehewitt.com - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\firebug@software.joehewitt.com.xpi
Greasemonkey - extension - {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
Google Image Search - extension - {73007fef-a6e0-47d3-b4e7-dfc116ed6f65} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{73007fef-a6e0-47d3-b4e7-dfc116ed6f65}.xpi
Resurrect Pages - extension - {0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3}.xpi

C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\pluginreg.dat

======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={C4E61C37-7089-49BE-A539-C18722C5D7BD}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C4E61C37-7089-49BE-A539-C18722C5D7BD}]
"URL"=http://www.bing.com/search?q={searchTer ... &pc=MALNJS


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={C4E61C37-7089-49BE-A539-C18722C5D7BD}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{C4E61C37-7089-49BE-A539-C18722C5D7BD}]
"URL"=http://www.bing.com/search?q={searchTer ... &pc=MALNJS

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-08-08 2864016]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-02-23 1793736]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2010-11-03 1580368]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2015-08-27 395168]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-07-24 903384]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-10-20 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-10-20 191544]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"332BigDog"=C:\Program Files (x86)\USB Camera2\VM332STI.EXE [2012-03-20 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2016-10-19 852720]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfemms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2017-06-02 13:10:46 ----D---- C:\rsit
2017-06-02 13:10:46 ----D---- C:\Program Files\trend micro
2017-06-02 12:57:00 ----D---- C:\Program Files\Dolby Digital Plus
2017-06-02 12:55:28 ----A---- C:\WINDOWS\SYSWOW64\SASrv.exe
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\UCI64A40.DLL
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPA64.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\CX64BP04.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\CSpkExt64.dll
2017-06-02 12:54:00 ----D---- C:\Drivers
2017-06-02 09:57:59 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-01 20:59:11 ----D---- C:\Users\Bea\AppData\Roaming\Indigo Renderer
2017-06-01 20:42:38 ----D---- C:\My Web Sites
2017-06-01 19:42:15 ----D---- C:\AppsP
2017-06-01 19:07:12 ----D---- C:\Program Files\Chaotica
2017-06-01 17:19:23 ----D---- C:\WINDOWS\LastGood.Tmp
2017-06-01 13:23:54 ----SHD---- C:\Recovery
2017-06-01 13:23:37 ----DC---- C:\WINDOWS\Panther
2017-06-01 13:22:28 ----D---- C:\Windows.old
2017-06-01 13:18:09 ----D---- C:\Users\Bea\AppData\Roaming\Identities
2017-06-01 13:17:28 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-06-01 13:16:54 ----A---- C:\WINDOWS\system32\fhcpl.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-06-01 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-06-01 13:16:30 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasser.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasmxs.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasdiag.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rascfg.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\QSVRMGMT.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\QSHVHOST.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\eventcls.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\WSDMon.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\WSDApi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\vsstrace.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\vssapi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\vpnike.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasser.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasmxs.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasdiag.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rascfg.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\QSVRMGMT.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\QSHVHOST.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\eventcls.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\intelpep.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\splwow64.exe
2017-06-01 13:14:54 ----A---- C:\WINDOWS\system32\msra.exe
2017-06-01 13:14:27 ----A---- C:\WINDOWS\system32\poqexec.exe
2017-06-01 13:14:25 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2017-06-01 13:14:07 ----A---- C:\WINDOWS\SYSWOW64\dhcpsapi.dll
2017-06-01 13:14:07 ----A---- C:\WINDOWS\system32\dhcpsapi.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\system32\dbghelp.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-06-01 13:13:41 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2017-06-01 13:13:41 ----A---- C:\WINDOWS\system32\wscsvc.dll
2017-06-01 13:13:41 ----A---- C:\WINDOWS\system32\wscapi.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\qdvd.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfps.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\evr.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\devenum.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2017-06-01 13:12:56 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2017-06-01 13:12:56 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2017-06-01 13:12:46 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2017-06-01 13:12:46 ----A---- C:\WINDOWS\system32\notepad.exe
2017-06-01 13:12:46 ----A---- C:\WINDOWS\notepad.exe
2017-06-01 13:12:36 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2017-06-01 13:12:17 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-06-01 13:12:17 ----A---- C:\WINDOWS\system32\authz.dll
2017-06-01 13:12:07 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2017-06-01 13:12:07 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-06-01 13:11:57 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2017-06-01 13:11:43 ----A---- C:\WINDOWS\system32\SystemSettingsDatabase.dll
2017-06-01 13:11:43 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-06-01 13:11:43 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2017-06-01 13:11:26 ----A---- C:\WINDOWS\system32\seclogon.dll
2017-06-01 13:11:16 ----A---- C:\WINDOWS\system32\apphelp.dll
2017-06-01 13:10:48 ----A---- C:\WINDOWS\system32\drivers\sermouse.sys
2017-06-01 13:10:48 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2017-06-01 13:10:48 ----A---- C:\WINDOWS\system32\drivers\mouclass.sys
2017-06-01 13:10:48 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2017-06-01 13:10:48 ----A---- C:\WINDOWS\system32\drivers\kbdclass.sys
2017-06-01 13:10:48 ----A---- C:\WINDOWS\system32\drivers\i8042prt.sys
2017-06-01 13:10:26 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2017-06-01 13:10:26 ----A---- C:\WINDOWS\system32\webio.dll
2017-06-01 13:10:09 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2017-06-01 13:10:09 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\SYSWOW64\EncDec.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\SYSWOW64\cfgbkend.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\system32\EncDec.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\msobjs.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\winshfhc.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\wmploc.DLL
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\wmp.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\jscript.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\inseng.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieui.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\apisetschema.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\xolehlp.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\wmitomi.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\system32\dab.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuwebv.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wups2.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wups.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wucltux.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuapp.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\WinSCard.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\winresume.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\winload.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wininet.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\win32k.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\user32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\UIAnimation.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\shsetup.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\shell32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\SessEnv.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\rastapi.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\ntshrui.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\msrating.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\msctf.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\mscms.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\localspl.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\input.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\inetcomm.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\icm32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\hlink.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\gdi32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\vwifibus.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\consent.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\certprop.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\authui.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\atmlib.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\appinfo.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\adsmsext.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\HelpPane.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\UIAnimation.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\iscsiwmi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\iscsidsc.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\xolehlp.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wow64.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wmitomi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wisp.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wintrust.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wininit.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\samlib.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\quartz.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\pdh.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\ole32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\offreg.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\netlogon.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msobjs.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msiexec.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\mispace.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\iscsiwmi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\iscsiexe.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\iscsidsc.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\esent.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\serenum.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\parport.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\combase.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\certcli.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\bcrypt.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\adtschema.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2017-06-01 13:02:32 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2017-06-01 13:02:20 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-06-01 13:02:20 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\ws2_32.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\mswsock.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-06-01 13:01:50 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\system32\puiapi.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\system32\inetpp.dll
2017-06-01 13:01:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-06-01 13:01:40 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-06-01 13:01:30 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2017-06-01 13:01:03 ----D---- C:\Program Files\Windows Journal
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Šablony
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Plocha
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Nabídka Start
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Dokumenty
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Data aplikací
2017-06-01 12:58:24 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2017-06-01 12:50:13 ----A---- C:\WINDOWS\system32\WSShared.dll
2017-06-01 12:50:13 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-06-01 12:50:12 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2017-06-01 12:50:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-06-01 12:50:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-06-01 12:50:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-06-01 12:49:50 ----A---- C:\WINDOWS\system32\nlasvc.dll
2017-06-01 12:49:50 ----A---- C:\WINDOWS\system32\ncsi.dll
2017-06-01 12:49:46 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eapphost.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eappgnui.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eappcfg.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2017-06-01 12:49:29 ----A---- C:\WINDOWS\SYSWOW64\dsparse.dll
2017-06-01 12:49:29 ----A---- C:\WINDOWS\system32\dsparse.dll
2017-06-01 12:49:24 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2017-06-01 12:49:24 ----A---- C:\WINDOWS\system32\UtcResources.dll
2017-06-01 12:49:24 ----A---- C:\WINDOWS\system32\tdh.dll
2017-06-01 12:48:53 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2017-06-01 12:48:53 ----A---- C:\WINDOWS\system32\comctl32.dll
2017-06-01 12:48:49 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2017-06-01 12:48:49 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2017-06-01 12:48:41 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2017-06-01 12:48:41 ----A---- C:\WINDOWS\system32\clfsw32.dll
2017-06-01 12:48:36 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2017-06-01 12:48:33 ----A---- C:\WINDOWS\SYSWOW64\WinSync.dll
2017-06-01 12:48:33 ----A---- C:\WINDOWS\system32\WinSync.dll
2017-06-01 12:48:26 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-06-01 12:48:26 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-06-01 12:48:20 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2017-06-01 12:48:20 ----A---- C:\WINDOWS\system32\sspicli.dll
2017-06-01 12:48:20 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2017-06-01 12:48:08 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2017-06-01 12:48:04 ----A---- C:\WINDOWS\system32\drivers\bthpan.sys
2017-06-01 12:48:01 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2017-06-01 12:47:57 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-06-01 12:47:48 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2017-06-01 12:47:48 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2017-06-01 12:47:48 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-06-01 12:47:48 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-06-01 12:47:33 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2017-06-01 12:47:30 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-06-01 12:47:22 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2017-06-01 12:47:22 ----A---- C:\WINDOWS\system32\rsaenh.dll
2017-06-01 12:46:54 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2017-06-01 12:46:54 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2017-06-01 12:46:54 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2017-06-01 12:46:15 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2017-06-01 12:46:15 ----A---- C:\WINDOWS\system32\wpdshext.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\SYSWOW64\mfc42u.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\SYSWOW64\mfc42.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\system32\mfc42u.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\system32\mfc42.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-01 12:46:01 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2017-06-01 12:46:01 ----A---- C:\WINDOWS\system32\qedit.dll
2017-06-01 12:45:48 ----A---- C:\WINDOWS\system32\basesrv.dll
2017-06-01 12:45:39 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2017-06-01 12:45:36 ----A---- C:\WINDOWS\system32\NcdAutoSetup.dll
2017-06-01 12:45:32 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\twinui.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\themecpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\stobject.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingSync.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\hgcpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\explorer.exe
2017-06-01 12:44:52 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-06-01 12:44:52 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-06-01 12:44:45 ----A---- C:\WINDOWS\system32\lsm.dll
2017-06-01 12:44:40 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-06-01 12:44:33 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2017-06-01 12:44:30 ----A---- C:\WINDOWS\SYSWOW64\rgb9rast.dll
2017-06-01 12:44:27 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2017-06-01 12:44:27 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\schannel.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\ncrypt.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2017-06-01 12:44:02 ----A---- C:\WINDOWS\SYSWOW64\WMASF.DLL
2017-06-01 12:44:02 ----A---- C:\WINDOWS\system32\WMASF.DLL
2017-06-01 12:43:43 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2017-06-01 12:43:43 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\polstore.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\gpapi.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2017-06-01 12:43:17 ----A---- C:\WINDOWS\SYSWOW64\DeviceSetupStatusProvider.dll
2017-06-01 12:43:17 ----A---- C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2017-06-01 12:43:13 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-06-01 12:43:13 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\BFE.DLL
2017-06-01 12:43:06 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-06-01 12:43:06 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-06-01 12:43:06 ----A---- C:\WINDOWS\system32\csrsrv.dll
2017-06-01 12:42:55 ----A---- C:\WINDOWS\system32\compstui.dll
2017-06-01 12:42:50 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2017-06-01 12:42:50 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2017-06-01 12:42:47 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-06-01 12:42:47 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-06-01 12:42:43 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2017-06-01 12:42:39 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2017-06-01 12:42:36 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2017-06-01 12:42:36 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2017-06-01 12:42:36 ----A---- C:\WINDOWS\system32\comsvcs.dll
2017-06-01 12:42:36 ----A---- C:\WINDOWS\system32\catsrvut.dll
2017-06-01 12:42:27 ----A---- C:\WINDOWS\system32\services.exe
2017-06-01 12:42:24 ----A---- C:\WINDOWS\system32\wwanmm.dll
2017-06-01 12:42:24 ----A---- C:\WINDOWS\system32\wwanconn.dll
2017-06-01 12:42:24 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-06-01 12:42:21 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2017-06-01 12:42:21 ----A---- C:\WINDOWS\system32\netcfgx.dll
2017-06-01 12:42:16 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2017-06-01 12:42:16 ----A---- C:\WINDOWS\system32\advapi32.dll
2017-06-01 12:42:10 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2017-06-01 12:42:10 ----A---- C:\WINDOWS\system32\shacct.dll
2017-06-01 12:42:07 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-06-01 12:42:07 ----A---- C:\WINDOWS\system32\SRH.dll
2017-06-01 12:42:00 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\system32\taskeng.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\system32\schtasks.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\system32\schedsvc.dll
2017-06-01 12:41:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-06-01 12:41:56 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-06-01 12:41:53 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2017-06-01 12:41:53 ----A---- C:\WINDOWS\system32\calc.exe
2017-06-01 12:41:50 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2017-06-01 12:41:50 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2017-06-01 12:41:50 ----A---- C:\WINDOWS\system32\WebClnt.dll
2017-06-01 12:41:50 ----A---- C:\WINDOWS\system32\davclnt.dll
2017-06-01 12:41:43 ----A---- C:\WINDOWS\system32\wuaext.dll
2017-06-01 12:41:43 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2017-06-01 12:41:43 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-06-01 12:41:37 ----SD---- C:\Users\Bea\AppData\Roaming\Microsoft
2017-06-01 12:41:33 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-06-01 12:41:33 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-06-01 12:41:29 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2017-06-01 12:41:26 ----A---- C:\WINDOWS\system32\AuthHost.exe
2017-06-01 12:41:22 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2017-06-01 12:41:22 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2017-06-01 12:41:22 ----A---- C:\WINDOWS\system32\drivers\usbohci.sys
2017-06-01 12:41:22 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2017-06-01 12:41:22 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2017-06-01 12:41:22 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2017-06-01 12:41:19 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-06-01 12:41:19 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-06-01 12:41:13 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2017-06-01 12:41:11 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2017-06-01 12:41:11 ----A---- C:\WINDOWS\system32\pku2u.dll
2017-06-01 12:41:07 ----A---- C:\WINDOWS\system32\sysmain.dll
2017-06-01 12:41:07 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2017-06-01 12:40:58 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2017-06-01 12:40:58 ----A---- C:\WINDOWS\system32\InkEd.dll
2017-06-01 12:40:48 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-06-01 12:40:48 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-06-01 12:40:35 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2017-06-01 12:40:30 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2017-06-01 12:40:27 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2017-06-01 12:40:25 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-06-01 12:40:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-06-01 12:40:22 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2017-06-01 12:40:22 ----A---- C:\WINDOWS\system32\scesrv.dll
2017-06-01 12:40:19 ----A---- C:\WINDOWS\SYSWOW64\atlthunk.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\wow32.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\ntvdm64.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\instnm.exe
2017-06-01 12:40:10 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\system32\ntvdm64.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\system32\mtxoci.dll
2017-06-01 12:40:01 ----A---- C:\WINDOWS\system32\profsvc.dll
2017-06-01 12:39:55 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-06-01 12:39:55 ----A---- C:\WINDOWS\system32\mfds.dll
2017-06-01 12:39:40 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-06-01 12:39:37 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\tquery.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\mssph.dll
2017-06-01 12:39:32 ----A---- C:\WINDOWS\system32\mssvp.dll
2017-06-01 12:39:32 ----A---- C:\WINDOWS\system32\mssphtb.dll
2017-06-01 12:39:24 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2017-06-01 12:39:24 ----A---- C:\WINDOWS\system32\untfs.dll
2017-06-01 12:39:22 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2017-06-01 12:39:19 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-06-01 12:39:19 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2017-06-01 12:39:11 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2017-06-01 12:38:56 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2017-06-01 12:38:56 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2017-06-01 12:38:50 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-06-01 12:38:50 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-06-01 12:38:45 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2017-06-01 12:38:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-06-01 12:38:21 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-06-01 12:38:17 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-06-01 12:38:17 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-06-01 12:38:15 ----A---- C:\WINDOWS\SYSWOW64\photowiz.dll
2017-06-01 12:38:15 ----A---- C:\WINDOWS\system32\photowiz.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2017-06-01 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\wer.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\Faultrep.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\EncDump.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\ci.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-01 12:35:37 ----D---- C:\Program Files (x86)\Reference Assemblies
2017-06-01 12:35:37 ----D---- C:\Program Files (x86)\MSBuild
2017-06-01 12:35:36 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2017-06-01 12:35:35 ----D---- C:\Program Files\Reference Assemblies
2017-06-01 12:35:35 ----D---- C:\Program Files\MSBuild
2017-06-01 12:34:56 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2017-06-01 12:34:55 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2017-06-01 12:34:54 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2017-06-01 12:34:52 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-06-01 12:34:22 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2017-06-01 12:34:22 ----A---- C:\WINDOWS\system32\sdbinst.exe
2017-06-01 12:31:36 ----D---- C:\Program Files (x86)\USB Camera2
2017-06-01 12:31:11 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-06-01 12:30:29 ----D---- C:\ProgramData\NVIDIA Corporation
2017-06-01 12:30:20 ----D---- C:\Program Files\NVIDIA Corporation
2017-06-01 12:30:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-06-01 12:30:10 ----D---- C:\Program Files\CONEXANT
2017-06-01 12:30:00 ----D---- C:\Program Files (x86)\Intel
2017-06-01 12:29:59 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2017-06-01 12:29:59 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2017-06-01 12:29:00 ----D---- C:\Program Files\Elantech
2017-06-01 12:26:45 ----D---- C:\WINDOWS\Prefetch
2017-05-31 21:47:48 ----A---- C:\WINDOWS\system32\netcfg-20921343.txt
2017-05-31 16:50:48 ----D---- C:\ProgramData\Hewlett-Packard
2017-05-31 16:50:43 ----A---- C:\WINDOWS\system32\hpz3l4v2.dll
2017-05-31 16:44:20 ----D---- C:\ProgramData\HP
2017-05-31 16:43:57 ----D---- C:\Users\Bea\AppData\Roaming\HPPSDr
2017-05-31 16:00:31 ----A---- C:\WINDOWS\system32\netcfg-84046.txt
2017-05-31 15:14:14 ----A---- C:\WINDOWS\system32\netcfg-170796.txt
2017-05-31 15:14:13 ----A---- C:\WINDOWS\system32\netcfg-170562.txt
2017-05-31 15:14:12 ----A---- C:\WINDOWS\system32\netcfg-169703.txt
2017-05-31 15:10:57 ----A---- C:\WINDOWS\system32\netcfg-154987687.txt
2017-05-31 15:07:16 ----D---- C:\WINDOWS\Migration
2017-05-31 12:24:28 ----D---- C:\WINDOWS\system32\MRT
2017-05-31 12:24:07 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-31 11:03:52 ----A---- C:\WINDOWS\system32\netcfg-140162703.txt
2017-05-31 11:03:44 ----A---- C:\WINDOWS\system32\netcfg-140154515.txt
2017-05-30 12:55:47 ----A---- C:\WINDOWS\system32\netcfg-60484265.txt
2017-05-30 12:55:47 ----A---- C:\WINDOWS\system32\netcfg-60484171.txt
2017-05-30 12:55:42 ----A---- C:\WINDOWS\system32\netcfg-60479375.txt
2017-05-30 12:55:42 ----A---- C:\WINDOWS\system32\netcfg-60479312.txt
2017-05-30 10:22:49 ----A---- C:\WINDOWS\system32\netcfg-51305656.txt
2017-05-30 10:22:45 ----A---- C:\WINDOWS\system32\netcfg-51301453.txt
2017-05-30 06:33:11 ----D---- C:\Program Files\CCleaner
2017-05-30 06:07:44 ----D---- C:\ProgramData\Intel Security
2017-05-30 06:06:44 ----D---- C:\Program Files\Common Files\Intel Security
2017-05-30 06:03:55 ----D---- C:\Program Files\Common Files\AV
2017-05-30 05:46:21 ----D---- C:\Users\Bea\AppData\Roaming\Mozilla
2017-05-30 05:45:38 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-30 05:45:34 ----D---- C:\Program Files\Mozilla Firefox
2017-05-30 05:08:48 ----A---- C:\WINDOWS\system32\netcfg-68750.txt
2017-05-30 05:07:10 ----A---- C:\WINDOWS\system32\netcfg-2609187.txt
2017-05-30 05:04:14 ----A---- C:\WINDOWS\system32\drivers\HipShieldK.sys
2017-05-30 04:49:19 ----D---- C:\ProgramData\Lenovo
2017-05-30 04:34:46 ----D---- C:\Users\Bea\AppData\Roaming\LSC
2017-05-30 04:32:36 ----A---- C:\WINDOWS\system32\netcfg-535578.txt
2017-05-30 04:32:36 ----A---- C:\WINDOWS\system32\netcfg-535500.txt
2017-05-30 04:32:35 ----A---- C:\WINDOWS\system32\netcfg-533828.txt
2017-05-30 04:32:33 ----A---- C:\WINDOWS\system32\netcfg-532359.txt
2017-05-30 04:27:04 ----D---- C:\Users\Bea\AppData\Roaming\Lenovo
2017-05-30 04:26:21 ----D---- C:\Users\Bea\AppData\Roaming\Adobe
2017-05-30 04:25:05 ----D---- C:\Users\Bea\AppData\Roaming\Macromedia
2017-05-30 04:20:36 ----A---- C:\WINDOWS\system32\netcfg-254875.txt
2017-05-30 04:16:38 ----ASH---- C:\swapfile.sys
2017-05-30 04:16:36 ----ASH---- C:\pagefile.sys
2017-05-30 04:16:35 ----SHD---- C:\System Volume Information
2017-05-30 04:16:34 ----ASH---- C:\hiberfil.sys

====== List of files/folders modified in the last 1 month ======

2017-06-02 13:34:40 ----D---- C:\WINDOWS\Temp
2017-06-02 13:34:15 ----D---- C:\WINDOWS\SoftwareDistribution
2017-06-02 13:34:15 ----D---- C:\Windows
2017-06-02 13:29:01 ----D---- C:\WINDOWS\Inf
2017-06-02 13:28:56 ----D---- C:\WINDOWS\debug
2017-06-02 13:12:34 ----HD---- C:\Program Files\WindowsApps
2017-06-02 13:12:31 ----D---- C:\WINDOWS\AppReadiness
2017-06-02 13:10:46 ----RD---- C:\Program Files
2017-06-02 13:07:16 ----RD---- C:\WINDOWS\System32
2017-06-02 13:07:16 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-02 13:05:11 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2017-06-02 13:00:04 ----D---- C:\WINDOWS\system32\sru
2017-06-02 12:59:53 ----D---- C:\WINDOWS\SysWOW64
2017-06-02 12:57:01 ----SHD---- C:\WINDOWS\Installer
2017-06-02 12:56:49 ----RD---- C:\WINDOWS\assembly
2017-06-02 12:56:49 ----D---- C:\WINDOWS\Microsoft.NET
2017-06-02 12:54:33 ----D---- C:\WINDOWS\system32\drivers
2017-06-02 12:54:33 ----D---- C:\ProgramData\Conexant
2017-06-02 12:54:31 ----D---- C:\WINDOWS\system32\catroot
2017-06-02 12:54:28 ----D---- C:\WINDOWS\system32\DriverStore
2017-06-02 10:06:44 ----RD---- C:\Program Files (x86)
2017-06-02 09:59:30 ----D---- C:\WINDOWS\system32\wdi
2017-06-01 19:06:23 ----D---- C:\WINDOWS\system32\restore
2017-06-01 18:58:59 ----D---- C:\WINDOWS\system32\Macromed
2017-06-01 18:58:55 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-06-01 17:19:31 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-06-01 17:11:31 ----D---- C:\WINDOWS\system32\LogFiles
2017-06-01 14:01:30 ----D---- C:\WINDOWS\system32\config
2017-06-01 13:21:05 ----HD---- C:\$Windows.~BT
2017-06-01 13:19:10 ----SHD---- C:\$Recycle.Bin
2017-06-01 13:17:12 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-06-01 13:16:22 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-06-01 13:16:22 ----D---- C:\WINDOWS\system32\setup
2017-06-01 13:11:52 ----D---- C:\WINDOWS\system32\wbem
2017-06-01 13:11:23 ----D---- C:\WINDOWS\apppatch
2017-06-01 13:09:07 ----RD---- C:\WINDOWS\ToastData
2017-06-01 13:09:07 ----D---- C:\Program Files\Windows Defender
2017-06-01 13:09:07 ----D---- C:\Program Files\Internet Explorer
2017-06-01 13:09:07 ----D---- C:\Program Files (x86)\Windows Defender
2017-06-01 13:09:07 ----D---- C:\Program Files (x86)\Internet Explorer
2017-06-01 13:09:06 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-06-01 13:09:06 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\migration
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\Boot
2017-06-01 13:09:03 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-06-01 13:09:03 ----D---- C:\WINDOWS\PolicyDefinitions
2017-06-01 13:02:34 ----D---- C:\WINDOWS\rescache
2017-06-01 13:01:03 ----D---- C:\WINDOWS\WinStore
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\winrm
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\en
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\winrm
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\slmgr
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\migwiz
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\en
2017-06-01 13:01:03 ----D---- C:\WINDOWS\servicing
2017-06-01 13:01:03 ----D---- C:\WINDOWS\en-US
2017-06-01 13:01:03 ----D---- C:\Program Files\Windows Photo Viewer
2017-06-01 13:01:03 ----D---- C:\Program Files\Windows Mail
2017-06-01 13:01:03 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-06-01 13:01:03 ----D---- C:\Program Files (x86)\Windows Mail
2017-06-01 13:00:59 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-06-01 13:00:59 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2017-06-01 12:59:52 ----HD---- C:\ProgramData
2017-06-01 12:59:52 ----D---- C:\Program Files\Windows NT
2017-06-01 12:58:57 ----D---- C:\WINDOWS\Registration
2017-06-01 12:58:43 ----D---- C:\WINDOWS\system32\Tasks
2017-06-01 12:56:52 ----RSD---- C:\WINDOWS\Media
2017-06-01 12:55:37 ----D---- C:\WINDOWS\system32\catroot2
2017-06-01 12:50:36 ----D---- C:\WINDOWS\SYSWOW64\NV
2017-06-01 12:50:35 ----D---- C:\WINDOWS\system32\NV
2017-06-01 12:46:52 ----RSD---- C:\WINDOWS\Fonts
2017-06-01 12:46:31 ----D---- C:\WINDOWS\SYSWOW64\drivers
2017-06-01 12:46:31 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2017-06-01 12:46:31 ----D---- C:\WINDOWS\system32\Sysprep
2017-06-01 12:46:23 ----D---- C:\WINDOWS\WinSxS
2017-06-01 12:45:55 ----D---- C:\WINDOWS\SYSWOW64\WCN
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\SMI
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\sda
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\MUI
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2017-06-01 12:45:52 ----D---- C:\WINDOWS\SYSWOW64\IME
2017-06-01 12:45:52 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-06-01 12:45:52 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2017-06-01 12:45:52 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-06-01 12:45:51 ----D---- C:\WINDOWS\SYSWOW64\catroot
2017-06-01 12:45:49 ----D---- C:\WINDOWS\system32\WCN
2017-06-01 12:45:49 ----D---- C:\WINDOWS\system32\spool
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\oobe
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\MUI
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\IME
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\en-US
2017-06-01 12:45:45 ----D---- C:\WINDOWS\system32\cs-CZ
2017-06-01 12:43:44 ----D---- C:\WINDOWS\Help
2017-06-01 12:43:44 ----D---- C:\WINDOWS\DigitalLocker
2017-06-01 12:43:43 ----SD---- C:\ProgramData\Microsoft
2017-06-01 12:43:43 ----RD---- C:\Users
2017-06-01 12:43:43 ----D---- C:\ProgramData\PRICache
2017-06-01 12:43:40 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2017-06-01 12:43:40 ----D---- C:\Program Files (x86)\Windows Media Player
2017-06-01 12:43:37 ----D---- C:\Program Files (x86)\Common Files
2017-06-01 12:43:36 ----SHD---- C:\Program Files\Windows Sidebar
2017-06-01 12:43:36 ----D---- C:\Program Files\Windows Media Player
2017-06-01 12:43:33 ----D---- C:\Program Files\Common Files\microsoft shared
2017-06-01 12:43:33 ----D---- C:\Program Files\Common Files
2017-06-01 12:42:55 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2017-06-01 12:42:23 ----D---- C:\WINDOWS\system32\Recovery
2017-06-01 12:38:24 ----D---- C:\WINDOWS\Logs
2017-06-01 12:38:14 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2017-06-01 12:31:36 ----D---- C:\WINDOWS\twain_32
2017-06-01 12:31:36 ----D---- C:\WINDOWS\System
2017-06-01 10:46:58 ----D---- C:\WINDOWS\AUInstallAgent
2017-06-01 10:07:44 ----D---- C:\WINDOWS\CbsTemp
2017-05-31 16:00:22 ----D---- C:\Program Files (x86)\McAfee
2017-05-31 12:22:17 ----D---- C:\ProgramData\NVIDIA
2017-05-31 11:08:04 ----D---- C:\ProgramData\McAfee
2017-05-30 06:30:08 ----D---- C:\WINDOWS\Downloaded Installations
2017-05-30 06:12:11 ----D---- C:\Program Files\Common Files\mcafee
2017-05-30 06:11:39 ----HD---- C:\WINDOWS\ELAMBKUP
2017-05-30 05:03:11 ----D---- C:\Program Files (x86)\Amazon
2017-05-30 04:49:08 ----D---- C:\Program Files\Lenovo

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

Re: Preventivka

Napsal: 02 čer 2017 12:40
od Chimaobim
A zbytek logu...




====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-10-20 39008]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2016-08-02 843048]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2016-08-02 243496]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-02-23 31560]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2017-06-01 71680]
R3 ACPIVPC;@oem11.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-10-20 33560]
R3 bcbtums;@oem9.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2012-08-26 164152]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-11-21 81920]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2016-08-02 78632]
R3 CnxtHdAudService;@oem33.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-07-10 1299648]
R3 ETD;@oem3.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-08-07 311632]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-08-27 3797424]
R3 IntcDAud;@oem30.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem32.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem19.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 mfeaack;McAfee Inc. mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [2016-08-02 419624]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2016-08-02 349480]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2016-08-02 493352]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2016-08-01 519456]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-02-23 13045960]
R3 vm332avs;@oem10.inf,%USBCamera.DeviceDesc2%;Lenovo Camera2; C:\WINDOWS\System32\Drivers\vm332avs.sys [2012-08-25 981112]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2017-06-01 38912]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2016-08-02 83608]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2014-11-21 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-11-21 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2017-06-01 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2017-06-01 1201664]
S3 dot4;@oem15.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem18.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2015-03-23 21928]
S3 dot4usb;@oem15.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2016-08-02 216704]
S3 intaud_WaveExtensible;@oem31.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2016-08-01 100136]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2017-06-01 167424]
S3 RSUSBVSTOR;@oem23.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 BcmBtRSupport;@oem9.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service; C:\WINDOWS\system32\BtwRSupportService.exe [2012-08-26 2252600]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2012-08-27 953720]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-08-27 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2016-10-19 993824]
R2 McBootDelayStartSvc;McAfee Boot Delay Start Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [2016-05-31 1910000]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [2016-08-02 382456]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2016-04-26 277744]
R2 ModuleCoreService;McAfee Module Core Service; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [2016-09-13 1454216]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-02-04 934216]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-07-31 1258856]
R2 PEFService;Intel Security PEF Service; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2016-05-25 1045336]
R2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2016-04-26 232688]
S2 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-05-11 200728]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation;"ServiceDll" = %SystemRoot%\System32\BthHFSrv.dll
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-08-27 291744]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2017-02-14 273216]
S3 McAWFwk;McAfee Activation Service; C:\Program Files\mcafee\msc\McAWFwk.exe [2012-01-26 332080]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2016-06-21 816128]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-05-18 191944]
S3 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]

-----------------EOF-----------------

Re: Preventivka

Napsal: 02 čer 2017 13:04
od Chimaobim
Smažu windows.old ... mám pak dát nové logy? Nebo to nebude mít vliv?

Re: Preventivka

Napsal: 03 čer 2017 12:09
od Rudy
Zdravím!
Pokud zadáte dotaz a budete si na něj sám odpovídat, snadno vás přehlédneme. Neotevíráme thready, které již mají odpovědi, to bychom neudělali nic.

K věci: Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Preventivka

Napsal: 03 čer 2017 17:26
od Chimaobim
Děkuju za upozornění.

Log:

# AdwCleaner v6.047 - Log vytvořen 03/06/2017 v 18:21:14
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-02.2 [Server]
# Operační systém : Windows 8.1 (X64)
# Uživatelské jméno : Bea - BEATA
# Spuštěno z : C:\Users\Bea\Desktop\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Složky ] *****

[-] Složka smazána: C:\Program Files (x86)\Amazon\ABB


***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****



***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [838 Bajty] - [03/06/2017 18:21:14]
C:\AdwCleaner\AdwCleaner[S0].txt - [1359 Bajty] - [03/06/2017 18:20:57]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [983 Bajty] ##########

Re: Preventivka

Napsal: 03 čer 2017 18:02
od Rudy
Dejte nový log RSIT.

Re: Preventivka

Napsal: 03 čer 2017 18:21
od Chimaobim
Logfile of random's system information tool 1.16 (written by random/random)
Run by Bea at 2017-06-03 19:19:59
Microsoft Windows 8.1
System drive C: has 872 GB (96%) free of 904 GB
Total RAM: 8058 MB (67% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:20:01, on 3. 6. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\USB Camera2\VM332STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\WINDOWS\SysWOW64\RunDll32.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\trend micro\Bea_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKUS\S-1-5-21-3294375576-709941325-3428392197-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O4 - Global Startup: Bluetooth.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @oem9.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - C:\Program Files\mcafee\msc\McAWFwk.exe
O23 - Service: McAfee Boot Delay Start Service (McBootDelayStartSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee OOBE Service (McOobeSv) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: McAfee Module Core Service (ModuleCoreService) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel Security PEF Service (PEFService) - Intel Security, Inc. - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10093 bytes

====== Enumerating Processes ======

C:\WINDOWS\system32\wininit.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\dwm.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\WINDOWS\system32\CxAudMsg64.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
"C:\windows\system32\mfevtps.exe"
"C:\windows\system32\mfevtps.exe" -mms
"C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe"
C:\WINDOWS\SysWOW64\SAsrv.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4d1d9683-82bc-4a94-8b17-a28774779d88 -SystemEventPortName:HostProcess-befa9871-05c5-40a0-9ec4-a77c5d8278f0 -IoCancelEventPortName:HostProcess-705f4a97-393a-4bb8-b0ef-21c4ac131338 -NonStateChangingEventPortName:HostProcess-8fc5600d-777e-4311-af1c-30fd062175a3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c8b29388-dcb5-4fd9-b3d5-dc919b1c91e4 -DeviceGroupId:WudfDefaultDevicePool
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
"C:\Program Files\McAfee\MSC\McAPExe.exe"
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
C:\WINDOWS\system32\taskhostex.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\USB Camera2\VM332STI.EXE"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /runkey
"C:\WINDOWS\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Mozilla Firefox\firefox.exe"
"C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe" -Embedding
"C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe" -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Bea\Desktop\RSITx64.exe"

====== Scheduled tasks folder ======

C:\WINDOWS\system32\tasks\McAfee Remediation (Prepare) - C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe /prepare
C:\WINDOWS\system32\tasks\McAfeeLogon - C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
C:\WINDOWS\system32\tasks\MirageAgent - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\WINDOWS\system32\tasks\OFFICE2010ACT - C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\SetupSQMTask - C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE
C:\WINDOWS\system32\tasks\Microsoft\Windows\WS\License Validation - rundll32.exe WSClient.dll,WSpTLR licensing
C:\WINDOWS\system32\tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask - rundll32.exe WSClient.dll,RefreshBannedAppsList
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent /increment
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Customer Feedback Program - "%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Solution Center Launcher - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
C:\WINDOWS\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\WINDOWS\system32\tasks\Lenovo\LSC\LSCHardwareScan - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\WINDOWS\system32\tasks\Lenovo\LSC\RebootCountTask - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -rebootcount
C:\WINDOWS\system32\tasks\Lenovo\LSC\Time72Task - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -canupdate

=========Mozilla firefox=========

ProfilePath - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default

prefs.js - "browser.search.suggest.enabled" - false

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL


C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\addons.json
Pomocník skrývání prvků pro Adblock Plus - extension - elemhidehelper@adblockplus.org
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
BetterPrivacy-signed - extension - {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}
New Tab Override (browser.newtab.url replacement) - extension - newtaboverride@agenedia.com
Google Image Search - extension - {73007fef-a6e0-47d3-b4e7-dfc116ed6f65}
Resurrect Pages - extension - {0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3}
Firebug - extension - firebug@software.joehewitt.com
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d}
Greasemonkey - extension - {e4a8a97b-f2ed-450b-b12d-ee082ba24781}

C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions.json
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Shield Recipe Client - extension - shield-recipe-client@mozilla.org - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\features\{588e1af0-0215-41a8-997d-02e8fec21b5d}\shield-recipe-client@mozilla.org.xpi
New Tab Override (browser.newtab.url replacement) - extension - newtaboverride@agenedia.com - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\newtaboverride@agenedia.com.xpi
Element Hiding Helper for Adblock Plus - extension - elemhidehelper@adblockplus.org - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\elemhidehelper@adblockplus.org.xpi
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
BetterPrivacy - extension - {d40f5e7b-d2cf-4856-b441-cc613eeffbe3} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
Firebug - extension - firebug@software.joehewitt.com - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\firebug@software.joehewitt.com.xpi
Greasemonkey - extension - {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
Google Image Search - extension - {73007fef-a6e0-47d3-b4e7-dfc116ed6f65} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{73007fef-a6e0-47d3-b4e7-dfc116ed6f65}.xpi
Resurrect Pages - extension - {0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3}.xpi

C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\pluginreg.dat

======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={C4E61C37-7089-49BE-A539-C18722C5D7BD}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C4E61C37-7089-49BE-A539-C18722C5D7BD}]
"URL"=http://www.bing.com/search?q={searchTer ... &pc=MALNJS


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={C4E61C37-7089-49BE-A539-C18722C5D7BD}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{C4E61C37-7089-49BE-A539-C18722C5D7BD}]
"URL"=http://www.bing.com/search?q={searchTer ... &pc=MALNJS

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-08-08 2864016]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-02-23 1793736]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2010-11-03 1580368]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2015-08-27 395168]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-07-24 903384]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-10-20 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-10-20 191544]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"332BigDog"=C:\Program Files (x86)\USB Camera2\VM332STI.EXE [2012-03-20 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2016-10-19 852720]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfemms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2017-06-03 18:37:29 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2017-06-03 18:37:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2017-06-03 18:37:09 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2017-06-03 18:37:09 ----A---- C:\WINDOWS\system32\poqexec.exe
2017-06-03 18:37:08 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-06-03 18:37:08 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-06-03 18:37:08 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-06-03 18:37:05 ----A---- C:\WINDOWS\system32\tzsync.exe
2017-06-03 18:19:00 ----D---- C:\AdwCleaner
2017-06-02 13:10:46 ----D---- C:\rsit
2017-06-02 13:10:46 ----D---- C:\Program Files\trend micro
2017-06-02 12:57:00 ----D---- C:\Program Files\Dolby Digital Plus
2017-06-02 12:55:28 ----A---- C:\WINDOWS\SYSWOW64\SASrv.exe
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\UCI64A40.DLL
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPA64.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\CX64BP04.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\CSpkExt64.dll
2017-06-02 12:54:00 ----D---- C:\Drivers
2017-06-02 09:57:59 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-01 20:59:11 ----D---- C:\Users\Bea\AppData\Roaming\Indigo Renderer
2017-06-01 20:42:38 ----D---- C:\My Web Sites
2017-06-01 19:42:15 ----D---- C:\AppsP
2017-06-01 19:07:12 ----D---- C:\Program Files\Chaotica
2017-06-01 13:23:54 ----SHD---- C:\Recovery
2017-06-01 13:23:37 ----DC---- C:\WINDOWS\Panther
2017-06-01 13:18:09 ----D---- C:\Users\Bea\AppData\Roaming\Identities
2017-06-01 13:17:28 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-06-01 13:16:54 ----A---- C:\WINDOWS\system32\fhcpl.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-06-01 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-06-01 13:16:30 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-06-01 13:16:01 ----AC---- C:\WINDOWS\system32\drivers\intelpep.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasser.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasmxs.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasdiag.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rascfg.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\QSVRMGMT.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\QSHVHOST.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\eventcls.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\WSDMon.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\WSDApi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\vsstrace.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\vssapi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\vpnike.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasser.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasmxs.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasdiag.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rascfg.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\QSVRMGMT.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\QSHVHOST.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\eventcls.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\splwow64.exe
2017-06-01 13:14:54 ----A---- C:\WINDOWS\system32\msra.exe
2017-06-01 13:14:07 ----A---- C:\WINDOWS\SYSWOW64\dhcpsapi.dll
2017-06-01 13:14:07 ----A---- C:\WINDOWS\system32\dhcpsapi.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\system32\dbghelp.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-06-01 13:13:41 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2017-06-01 13:13:41 ----A---- C:\WINDOWS\system32\wscsvc.dll
2017-06-01 13:13:41 ----A---- C:\WINDOWS\system32\wscapi.dll
2017-06-01 13:13:27 ----AC---- C:\WINDOWS\system32\SysFxUI.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\qdvd.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfps.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\evr.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\devenum.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2017-06-01 13:12:56 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2017-06-01 13:12:56 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2017-06-01 13:12:46 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2017-06-01 13:12:46 ----A---- C:\WINDOWS\system32\notepad.exe
2017-06-01 13:12:46 ----A---- C:\WINDOWS\notepad.exe
2017-06-01 13:12:36 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2017-06-01 13:12:17 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-06-01 13:12:17 ----A---- C:\WINDOWS\system32\authz.dll
2017-06-01 13:12:07 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2017-06-01 13:12:07 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-06-01 13:11:57 ----AC---- C:\WINDOWS\system32\drivers\disk.sys
2017-06-01 13:11:43 ----A---- C:\WINDOWS\system32\SystemSettingsDatabase.dll
2017-06-01 13:11:43 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-06-01 13:11:43 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2017-06-01 13:11:26 ----A---- C:\WINDOWS\system32\seclogon.dll
2017-06-01 13:11:16 ----A---- C:\WINDOWS\system32\apphelp.dll
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\sermouse.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\mouhid.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\mouclass.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\kbdhid.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\kbdclass.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\i8042prt.sys
2017-06-01 13:10:26 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2017-06-01 13:10:26 ----A---- C:\WINDOWS\system32\webio.dll
2017-06-01 13:10:09 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2017-06-01 13:10:09 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\SYSWOW64\EncDec.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\SYSWOW64\cfgbkend.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\system32\EncDec.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\msobjs.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\winshfhc.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\wmploc.DLL
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\wmp.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\jscript.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\inseng.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieui.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\apisetschema.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\xolehlp.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\wmitomi.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\system32\dab.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuwebv.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wups2.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wups.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wucltux.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuapp.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\WinSCard.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\winresume.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\winload.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wininet.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\win32k.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\user32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\UIAnimation.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\shsetup.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\shell32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\SessEnv.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\rastapi.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\ntshrui.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\msrating.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\msctf.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\mscms.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\localspl.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\input.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\inetcomm.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\icm32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\hlink.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\gdi32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\vwifibus.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\consent.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\certprop.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\authui.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\atmlib.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\appinfo.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\adsmsext.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\HelpPane.exe
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\stornvme.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\serial.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\serenum.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\parport.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\UIAnimation.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\iscsiwmi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\iscsidsc.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\xolehlp.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wow64.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wmitomi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wisp.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wintrust.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wininit.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\samlib.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\quartz.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\pdh.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\ole32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\offreg.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\netlogon.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msobjs.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msiexec.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\mispace.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\iscsiwmi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\iscsiexe.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\iscsidsc.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\esent.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\combase.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\certcli.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\bcrypt.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\adtschema.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2017-06-01 13:02:32 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2017-06-01 13:02:20 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-06-01 13:02:20 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\ws2_32.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\mswsock.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-06-01 13:01:50 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\system32\puiapi.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\system32\inetpp.dll
2017-06-01 13:01:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-06-01 13:01:40 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-06-01 13:01:30 ----AC---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2017-06-01 13:01:03 ----D---- C:\Program Files\Windows Journal
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Šablony
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Plocha
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Nabídka Start
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Dokumenty
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Data aplikací
2017-06-01 12:58:24 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2017-06-01 12:50:13 ----A---- C:\WINDOWS\system32\WSShared.dll
2017-06-01 12:50:13 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-06-01 12:50:12 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2017-06-01 12:50:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-06-01 12:50:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-06-01 12:50:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-06-01 12:49:50 ----A---- C:\WINDOWS\system32\nlasvc.dll
2017-06-01 12:49:50 ----A---- C:\WINDOWS\system32\ncsi.dll
2017-06-01 12:49:46 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eapphost.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eappgnui.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eappcfg.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2017-06-01 12:49:29 ----A---- C:\WINDOWS\SYSWOW64\dsparse.dll
2017-06-01 12:49:29 ----A---- C:\WINDOWS\system32\dsparse.dll
2017-06-01 12:49:24 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2017-06-01 12:49:24 ----A---- C:\WINDOWS\system32\UtcResources.dll
2017-06-01 12:49:24 ----A---- C:\WINDOWS\system32\tdh.dll
2017-06-01 12:48:53 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2017-06-01 12:48:53 ----A---- C:\WINDOWS\system32\comctl32.dll
2017-06-01 12:48:49 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2017-06-01 12:48:49 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2017-06-01 12:48:41 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2017-06-01 12:48:41 ----A---- C:\WINDOWS\system32\clfsw32.dll
2017-06-01 12:48:36 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2017-06-01 12:48:33 ----A---- C:\WINDOWS\SYSWOW64\WinSync.dll
2017-06-01 12:48:33 ----A---- C:\WINDOWS\system32\WinSync.dll
2017-06-01 12:48:26 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-06-01 12:48:26 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-06-01 12:48:20 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2017-06-01 12:48:20 ----A---- C:\WINDOWS\system32\sspicli.dll
2017-06-01 12:48:20 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2017-06-01 12:48:08 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2017-06-01 12:48:04 ----AC---- C:\WINDOWS\system32\drivers\bthpan.sys
2017-06-01 12:48:01 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2017-06-01 12:47:57 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-06-01 12:47:48 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2017-06-01 12:47:48 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2017-06-01 12:47:48 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-06-01 12:47:48 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-06-01 12:47:33 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2017-06-01 12:47:30 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-06-01 12:47:22 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2017-06-01 12:47:22 ----A---- C:\WINDOWS\system32\rsaenh.dll
2017-06-01 12:46:54 ----AC---- C:\WINDOWS\system32\drivers\rfcomm.sys
2017-06-01 12:46:54 ----AC---- C:\WINDOWS\system32\drivers\hidbth.sys
2017-06-01 12:46:54 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2017-06-01 12:46:15 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2017-06-01 12:46:15 ----A---- C:\WINDOWS\system32\wpdshext.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\SYSWOW64\mfc42u.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\SYSWOW64\mfc42.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\system32\mfc42u.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\system32\mfc42.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-01 12:46:01 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2017-06-01 12:46:01 ----A---- C:\WINDOWS\system32\qedit.dll
2017-06-01 12:45:48 ----A---- C:\WINDOWS\system32\basesrv.dll
2017-06-01 12:45:39 ----AC---- C:\WINDOWS\system32\drivers\tpm.sys
2017-06-01 12:45:36 ----A---- C:\WINDOWS\system32\NcdAutoSetup.dll
2017-06-01 12:45:32 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\twinui.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\themecpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\stobject.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingSync.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\hgcpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\explorer.exe
2017-06-01 12:44:52 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-06-01 12:44:52 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-06-01 12:44:45 ----A---- C:\WINDOWS\system32\lsm.dll
2017-06-01 12:44:40 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-06-01 12:44:33 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2017-06-01 12:44:30 ----A---- C:\WINDOWS\SYSWOW64\rgb9rast.dll
2017-06-01 12:44:27 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2017-06-01 12:44:27 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\schannel.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\ncrypt.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2017-06-01 12:44:02 ----A---- C:\WINDOWS\SYSWOW64\WMASF.DLL
2017-06-01 12:44:02 ----A---- C:\WINDOWS\system32\WMASF.DLL
2017-06-01 12:43:43 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2017-06-01 12:43:43 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\polstore.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\gpapi.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2017-06-01 12:43:17 ----A---- C:\WINDOWS\SYSWOW64\DeviceSetupStatusProvider.dll
2017-06-01 12:43:17 ----A---- C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2017-06-01 12:43:13 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-06-01 12:43:13 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\BFE.DLL
2017-06-01 12:43:06 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-06-01 12:43:06 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-06-01 12:43:06 ----A---- C:\WINDOWS\system32\csrsrv.dll
2017-06-01 12:42:55 ----A---- C:\WINDOWS\system32\compstui.dll
2017-06-01 12:42:50 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2017-06-01 12:42:50 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2017-06-01 12:42:47 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-06-01 12:42:47 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-06-01 12:42:43 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2017-06-01 12:42:39 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2017-06-01 12:42:36 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2017-06-01 12:42:36 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2017-06-01 12:42:36 ----A---- C:\WINDOWS\system32\comsvcs.dll
2017-06-01 12:42:36 ----A---- C:\WINDOWS\system32\catsrvut.dll
2017-06-01 12:42:27 ----A---- C:\WINDOWS\system32\services.exe
2017-06-01 12:42:24 ----A---- C:\WINDOWS\system32\wwanmm.dll
2017-06-01 12:42:24 ----A---- C:\WINDOWS\system32\wwanconn.dll
2017-06-01 12:42:24 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-06-01 12:42:21 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2017-06-01 12:42:21 ----A---- C:\WINDOWS\system32\netcfgx.dll
2017-06-01 12:42:16 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2017-06-01 12:42:16 ----A---- C:\WINDOWS\system32\advapi32.dll
2017-06-01 12:42:10 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2017-06-01 12:42:10 ----A---- C:\WINDOWS\system32\shacct.dll
2017-06-01 12:42:07 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-06-01 12:42:07 ----A---- C:\WINDOWS\system32\SRH.dll
2017-06-01 12:42:00 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\system32\taskeng.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\system32\schtasks.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\system32\schedsvc.dll
2017-06-01 12:41:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-06-01 12:41:56 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-06-01 12:41:53 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2017-06-01 12:41:53 ----A---- C:\WINDOWS\system32\calc.exe
2017-06-01 12:41:50 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2017-06-01 12:41:50 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2017-06-01 12:41:50 ----A---- C:\WINDOWS\system32\WebClnt.dll
2017-06-01 12:41:50 ----A---- C:\WINDOWS\system32\davclnt.dll
2017-06-01 12:41:43 ----A---- C:\WINDOWS\system32\wuaext.dll
2017-06-01 12:41:43 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2017-06-01 12:41:43 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-06-01 12:41:37 ----SD---- C:\Users\Bea\AppData\Roaming\Microsoft
2017-06-01 12:41:33 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-06-01 12:41:33 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-06-01 12:41:29 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2017-06-01 12:41:26 ----A---- C:\WINDOWS\system32\AuthHost.exe
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbuhci.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbohci.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbehci.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbd.sys
2017-06-01 12:41:19 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-06-01 12:41:19 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-06-01 12:41:13 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2017-06-01 12:41:11 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2017-06-01 12:41:11 ----A---- C:\WINDOWS\system32\pku2u.dll
2017-06-01 12:41:07 ----A---- C:\WINDOWS\system32\sysmain.dll
2017-06-01 12:41:07 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2017-06-01 12:40:58 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2017-06-01 12:40:58 ----A---- C:\WINDOWS\system32\InkEd.dll
2017-06-01 12:40:48 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-06-01 12:40:48 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-06-01 12:40:35 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2017-06-01 12:40:30 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2017-06-01 12:40:27 ----AC---- C:\WINDOWS\system32\drivers\volmgr.sys
2017-06-01 12:40:25 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-06-01 12:40:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-06-01 12:40:22 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2017-06-01 12:40:22 ----A---- C:\WINDOWS\system32\scesrv.dll
2017-06-01 12:40:19 ----A---- C:\WINDOWS\SYSWOW64\atlthunk.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\wow32.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\ntvdm64.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\instnm.exe
2017-06-01 12:40:10 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\system32\ntvdm64.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\system32\mtxoci.dll
2017-06-01 12:40:01 ----A---- C:\WINDOWS\system32\profsvc.dll
2017-06-01 12:39:55 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-06-01 12:39:55 ----A---- C:\WINDOWS\system32\mfds.dll
2017-06-01 12:39:40 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-06-01 12:39:37 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\tquery.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\mssph.dll
2017-06-01 12:39:32 ----A---- C:\WINDOWS\system32\mssvp.dll
2017-06-01 12:39:32 ----A---- C:\WINDOWS\system32\mssphtb.dll
2017-06-01 12:39:24 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2017-06-01 12:39:24 ----A---- C:\WINDOWS\system32\untfs.dll
2017-06-01 12:39:22 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2017-06-01 12:39:19 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-06-01 12:39:19 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2017-06-01 12:39:11 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2017-06-01 12:38:56 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2017-06-01 12:38:56 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2017-06-01 12:38:50 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-06-01 12:38:50 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-06-01 12:38:45 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2017-06-01 12:38:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-06-01 12:38:21 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-06-01 12:38:17 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-06-01 12:38:17 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-06-01 12:38:15 ----A---- C:\WINDOWS\SYSWOW64\photowiz.dll
2017-06-01 12:38:15 ----A---- C:\WINDOWS\system32\photowiz.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2017-06-01 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\wer.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\Faultrep.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\EncDump.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\ci.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-01 12:35:37 ----D---- C:\Program Files (x86)\Reference Assemblies
2017-06-01 12:35:37 ----D---- C:\Program Files (x86)\MSBuild
2017-06-01 12:35:36 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2017-06-01 12:35:35 ----D---- C:\Program Files\Reference Assemblies
2017-06-01 12:35:35 ----D---- C:\Program Files\MSBuild
2017-06-01 12:34:55 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2017-06-01 12:34:52 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-06-01 12:34:22 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2017-06-01 12:34:22 ----A---- C:\WINDOWS\system32\sdbinst.exe
2017-06-01 12:31:36 ----D---- C:\Program Files (x86)\USB Camera2
2017-06-01 12:31:11 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-06-01 12:30:29 ----D---- C:\ProgramData\NVIDIA Corporation
2017-06-01 12:30:20 ----D---- C:\Program Files\NVIDIA Corporation
2017-06-01 12:30:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-06-01 12:30:10 ----D---- C:\Program Files\CONEXANT
2017-06-01 12:30:00 ----D---- C:\Program Files (x86)\Intel
2017-06-01 12:29:59 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2017-06-01 12:29:59 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2017-06-01 12:29:00 ----D---- C:\Program Files\Elantech
2017-06-01 12:26:45 ----D---- C:\WINDOWS\Prefetch
2017-05-31 21:47:48 ----A---- C:\WINDOWS\system32\netcfg-20921343.txt
2017-05-31 16:50:48 ----D---- C:\ProgramData\Hewlett-Packard
2017-05-31 16:50:43 ----A---- C:\WINDOWS\system32\hpz3l4v2.dll
2017-05-31 16:44:20 ----D---- C:\ProgramData\HP
2017-05-31 16:43:57 ----D---- C:\Users\Bea\AppData\Roaming\HPPSDr
2017-05-31 16:00:31 ----A---- C:\WINDOWS\system32\netcfg-84046.txt
2017-05-31 15:14:14 ----A---- C:\WINDOWS\system32\netcfg-170796.txt
2017-05-31 15:14:13 ----A---- C:\WINDOWS\system32\netcfg-170562.txt
2017-05-31 15:14:12 ----A---- C:\WINDOWS\system32\netcfg-169703.txt
2017-05-31 15:10:57 ----A---- C:\WINDOWS\system32\netcfg-154987687.txt
2017-05-31 15:07:16 ----D---- C:\WINDOWS\Migration
2017-05-31 12:24:28 ----D---- C:\WINDOWS\system32\MRT
2017-05-31 12:24:07 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-31 11:03:52 ----A---- C:\WINDOWS\system32\netcfg-140162703.txt
2017-05-31 11:03:44 ----A---- C:\WINDOWS\system32\netcfg-140154515.txt
2017-05-30 12:55:47 ----A---- C:\WINDOWS\system32\netcfg-60484265.txt
2017-05-30 12:55:47 ----A---- C:\WINDOWS\system32\netcfg-60484171.txt
2017-05-30 12:55:42 ----A---- C:\WINDOWS\system32\netcfg-60479375.txt
2017-05-30 12:55:42 ----A---- C:\WINDOWS\system32\netcfg-60479312.txt
2017-05-30 10:22:49 ----A---- C:\WINDOWS\system32\netcfg-51305656.txt
2017-05-30 10:22:45 ----A---- C:\WINDOWS\system32\netcfg-51301453.txt
2017-05-30 06:07:44 ----D---- C:\ProgramData\Intel Security
2017-05-30 06:06:44 ----D---- C:\Program Files\Common Files\Intel Security
2017-05-30 06:03:55 ----D---- C:\Program Files\Common Files\AV
2017-05-30 05:46:21 ----D---- C:\Users\Bea\AppData\Roaming\Mozilla
2017-05-30 05:45:38 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-30 05:45:34 ----D---- C:\Program Files\Mozilla Firefox
2017-05-30 05:08:48 ----A---- C:\WINDOWS\system32\netcfg-68750.txt
2017-05-30 05:07:10 ----A---- C:\WINDOWS\system32\netcfg-2609187.txt
2017-05-30 05:04:14 ----A---- C:\WINDOWS\system32\drivers\HipShieldK.sys
2017-05-30 04:49:19 ----D---- C:\ProgramData\Lenovo
2017-05-30 04:34:46 ----D---- C:\Users\Bea\AppData\Roaming\LSC
2017-05-30 04:32:36 ----A---- C:\WINDOWS\system32\netcfg-535578.txt
2017-05-30 04:32:36 ----A---- C:\WINDOWS\system32\netcfg-535500.txt
2017-05-30 04:32:35 ----A---- C:\WINDOWS\system32\netcfg-533828.txt
2017-05-30 04:32:33 ----A---- C:\WINDOWS\system32\netcfg-532359.txt
2017-05-30 04:27:04 ----D---- C:\Users\Bea\AppData\Roaming\Lenovo
2017-05-30 04:26:21 ----D---- C:\Users\Bea\AppData\Roaming\Adobe
2017-05-30 04:25:05 ----D---- C:\Users\Bea\AppData\Roaming\Macromedia
2017-05-30 04:20:36 ----A---- C:\WINDOWS\system32\netcfg-254875.txt
2017-05-30 04:16:38 ----ASH---- C:\swapfile.sys
2017-05-30 04:16:36 ----ASH---- C:\pagefile.sys
2017-05-30 04:16:35 ----SHD---- C:\System Volume Information
2017-05-30 04:16:34 ----ASH---- C:\hiberfil.sys

====== List of files/folders modified in the last 1 month ======

2017-06-03 19:05:56 ----D---- C:\WINDOWS\WinSxS
2017-06-03 19:05:45 ----D---- C:\WINDOWS\CbsTemp
2017-06-03 19:03:56 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-06-03 19:03:53 ----D---- C:\WINDOWS\Microsoft.NET
2017-06-03 19:03:23 ----RD---- C:\WINDOWS\System32
2017-06-03 19:03:20 ----D---- C:\WINDOWS\SysWOW64
2017-06-03 19:03:13 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-06-03 19:03:13 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-06-03 19:03:13 ----D---- C:\WINDOWS\system32\en-US
2017-06-03 19:03:13 ----D---- C:\WINDOWS\system32\cs-CZ
2017-06-03 19:02:24 ----D---- C:\WINDOWS\system32\config
2017-06-03 19:00:04 ----D---- C:\WINDOWS\system32\sru
2017-06-03 18:59:09 ----D---- C:\WINDOWS\Temp
2017-06-03 18:36:37 ----D---- C:\WINDOWS\system32\catroot2
2017-06-03 18:25:47 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2017-06-03 18:21:10 ----D---- C:\WINDOWS\AppReadiness
2017-06-03 18:21:09 ----D---- C:\Program Files (x86)\Amazon
2017-06-03 18:18:31 ----D---- C:\WINDOWS\Logs
2017-06-03 18:12:32 ----D---- C:\Windows
2017-06-03 18:10:20 ----D---- C:\WINDOWS\Inf
2017-06-03 18:10:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-03 18:09:07 ----D---- C:\WINDOWS\SoftwareDistribution
2017-06-02 16:30:23 ----RD---- C:\Program Files
2017-06-02 16:30:22 ----D---- C:\WINDOWS\system32\Tasks
2017-06-02 14:16:27 ----D---- C:\WINDOWS\system32\DriverStore
2017-06-02 13:28:56 ----D---- C:\WINDOWS\debug
2017-06-02 13:12:34 ----HD---- C:\Program Files\WindowsApps
2017-06-02 12:57:01 ----SHD---- C:\WINDOWS\Installer
2017-06-02 12:56:49 ----RD---- C:\WINDOWS\assembly
2017-06-02 12:54:33 ----D---- C:\WINDOWS\system32\drivers
2017-06-02 12:54:33 ----D---- C:\ProgramData\Conexant
2017-06-02 12:54:31 ----D---- C:\WINDOWS\system32\catroot
2017-06-02 10:06:44 ----RD---- C:\Program Files (x86)
2017-06-02 09:59:30 ----D---- C:\WINDOWS\system32\wdi
2017-06-01 19:06:23 ----D---- C:\WINDOWS\system32\restore
2017-06-01 18:58:59 ----D---- C:\WINDOWS\system32\Macromed
2017-06-01 18:58:55 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-06-01 17:19:31 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-06-01 17:11:31 ----D---- C:\WINDOWS\system32\LogFiles
2017-06-01 13:21:05 ----HD---- C:\$Windows.~BT
2017-06-01 13:19:10 ----SHD---- C:\$Recycle.Bin
2017-06-01 13:17:12 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-06-01 13:16:22 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-06-01 13:16:22 ----D---- C:\WINDOWS\system32\setup
2017-06-01 13:11:52 ----D---- C:\WINDOWS\system32\wbem
2017-06-01 13:11:23 ----D---- C:\WINDOWS\apppatch
2017-06-01 13:09:07 ----RD---- C:\WINDOWS\ToastData
2017-06-01 13:09:07 ----D---- C:\Program Files\Windows Defender
2017-06-01 13:09:07 ----D---- C:\Program Files\Internet Explorer
2017-06-01 13:09:07 ----D---- C:\Program Files (x86)\Windows Defender
2017-06-01 13:09:07 ----D---- C:\Program Files (x86)\Internet Explorer
2017-06-01 13:09:06 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-06-01 13:09:06 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\migration
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\Boot
2017-06-01 13:09:03 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-06-01 13:09:03 ----D---- C:\WINDOWS\PolicyDefinitions
2017-06-01 13:02:34 ----D---- C:\WINDOWS\rescache
2017-06-01 13:01:03 ----D---- C:\WINDOWS\WinStore
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\winrm
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\en
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\winrm
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\slmgr
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\migwiz
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\en
2017-06-01 13:01:03 ----D---- C:\WINDOWS\servicing
2017-06-01 13:01:03 ----D---- C:\WINDOWS\en-US
2017-06-01 13:01:03 ----D---- C:\Program Files\Windows Photo Viewer
2017-06-01 13:01:03 ----D---- C:\Program Files\Windows Mail
2017-06-01 13:01:03 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-06-01 13:01:03 ----D---- C:\Program Files (x86)\Windows Mail
2017-06-01 13:00:59 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-06-01 13:00:59 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2017-06-01 12:59:52 ----HD---- C:\ProgramData
2017-06-01 12:59:52 ----D---- C:\Program Files\Windows NT
2017-06-01 12:58:57 ----D---- C:\WINDOWS\Registration
2017-06-01 12:56:52 ----RSD---- C:\WINDOWS\Media
2017-06-01 12:50:36 ----D---- C:\WINDOWS\SYSWOW64\NV
2017-06-01 12:50:35 ----D---- C:\WINDOWS\system32\NV
2017-06-01 12:46:52 ----RSD---- C:\WINDOWS\Fonts
2017-06-01 12:46:31 ----D---- C:\WINDOWS\SYSWOW64\drivers
2017-06-01 12:46:31 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2017-06-01 12:46:31 ----D---- C:\WINDOWS\system32\Sysprep
2017-06-01 12:45:55 ----D---- C:\WINDOWS\SYSWOW64\WCN
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\SMI
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\sda
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\MUI
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2017-06-01 12:45:52 ----D---- C:\WINDOWS\SYSWOW64\IME
2017-06-01 12:45:52 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2017-06-01 12:45:51 ----D---- C:\WINDOWS\SYSWOW64\catroot
2017-06-01 12:45:49 ----D---- C:\WINDOWS\system32\WCN
2017-06-01 12:45:49 ----D---- C:\WINDOWS\system32\spool
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\oobe
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\MUI
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\IME
2017-06-01 12:43:44 ----D---- C:\WINDOWS\Help
2017-06-01 12:43:44 ----D---- C:\WINDOWS\DigitalLocker
2017-06-01 12:43:43 ----SD---- C:\ProgramData\Microsoft
2017-06-01 12:43:43 ----RD---- C:\Users
2017-06-01 12:43:43 ----D---- C:\ProgramData\PRICache
2017-06-01 12:43:40 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2017-06-01 12:43:40 ----D---- C:\Program Files (x86)\Windows Media Player
2017-06-01 12:43:37 ----D---- C:\Program Files (x86)\Common Files
2017-06-01 12:43:36 ----SHD---- C:\Program Files\Windows Sidebar
2017-06-01 12:43:36 ----D---- C:\Program Files\Windows Media Player
2017-06-01 12:43:33 ----D---- C:\Program Files\Common Files\microsoft shared
2017-06-01 12:43:33 ----D---- C:\Program Files\Common Files
2017-06-01 12:42:55 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2017-06-01 12:42:23 ----D---- C:\WINDOWS\system32\Recovery
2017-06-01 12:38:14 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2017-06-01 12:31:36 ----D---- C:\WINDOWS\twain_32
2017-06-01 12:31:36 ----D---- C:\WINDOWS\System
2017-06-01 10:46:58 ----D---- C:\WINDOWS\AUInstallAgent
2017-05-31 16:00:22 ----D---- C:\Program Files (x86)\McAfee
2017-05-31 12:22:17 ----D---- C:\ProgramData\NVIDIA
2017-05-31 11:08:04 ----D---- C:\ProgramData\McAfee
2017-05-30 06:30:08 ----D---- C:\WINDOWS\Downloaded Installations
2017-05-30 06:12:11 ----D---- C:\Program Files\Common Files\mcafee
2017-05-30 06:11:39 ----HD---- C:\WINDOWS\ELAMBKUP
2017-05-30 04:49:08 ----D---- C:\Program Files\Lenovo

Re: Preventivka

Napsal: 03 čer 2017 18:21
od Chimaobim
Druhá část:


File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-10-20 39008]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2016-08-02 843048]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2016-08-02 243496]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-02-23 31560]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2017-06-01 71680]
R3 ACPIVPC;@oem11.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-10-20 33560]
R3 bcbtums;@oem9.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2012-08-26 164152]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-11-21 81920]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2016-08-02 78632]
R3 CnxtHdAudService;@oem33.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-07-10 1299648]
R3 ETD;@oem3.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-08-07 311632]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-08-27 3797424]
R3 IntcDAud;@oem30.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem32.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem19.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 mfeaack;McAfee Inc. mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [2016-08-02 419624]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2016-08-02 349480]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2016-08-02 493352]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2016-08-01 519456]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-02-23 13045960]
R3 vm332avs;@oem10.inf,%USBCamera.DeviceDesc2%;Lenovo Camera2; C:\WINDOWS\System32\Drivers\vm332avs.sys [2012-08-25 981112]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2017-06-01 38912]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2016-08-02 83608]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2014-11-21 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-11-21 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2017-06-01 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2017-06-01 1201664]
S3 dot4;@oem15.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem18.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2015-03-23 21928]
S3 dot4usb;@oem15.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2016-08-02 216704]
S3 intaud_WaveExtensible;@oem31.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2016-08-01 100136]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2017-06-01 167424]
S3 RSUSBVSTOR;@oem23.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 BcmBtRSupport;@oem9.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service; C:\WINDOWS\system32\BtwRSupportService.exe [2012-08-26 2252600]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2012-08-27 953720]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-08-27 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2016-10-19 993824]
R2 McBootDelayStartSvc;McAfee Boot Delay Start Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [2016-05-31 1910000]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [2016-08-02 382456]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2016-04-26 277744]
R2 ModuleCoreService;McAfee Module Core Service; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [2016-09-13 1454216]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-02-04 934216]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-07-31 1258856]
R2 PEFService;Intel Security PEF Service; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2016-05-25 1045336]
R2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2016-04-26 232688]
S2 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-05-11 200728]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation;"ServiceDll" = %SystemRoot%\System32\BthHFSrv.dll
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-08-27 291744]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2017-02-14 273216]
S3 McAWFwk;McAfee Activation Service; C:\Program Files\mcafee\msc\McAWFwk.exe [2012-01-26 332080]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2016-06-21 816128]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-05-18 191944]
S3 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]

-----------------EOF-----------------

Re: Preventivka

Napsal: 03 čer 2017 19:14
od Rudy
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C4E61C37-7089-49BE-A539-C18722C5D7BD}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{C4E61C37-7089-49BE-A539-C18722C5D7BD}]/64

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Re: Preventivka

Napsal: 04 čer 2017 08:57
od Chimaobim
Logfile of random's system information tool 1.16 (written by random/random)
Run by Bea at 2017-06-04 09:50:52
Microsoft Windows 8.1
System drive C: has 872 GB (96%) free of 904 GB
Total RAM: 8058 MB (79% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:50:56, on 4. 6. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\USB Camera2\VM332STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\WINDOWS\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\trend micro\Bea_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKUS\S-1-5-21-3294375576-709941325-3428392197-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O4 - Global Startup: Bluetooth.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @oem9.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - C:\Program Files\mcafee\msc\McAWFwk.exe
O23 - Service: McAfee Boot Delay Start Service (McBootDelayStartSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee OOBE Service (McOobeSv) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: McAfee Module Core Service (ModuleCoreService) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel Security PEF Service (PEFService) - Intel Security, Inc. - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10092 bytes

====== Enumerating Processes ======

C:\WINDOWS\system32\wininit.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\dwm.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\WINDOWS\system32\CxAudMsg64.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
"C:\windows\system32\mfevtps.exe"
"C:\windows\system32\mfevtps.exe" -mms
"C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe"
C:\WINDOWS\SysWOW64\SAsrv.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-da038ba6-62f5-4608-a836-7b17bdb7aeaa -SystemEventPortName:HostProcess-7a87c2c6-8c1f-4d6e-8949-b28d53b64371 -IoCancelEventPortName:HostProcess-84e4350d-ea1a-40e2-89f0-98e74546853c -NonStateChangingEventPortName:HostProcess-aa0c8ea5-9ffc-45b3-8de9-b98ca2ebbc33 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:fabbfab0-77d3-447e-a4f4-e82ab90e0511 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
"C:\Program Files\McAfee\MSC\McAPExe.exe"
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
C:\WINDOWS\system32\taskhostex.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\USB Camera2\VM332STI.EXE"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\WINDOWS\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
"C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe" -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Bea\Desktop\RSITx64.exe"

====== Scheduled tasks folder ======

C:\WINDOWS\system32\tasks\McAfee Remediation (Prepare) - C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe /prepare
C:\WINDOWS\system32\tasks\McAfeeLogon - C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
C:\WINDOWS\system32\tasks\MirageAgent - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\WINDOWS\system32\tasks\OFFICE2010ACT - C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\SetupSQMTask - C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE
C:\WINDOWS\system32\tasks\Microsoft\Windows\WS\License Validation - rundll32.exe WSClient.dll,WSpTLR licensing
C:\WINDOWS\system32\tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask - rundll32.exe WSClient.dll,RefreshBannedAppsList
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent /increment
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Customer Feedback Program - "%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Solution Center Launcher - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
C:\WINDOWS\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\WINDOWS\system32\tasks\Lenovo\LSC\LSCHardwareScan - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\WINDOWS\system32\tasks\Lenovo\LSC\RebootCountTask - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -rebootcount
C:\WINDOWS\system32\tasks\Lenovo\LSC\Time72Task - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -canupdate

=========Mozilla firefox=========

ProfilePath - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default

prefs.js - "browser.search.suggest.enabled" - false

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL


C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\addons.json
Pomocník skrývání prvků pro Adblock Plus - extension - elemhidehelper@adblockplus.org
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
BetterPrivacy-signed - extension - {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}
New Tab Override (browser.newtab.url replacement) - extension - newtaboverride@agenedia.com
Google Image Search - extension - {73007fef-a6e0-47d3-b4e7-dfc116ed6f65}
Resurrect Pages - extension - {0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3}
Firebug - extension - firebug@software.joehewitt.com
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d}
Greasemonkey - extension - {e4a8a97b-f2ed-450b-b12d-ee082ba24781}

C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions.json
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Shield Recipe Client - extension - shield-recipe-client@mozilla.org - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\features\{588e1af0-0215-41a8-997d-02e8fec21b5d}\shield-recipe-client@mozilla.org.xpi
New Tab Override (browser.newtab.url replacement) - extension - newtaboverride@agenedia.com - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\newtaboverride@agenedia.com.xpi
Element Hiding Helper for Adblock Plus - extension - elemhidehelper@adblockplus.org - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\elemhidehelper@adblockplus.org.xpi
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
BetterPrivacy - extension - {d40f5e7b-d2cf-4856-b441-cc613eeffbe3} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
Firebug - extension - firebug@software.joehewitt.com - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\firebug@software.joehewitt.com.xpi
Greasemonkey - extension - {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
Google Image Search - extension - {73007fef-a6e0-47d3-b4e7-dfc116ed6f65} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{73007fef-a6e0-47d3-b4e7-dfc116ed6f65}.xpi
Resurrect Pages - extension - {0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3} - C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\extensions\{0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3}.xpi

C:\Users\Bea\AppData\Roaming\Mozilla\Firefox\Profiles\sjlcr5d4.default\pluginreg.dat

======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={C4E61C37-7089-49BE-A539-C18722C5D7BD}


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={C4E61C37-7089-49BE-A539-C18722C5D7BD}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-08-08 2864016]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-02-23 1793736]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2010-11-03 1580368]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2015-08-27 395168]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-07-24 903384]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-10-20 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-10-20 191544]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"332BigDog"=C:\Program Files (x86)\USB Camera2\VM332STI.EXE [2012-03-20 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2016-10-19 852720]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfemms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2017-06-04 09:45:11 ----D---- C:\_OTM
2017-06-03 19:05:18 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-06-03 19:05:18 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-06-03 18:37:49 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2017-06-03 18:37:49 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2017-06-03 18:37:49 ----A---- C:\WINDOWS\system32\tracerpt.exe
2017-06-03 18:37:49 ----A---- C:\WINDOWS\system32\sechost.dll
2017-06-03 18:37:29 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2017-06-03 18:37:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2017-06-03 18:37:09 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2017-06-03 18:37:09 ----A---- C:\WINDOWS\system32\poqexec.exe
2017-06-03 18:37:08 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-06-03 18:37:08 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-06-03 18:37:08 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-06-03 18:37:05 ----A---- C:\WINDOWS\system32\tzsync.exe
2017-06-03 18:37:00 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2017-06-03 18:37:00 ----A---- C:\WINDOWS\system32\advapi32.dll
2017-06-03 18:19:00 ----D---- C:\AdwCleaner
2017-06-02 13:10:46 ----D---- C:\rsit
2017-06-02 13:10:46 ----D---- C:\Program Files\trend micro
2017-06-02 12:57:00 ----D---- C:\Program Files\Dolby Digital Plus
2017-06-02 12:55:28 ----A---- C:\WINDOWS\SYSWOW64\SASrv.exe
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\UCI64A40.DLL
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\DDPA64.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\CX64BP04.dll
2017-06-02 12:54:05 ----A---- C:\WINDOWS\system32\CSpkExt64.dll
2017-06-02 12:54:00 ----D---- C:\Drivers
2017-06-02 09:57:59 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-01 20:59:11 ----D---- C:\Users\Bea\AppData\Roaming\Indigo Renderer
2017-06-01 20:42:38 ----D---- C:\My Web Sites
2017-06-01 19:42:15 ----D---- C:\AppsP
2017-06-01 19:07:12 ----D---- C:\Program Files\Chaotica
2017-06-01 13:23:54 ----SHD---- C:\Recovery
2017-06-01 13:23:37 ----DC---- C:\WINDOWS\Panther
2017-06-01 13:18:09 ----D---- C:\Users\Bea\AppData\Roaming\Identities
2017-06-01 13:17:28 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-06-01 13:16:54 ----A---- C:\WINDOWS\system32\fhcpl.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2017-06-01 13:16:44 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-06-01 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-06-01 13:16:30 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-06-01 13:16:01 ----AC---- C:\WINDOWS\system32\drivers\intelpep.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasser.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasmxs.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasdiag.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rascfg.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\QSVRMGMT.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\QSHVHOST.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\eventcls.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\WSDMon.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\WSDApi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\vsstrace.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\vssapi.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\vpnike.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasser.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasmxs.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasdiag.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rascfg.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\QSVRMGMT.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\QSHVHOST.DLL
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\eventcls.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2017-06-01 13:16:01 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-06-01 13:16:01 ----A---- C:\WINDOWS\splwow64.exe
2017-06-01 13:14:54 ----A---- C:\WINDOWS\system32\msra.exe
2017-06-01 13:14:07 ----A---- C:\WINDOWS\SYSWOW64\dhcpsapi.dll
2017-06-01 13:14:07 ----A---- C:\WINDOWS\system32\dhcpsapi.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\system32\dbghelp.dll
2017-06-01 13:13:57 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-06-01 13:13:41 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2017-06-01 13:13:41 ----A---- C:\WINDOWS\system32\wscsvc.dll
2017-06-01 13:13:41 ----A---- C:\WINDOWS\system32\wscapi.dll
2017-06-01 13:13:27 ----AC---- C:\WINDOWS\system32\SysFxUI.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\qdvd.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfps.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\evr.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\devenum.dll
2017-06-01 13:13:27 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2017-06-01 13:12:56 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2017-06-01 13:12:56 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2017-06-01 13:12:46 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2017-06-01 13:12:46 ----A---- C:\WINDOWS\system32\notepad.exe
2017-06-01 13:12:46 ----A---- C:\WINDOWS\notepad.exe
2017-06-01 13:12:36 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2017-06-01 13:12:17 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-06-01 13:12:17 ----A---- C:\WINDOWS\system32\authz.dll
2017-06-01 13:12:07 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2017-06-01 13:12:07 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-06-01 13:11:57 ----AC---- C:\WINDOWS\system32\drivers\disk.sys
2017-06-01 13:11:43 ----A---- C:\WINDOWS\system32\SystemSettingsDatabase.dll
2017-06-01 13:11:43 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-06-01 13:11:43 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2017-06-01 13:11:26 ----A---- C:\WINDOWS\system32\seclogon.dll
2017-06-01 13:11:16 ----A---- C:\WINDOWS\system32\apphelp.dll
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\sermouse.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\mouhid.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\mouclass.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\kbdhid.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\kbdclass.sys
2017-06-01 13:10:48 ----AC---- C:\WINDOWS\system32\drivers\i8042prt.sys
2017-06-01 13:10:26 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2017-06-01 13:10:26 ----A---- C:\WINDOWS\system32\webio.dll
2017-06-01 13:10:09 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2017-06-01 13:10:09 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\SYSWOW64\EncDec.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\SYSWOW64\cfgbkend.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\system32\EncDec.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-06-01 13:09:32 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\msobjs.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\winshfhc.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-06-01 13:08:13 ----A---- C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\wmploc.DLL
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\wmp.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\jscript.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\inseng.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieui.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\apisetschema.dll
2017-06-01 13:08:12 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\xolehlp.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\wmitomi.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2017-06-01 13:08:10 ----A---- C:\WINDOWS\system32\dab.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuwebv.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wups2.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wups.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wucltux.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuapp.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\WinSCard.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\winresume.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\winload.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\wininet.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\win32k.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\user32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\UIAnimation.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\shsetup.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\shell32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\SessEnv.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\rastapi.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\ntshrui.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\msrating.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\msctf.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\mscms.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\localspl.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\input.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\inetcomm.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\icm32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\hlink.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\gdi32.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\vwifibus.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\consent.exe
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\certprop.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\authui.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\atmlib.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\appinfo.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\system32\adsmsext.dll
2017-06-01 13:08:09 ----A---- C:\WINDOWS\HelpPane.exe
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\stornvme.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\serial.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\serenum.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\parport.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-06-01 13:08:04 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\UIAnimation.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\iscsiwmi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\iscsidsc.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\xolehlp.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wow64.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wmitomi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wisp.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wintrust.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wininit.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\samlib.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\quartz.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\pdh.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\ole32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\offreg.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\netlogon.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msobjs.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msiexec.exe
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\mispace.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\iscsiwmi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\iscsiexe.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\iscsidsc.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\esent.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\combase.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\certcli.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\bcrypt.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\adtschema.dll
2017-06-01 13:08:04 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2017-06-01 13:02:32 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\ws2_32.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\mswsock.dll
2017-06-01 13:01:59 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-06-01 13:01:50 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\system32\puiapi.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-06-01 13:01:50 ----A---- C:\WINDOWS\system32\inetpp.dll
2017-06-01 13:01:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-06-01 13:01:40 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-06-01 13:01:30 ----AC---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2017-06-01 13:01:03 ----D---- C:\Program Files\Windows Journal
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Šablony
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Plocha
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Nabídka Start
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Dokumenty
2017-06-01 12:59:52 ----SHD---- C:\ProgramData\Data aplikací
2017-06-01 12:58:24 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2017-06-01 12:50:13 ----A---- C:\WINDOWS\system32\WSShared.dll
2017-06-01 12:50:13 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-06-01 12:50:12 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2017-06-01 12:50:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-06-01 12:50:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-06-01 12:50:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-06-01 12:49:50 ----A---- C:\WINDOWS\system32\nlasvc.dll
2017-06-01 12:49:50 ----A---- C:\WINDOWS\system32\ncsi.dll
2017-06-01 12:49:46 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eapphost.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eappgnui.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eappcfg.dll
2017-06-01 12:49:38 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2017-06-01 12:49:29 ----A---- C:\WINDOWS\SYSWOW64\dsparse.dll
2017-06-01 12:49:29 ----A---- C:\WINDOWS\system32\dsparse.dll
2017-06-01 12:49:24 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2017-06-01 12:49:24 ----A---- C:\WINDOWS\system32\UtcResources.dll
2017-06-01 12:49:24 ----A---- C:\WINDOWS\system32\tdh.dll
2017-06-01 12:48:53 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2017-06-01 12:48:53 ----A---- C:\WINDOWS\system32\comctl32.dll
2017-06-01 12:48:49 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2017-06-01 12:48:49 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2017-06-01 12:48:41 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2017-06-01 12:48:41 ----A---- C:\WINDOWS\system32\clfsw32.dll
2017-06-01 12:48:36 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2017-06-01 12:48:33 ----A---- C:\WINDOWS\SYSWOW64\WinSync.dll
2017-06-01 12:48:33 ----A---- C:\WINDOWS\system32\WinSync.dll
2017-06-01 12:48:26 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-06-01 12:48:26 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-06-01 12:48:20 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2017-06-01 12:48:20 ----A---- C:\WINDOWS\system32\sspicli.dll
2017-06-01 12:48:20 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2017-06-01 12:48:08 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2017-06-01 12:48:04 ----AC---- C:\WINDOWS\system32\drivers\bthpan.sys
2017-06-01 12:48:01 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2017-06-01 12:47:57 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-06-01 12:47:48 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2017-06-01 12:47:48 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2017-06-01 12:47:48 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-06-01 12:47:48 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-06-01 12:47:33 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2017-06-01 12:47:30 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-06-01 12:47:22 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2017-06-01 12:47:22 ----A---- C:\WINDOWS\system32\rsaenh.dll
2017-06-01 12:46:54 ----AC---- C:\WINDOWS\system32\drivers\rfcomm.sys
2017-06-01 12:46:54 ----AC---- C:\WINDOWS\system32\drivers\hidbth.sys
2017-06-01 12:46:54 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2017-06-01 12:46:15 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2017-06-01 12:46:15 ----A---- C:\WINDOWS\system32\wpdshext.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\SYSWOW64\mfc42u.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\SYSWOW64\mfc42.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\system32\mfc42u.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\system32\mfc42.dll
2017-06-01 12:46:10 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-01 12:46:01 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2017-06-01 12:46:01 ----A---- C:\WINDOWS\system32\qedit.dll
2017-06-01 12:45:48 ----A---- C:\WINDOWS\system32\basesrv.dll
2017-06-01 12:45:39 ----AC---- C:\WINDOWS\system32\drivers\tpm.sys
2017-06-01 12:45:36 ----A---- C:\WINDOWS\system32\NcdAutoSetup.dll
2017-06-01 12:45:32 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\twinui.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\themecpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\stobject.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingSync.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\hgcpl.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-06-01 12:45:15 ----A---- C:\WINDOWS\explorer.exe
2017-06-01 12:44:52 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-06-01 12:44:52 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-06-01 12:44:45 ----A---- C:\WINDOWS\system32\lsm.dll
2017-06-01 12:44:40 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-06-01 12:44:33 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2017-06-01 12:44:30 ----A---- C:\WINDOWS\SYSWOW64\rgb9rast.dll
2017-06-01 12:44:27 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2017-06-01 12:44:27 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\schannel.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\ncrypt.dll
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2017-06-01 12:44:17 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2017-06-01 12:44:02 ----A---- C:\WINDOWS\SYSWOW64\WMASF.DLL
2017-06-01 12:44:02 ----A---- C:\WINDOWS\system32\WMASF.DLL
2017-06-01 12:43:43 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2017-06-01 12:43:43 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\polstore.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\gpapi.dll
2017-06-01 12:43:23 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2017-06-01 12:43:17 ----A---- C:\WINDOWS\SYSWOW64\DeviceSetupStatusProvider.dll
2017-06-01 12:43:17 ----A---- C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2017-06-01 12:43:13 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-06-01 12:43:13 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2017-06-01 12:43:13 ----A---- C:\WINDOWS\system32\BFE.DLL
2017-06-01 12:43:06 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-06-01 12:43:06 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-06-01 12:43:06 ----A---- C:\WINDOWS\system32\csrsrv.dll
2017-06-01 12:42:55 ----A---- C:\WINDOWS\system32\compstui.dll
2017-06-01 12:42:50 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2017-06-01 12:42:50 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2017-06-01 12:42:47 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-06-01 12:42:47 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-06-01 12:42:43 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2017-06-01 12:42:39 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2017-06-01 12:42:36 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2017-06-01 12:42:36 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2017-06-01 12:42:36 ----A---- C:\WINDOWS\system32\comsvcs.dll
2017-06-01 12:42:36 ----A---- C:\WINDOWS\system32\catsrvut.dll
2017-06-01 12:42:27 ----A---- C:\WINDOWS\system32\services.exe
2017-06-01 12:42:24 ----A---- C:\WINDOWS\system32\wwanmm.dll
2017-06-01 12:42:24 ----A---- C:\WINDOWS\system32\wwanconn.dll
2017-06-01 12:42:24 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-06-01 12:42:21 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2017-06-01 12:42:21 ----A---- C:\WINDOWS\system32\netcfgx.dll
2017-06-01 12:42:10 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2017-06-01 12:42:10 ----A---- C:\WINDOWS\system32\shacct.dll
2017-06-01 12:42:07 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-06-01 12:42:07 ----A---- C:\WINDOWS\system32\SRH.dll
2017-06-01 12:42:00 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\system32\taskeng.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\system32\schtasks.exe
2017-06-01 12:42:00 ----A---- C:\WINDOWS\system32\schedsvc.dll
2017-06-01 12:41:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-06-01 12:41:56 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-06-01 12:41:53 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2017-06-01 12:41:53 ----A---- C:\WINDOWS\system32\calc.exe
2017-06-01 12:41:50 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2017-06-01 12:41:50 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2017-06-01 12:41:50 ----A---- C:\WINDOWS\system32\WebClnt.dll
2017-06-01 12:41:50 ----A---- C:\WINDOWS\system32\davclnt.dll
2017-06-01 12:41:43 ----A---- C:\WINDOWS\system32\wuaext.dll
2017-06-01 12:41:43 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2017-06-01 12:41:43 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-06-01 12:41:37 ----SD---- C:\Users\Bea\AppData\Roaming\Microsoft
2017-06-01 12:41:33 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-06-01 12:41:33 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-06-01 12:41:29 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2017-06-01 12:41:26 ----A---- C:\WINDOWS\system32\AuthHost.exe
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbuhci.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbohci.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbehci.sys
2017-06-01 12:41:22 ----AC---- C:\WINDOWS\system32\drivers\usbd.sys
2017-06-01 12:41:19 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-06-01 12:41:19 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-06-01 12:41:13 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2017-06-01 12:41:11 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2017-06-01 12:41:11 ----A---- C:\WINDOWS\system32\pku2u.dll
2017-06-01 12:41:07 ----A---- C:\WINDOWS\system32\sysmain.dll
2017-06-01 12:41:07 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2017-06-01 12:40:58 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2017-06-01 12:40:58 ----A---- C:\WINDOWS\system32\InkEd.dll
2017-06-01 12:40:48 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-06-01 12:40:48 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-06-01 12:40:35 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2017-06-01 12:40:30 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2017-06-01 12:40:27 ----AC---- C:\WINDOWS\system32\drivers\volmgr.sys
2017-06-01 12:40:25 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-06-01 12:40:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-06-01 12:40:22 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2017-06-01 12:40:22 ----A---- C:\WINDOWS\system32\scesrv.dll
2017-06-01 12:40:19 ----A---- C:\WINDOWS\SYSWOW64\atlthunk.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\wow32.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\ntvdm64.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\SYSWOW64\instnm.exe
2017-06-01 12:40:10 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\system32\ntvdm64.dll
2017-06-01 12:40:10 ----A---- C:\WINDOWS\system32\mtxoci.dll
2017-06-01 12:40:01 ----A---- C:\WINDOWS\system32\profsvc.dll
2017-06-01 12:39:55 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-06-01 12:39:55 ----A---- C:\WINDOWS\system32\mfds.dll
2017-06-01 12:39:40 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-06-01 12:39:37 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\tquery.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-06-01 12:39:33 ----A---- C:\WINDOWS\system32\mssph.dll
2017-06-01 12:39:32 ----A---- C:\WINDOWS\system32\mssvp.dll
2017-06-01 12:39:32 ----A---- C:\WINDOWS\system32\mssphtb.dll
2017-06-01 12:39:24 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2017-06-01 12:39:24 ----A---- C:\WINDOWS\system32\untfs.dll
2017-06-01 12:39:22 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2017-06-01 12:39:19 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-06-01 12:39:19 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2017-06-01 12:39:11 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2017-06-01 12:38:56 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2017-06-01 12:38:56 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2017-06-01 12:38:50 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-06-01 12:38:50 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-06-01 12:38:45 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2017-06-01 12:38:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-06-01 12:38:21 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-06-01 12:38:17 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-06-01 12:38:17 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-06-01 12:38:15 ----A---- C:\WINDOWS\SYSWOW64\photowiz.dll
2017-06-01 12:38:15 ----A---- C:\WINDOWS\system32\photowiz.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2017-06-01 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\wer.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\Faultrep.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\EncDump.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\ci.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-06-01 12:38:11 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-01 12:35:37 ----D---- C:\Program Files (x86)\Reference Assemblies
2017-06-01 12:35:37 ----D---- C:\Program Files (x86)\MSBuild
2017-06-01 12:35:36 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2017-06-01 12:35:35 ----D---- C:\Program Files\Reference Assemblies
2017-06-01 12:35:35 ----D---- C:\Program Files\MSBuild
2017-06-01 12:34:55 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2017-06-01 12:34:52 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-06-01 12:34:22 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2017-06-01 12:34:22 ----A---- C:\WINDOWS\system32\sdbinst.exe
2017-06-01 12:31:36 ----D---- C:\Program Files (x86)\USB Camera2
2017-06-01 12:31:11 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-06-01 12:31:11 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-06-01 12:30:29 ----D---- C:\ProgramData\NVIDIA Corporation
2017-06-01 12:30:20 ----D---- C:\Program Files\NVIDIA Corporation
2017-06-01 12:30:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-06-01 12:30:10 ----D---- C:\Program Files\CONEXANT
2017-06-01 12:30:00 ----D---- C:\Program Files (x86)\Intel
2017-06-01 12:29:59 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2017-06-01 12:29:59 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2017-06-01 12:29:00 ----D---- C:\Program Files\Elantech
2017-06-01 12:26:45 ----D---- C:\WINDOWS\Prefetch
2017-05-31 21:47:48 ----A---- C:\WINDOWS\system32\netcfg-20921343.txt
2017-05-31 16:50:48 ----D---- C:\ProgramData\Hewlett-Packard
2017-05-31 16:50:43 ----A---- C:\WINDOWS\system32\hpz3l4v2.dll
2017-05-31 16:44:20 ----D---- C:\ProgramData\HP
2017-05-31 16:43:57 ----D---- C:\Users\Bea\AppData\Roaming\HPPSDr
2017-05-31 16:00:31 ----A---- C:\WINDOWS\system32\netcfg-84046.txt
2017-05-31 15:14:14 ----A---- C:\WINDOWS\system32\netcfg-170796.txt
2017-05-31 15:14:13 ----A---- C:\WINDOWS\system32\netcfg-170562.txt
2017-05-31 15:14:12 ----A---- C:\WINDOWS\system32\netcfg-169703.txt
2017-05-31 15:10:57 ----A---- C:\WINDOWS\system32\netcfg-154987687.txt
2017-05-31 15:07:16 ----D---- C:\WINDOWS\Migration
2017-05-31 12:24:28 ----D---- C:\WINDOWS\system32\MRT
2017-05-31 12:24:07 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-31 11:03:52 ----A---- C:\WINDOWS\system32\netcfg-140162703.txt
2017-05-31 11:03:44 ----A---- C:\WINDOWS\system32\netcfg-140154515.txt
2017-05-30 12:55:47 ----A---- C:\WINDOWS\system32\netcfg-60484265.txt
2017-05-30 12:55:47 ----A---- C:\WINDOWS\system32\netcfg-60484171.txt
2017-05-30 12:55:42 ----A---- C:\WINDOWS\system32\netcfg-60479375.txt
2017-05-30 12:55:42 ----A---- C:\WINDOWS\system32\netcfg-60479312.txt
2017-05-30 10:22:49 ----A---- C:\WINDOWS\system32\netcfg-51305656.txt
2017-05-30 10:22:45 ----A---- C:\WINDOWS\system32\netcfg-51301453.txt
2017-05-30 06:07:44 ----D---- C:\ProgramData\Intel Security
2017-05-30 06:06:44 ----D---- C:\Program Files\Common Files\Intel Security
2017-05-30 06:03:55 ----D---- C:\Program Files\Common Files\AV
2017-05-30 05:46:21 ----D---- C:\Users\Bea\AppData\Roaming\Mozilla
2017-05-30 05:45:38 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-30 05:45:34 ----D---- C:\Program Files\Mozilla Firefox
2017-05-30 05:08:48 ----A---- C:\WINDOWS\system32\netcfg-68750.txt
2017-05-30 05:07:10 ----A---- C:\WINDOWS\system32\netcfg-2609187.txt
2017-05-30 05:04:14 ----A---- C:\WINDOWS\system32\drivers\HipShieldK.sys
2017-05-30 04:49:19 ----D---- C:\ProgramData\Lenovo
2017-05-30 04:34:46 ----D---- C:\Users\Bea\AppData\Roaming\LSC
2017-05-30 04:32:36 ----A---- C:\WINDOWS\system32\netcfg-535578.txt
2017-05-30 04:32:36 ----A---- C:\WINDOWS\system32\netcfg-535500.txt
2017-05-30 04:32:35 ----A---- C:\WINDOWS\system32\netcfg-533828.txt
2017-05-30 04:32:33 ----A---- C:\WINDOWS\system32\netcfg-532359.txt
2017-05-30 04:27:04 ----D---- C:\Users\Bea\AppData\Roaming\Lenovo
2017-05-30 04:26:21 ----D---- C:\Users\Bea\AppData\Roaming\Adobe
2017-05-30 04:25:05 ----D---- C:\Users\Bea\AppData\Roaming\Macromedia
2017-05-30 04:20:36 ----A---- C:\WINDOWS\system32\netcfg-254875.txt
2017-05-30 04:16:38 ----ASH---- C:\swapfile.sys
2017-05-30 04:16:36 ----ASH---- C:\pagefile.sys
2017-05-30 04:16:35 ----SHD---- C:\System Volume Information
2017-05-30 04:16:34 ----ASH---- C:\hiberfil.sys

====== List of files/folders modified in the last 1 month ======

2017-06-04 09:48:52 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2017-06-04 09:48:17 ----D---- C:\WINDOWS\Temp
2017-06-04 09:47:51 ----D---- C:\WINDOWS\system32\wdi
2017-06-04 09:41:14 ----D---- C:\WINDOWS\Microsoft.NET
2017-06-04 09:40:31 ----RD---- C:\WINDOWS\assembly
2017-06-04 09:32:53 ----D---- C:\WINDOWS\Inf
2017-06-04 09:23:28 ----RD---- C:\WINDOWS\System32
2017-06-04 09:23:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-04 09:19:45 ----D---- C:\WINDOWS\system32\config
2017-06-04 09:19:24 ----D---- C:\WINDOWS\WinSxS
2017-06-03 20:21:20 ----D---- C:\WINDOWS\SysWOW64
2017-06-03 20:21:19 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2017-06-03 20:21:19 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-06-03 20:21:18 ----RD---- C:\Program Files
2017-06-03 20:00:00 ----D---- C:\WINDOWS\system32\sru
2017-06-03 19:05:45 ----D---- C:\WINDOWS\CbsTemp
2017-06-03 19:03:56 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-06-03 19:03:13 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-06-03 19:03:13 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-06-03 19:03:13 ----D---- C:\WINDOWS\system32\en-US
2017-06-03 19:03:13 ----D---- C:\WINDOWS\system32\cs-CZ
2017-06-03 18:36:37 ----D---- C:\WINDOWS\system32\catroot2
2017-06-03 18:22:00 ----D---- C:\WINDOWS\AppReadiness
2017-06-03 18:21:09 ----D---- C:\Program Files (x86)\Amazon
2017-06-03 18:18:31 ----D---- C:\WINDOWS\Logs
2017-06-03 18:12:32 ----D---- C:\Windows
2017-06-03 18:09:07 ----D---- C:\WINDOWS\SoftwareDistribution
2017-06-02 16:30:22 ----D---- C:\WINDOWS\system32\Tasks
2017-06-02 14:16:27 ----D---- C:\WINDOWS\system32\DriverStore
2017-06-02 13:28:56 ----D---- C:\WINDOWS\debug
2017-06-02 13:12:34 ----HD---- C:\Program Files\WindowsApps
2017-06-02 12:57:01 ----SHD---- C:\WINDOWS\Installer
2017-06-02 12:54:33 ----D---- C:\WINDOWS\system32\drivers
2017-06-02 12:54:33 ----D---- C:\ProgramData\Conexant
2017-06-02 12:54:31 ----D---- C:\WINDOWS\system32\catroot
2017-06-02 10:06:44 ----RD---- C:\Program Files (x86)
2017-06-01 19:06:23 ----D---- C:\WINDOWS\system32\restore
2017-06-01 18:58:59 ----D---- C:\WINDOWS\system32\Macromed
2017-06-01 18:58:55 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-06-01 17:19:31 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-06-01 17:11:31 ----D---- C:\WINDOWS\system32\LogFiles
2017-06-01 13:21:05 ----HD---- C:\$Windows.~BT
2017-06-01 13:19:10 ----SHD---- C:\$Recycle.Bin
2017-06-01 13:17:12 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-06-01 13:16:22 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-06-01 13:16:22 ----D---- C:\WINDOWS\system32\setup
2017-06-01 13:11:52 ----D---- C:\WINDOWS\system32\wbem
2017-06-01 13:11:23 ----D---- C:\WINDOWS\apppatch
2017-06-01 13:09:07 ----RD---- C:\WINDOWS\ToastData
2017-06-01 13:09:07 ----D---- C:\Program Files\Windows Defender
2017-06-01 13:09:07 ----D---- C:\Program Files\Internet Explorer
2017-06-01 13:09:07 ----D---- C:\Program Files (x86)\Windows Defender
2017-06-01 13:09:07 ----D---- C:\Program Files (x86)\Internet Explorer
2017-06-01 13:09:06 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-06-01 13:09:06 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\migration
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2017-06-01 13:09:06 ----D---- C:\WINDOWS\system32\Boot
2017-06-01 13:09:03 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-06-01 13:09:03 ----D---- C:\WINDOWS\PolicyDefinitions
2017-06-01 13:02:34 ----D---- C:\WINDOWS\rescache
2017-06-01 13:01:03 ----D---- C:\WINDOWS\WinStore
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\winrm
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\en
2017-06-01 13:01:03 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\winrm
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\slmgr
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\migwiz
2017-06-01 13:01:03 ----D---- C:\WINDOWS\system32\en
2017-06-01 13:01:03 ----D---- C:\WINDOWS\servicing
2017-06-01 13:01:03 ----D---- C:\WINDOWS\en-US
2017-06-01 13:01:03 ----D---- C:\Program Files\Windows Photo Viewer
2017-06-01 13:01:03 ----D---- C:\Program Files\Windows Mail
2017-06-01 13:01:03 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-06-01 13:01:03 ----D---- C:\Program Files (x86)\Windows Mail
2017-06-01 13:00:59 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-06-01 13:00:59 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2017-06-01 12:59:52 ----HD---- C:\ProgramData
2017-06-01 12:59:52 ----D---- C:\Program Files\Windows NT
2017-06-01 12:58:57 ----D---- C:\WINDOWS\Registration
2017-06-01 12:56:52 ----RSD---- C:\WINDOWS\Media
2017-06-01 12:50:36 ----D---- C:\WINDOWS\SYSWOW64\NV
2017-06-01 12:50:35 ----D---- C:\WINDOWS\system32\NV
2017-06-01 12:46:52 ----RSD---- C:\WINDOWS\Fonts
2017-06-01 12:46:31 ----D---- C:\WINDOWS\SYSWOW64\drivers
2017-06-01 12:46:31 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2017-06-01 12:46:31 ----D---- C:\WINDOWS\system32\Sysprep
2017-06-01 12:45:55 ----D---- C:\WINDOWS\SYSWOW64\WCN
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\SMI
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\sda
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\MUI
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2017-06-01 12:45:54 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2017-06-01 12:45:52 ----D---- C:\WINDOWS\SYSWOW64\IME
2017-06-01 12:45:52 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2017-06-01 12:45:51 ----D---- C:\WINDOWS\SYSWOW64\catroot
2017-06-01 12:45:49 ----D---- C:\WINDOWS\system32\WCN
2017-06-01 12:45:49 ----D---- C:\WINDOWS\system32\spool
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\oobe
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\MUI
2017-06-01 12:45:46 ----D---- C:\WINDOWS\system32\IME
2017-06-01 12:43:44 ----D---- C:\WINDOWS\Help
2017-06-01 12:43:44 ----D---- C:\WINDOWS\DigitalLocker
2017-06-01 12:43:43 ----SD---- C:\ProgramData\Microsoft
2017-06-01 12:43:43 ----RD---- C:\Users
2017-06-01 12:43:43 ----D---- C:\ProgramData\PRICache
2017-06-01 12:43:40 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2017-06-01 12:43:40 ----D---- C:\Program Files (x86)\Windows Media Player
2017-06-01 12:43:37 ----D---- C:\Program Files (x86)\Common Files
2017-06-01 12:43:36 ----SHD---- C:\Program Files\Windows Sidebar
2017-06-01 12:43:36 ----D---- C:\Program Files\Windows Media Player
2017-06-01 12:43:33 ----D---- C:\Program Files\Common Files\microsoft shared
2017-06-01 12:43:33 ----D---- C:\Program Files\Common Files
2017-06-01 12:42:55 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2017-06-01 12:42:23 ----D---- C:\WINDOWS\system32\Recovery
2017-06-01 12:38:14 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2017-06-01 12:31:36 ----D---- C:\WINDOWS\twain_32
2017-06-01 12:31:36 ----D---- C:\WINDOWS\System
2017-06-01 10:46:58 ----D---- C:\WINDOWS\AUInstallAgent
2017-05-31 16:00:22 ----D---- C:\Program Files (x86)\McAfee
2017-05-31 12:22:17 ----D---- C:\ProgramData\NVIDIA
2017-05-31 11:08:04 ----D---- C:\ProgramData\McAfee
2017-05-30 06:30:08 ----D---- C:\WINDOWS\Downloaded Installations
2017-05-30 06:12:11 ----D---- C:\Program Files\Common Files\mcafee
2017-05-30 06:11:39 ----HD---- C:\WINDOWS\ELAMBKUP
2017-05-30 04:49:08 ----D---- C:\Program Files\Lenovo

Re: Preventivka

Napsal: 04 čer 2017 08:58
od Chimaobim
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-10-20 39008]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2016-08-02 843048]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2016-08-02 243496]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-02-23 31560]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2017-06-01 71680]
R3 ACPIVPC;@oem11.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-10-20 33560]
R3 bcbtums;@oem9.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2012-08-26 164152]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-11-21 81920]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2016-08-02 78632]
R3 CnxtHdAudService;@oem33.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-07-10 1299648]
R3 ETD;@oem3.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-08-07 311632]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-08-27 3797424]
R3 IntcDAud;@oem30.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem32.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem19.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 mfeaack;McAfee Inc. mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [2016-08-02 419624]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2016-08-02 349480]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2016-08-02 493352]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2016-08-01 519456]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-02-23 13045960]
R3 vm332avs;@oem10.inf,%USBCamera.DeviceDesc2%;Lenovo Camera2; C:\WINDOWS\System32\Drivers\vm332avs.sys [2012-08-25 981112]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2017-06-01 38912]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2016-08-02 83608]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2014-11-21 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-11-21 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2017-06-01 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2017-06-01 1201664]
S3 dot4;@oem15.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem18.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2015-03-23 21928]
S3 dot4usb;@oem15.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2016-08-02 216704]
S3 intaud_WaveExtensible;@oem31.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2016-08-01 100136]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2017-06-01 167424]
S3 RSUSBVSTOR;@oem23.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 BcmBtRSupport;@oem9.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service; C:\WINDOWS\system32\BtwRSupportService.exe [2012-08-26 2252600]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2012-08-27 953720]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-08-27 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2016-10-19 993824]
R2 McBootDelayStartSvc;McAfee Boot Delay Start Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [2016-05-31 1910000]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]
R2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [2016-08-02 382456]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2016-04-26 277744]
R2 ModuleCoreService;McAfee Module Core Service; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [2016-09-13 1454216]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-02-04 934216]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-07-31 1258856]
R2 PEFService;Intel Security PEF Service; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2016-05-25 1045336]
R2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2016-04-26 232688]
S2 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-05-11 200728]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation;"ServiceDll" = %SystemRoot%\System32\BthHFSrv.dll
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-08-27 291744]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2017-02-14 273216]
S3 McAWFwk;McAfee Activation Service; C:\Program Files\mcafee\msc\McAWFwk.exe [2012-01-26 332080]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2016-06-21 816128]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-05-18 191944]
S3 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-07-07 596768]

-----------------EOF-----------------

Re: Preventivka

Napsal: 04 čer 2017 10:28
od Rudy
Smazáno. Nastala nějaká změna?

Re: Preventivka

Napsal: 04 čer 2017 10:37
od Chimaobim
Žádná změna

Re: Preventivka

Napsal: 04 čer 2017 10:42
od Rudy
Zkusíme ještě vyčistit prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Re: Preventivka

Napsal: 04 čer 2017 12:23
od Chimaobim
Už hodinu Zoek chroupe FF extensions. To je ok, nebo se to seklo?
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz