API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 18th, 2017
1,643
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 107.31 KB | None | 0 0
raw download clone embed print report
  1. Logfile of random's system information tool 1.16 (written by random/random)
  2. Run by Jan at 2017-05-18 11:08:24
  3. Microsoft Windows 10 Home
  4. System drive C: has 131 GB (34%) free of 381 GB
  5. Total RAM: 8078 MB (56% free)
  6. X64
  7.  
  8. Logfile of Trend Micro HijackThis v2.0.4
  9. Scan saved at 11:08:32, on 18. 5. 2017
  10. Platform: Unknown Windows (WinNT 6.02.1008)
  11. MSIE: Internet Explorer v11.0 (11.00.14393.0953)
  12. Boot mode: Normal
  13.  
  14. Running processes:
  15. C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
  16. C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
  17. C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
  18. C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
  19. C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
  20. C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
  21. C:\Users\Jan\AppData\Local\Microsoft\OneDrive\OneDrive.exe
  22. C:\Program Files (x86)\BlueStacks\HD-Agent.exe
  23. C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
  24. C:\Program Files (x86)\Steam\Steam.exe
  25. C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
  26. C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
  27. C:\Program Files\trend micro\Jan_RSITx64.exe
  28.  
  29. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com
  30. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  31. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
  32. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
  33. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  34. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  35. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
  36. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
  37. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
  38. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  39. R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://unstopweb.biz/wpad.dat?395de1d813876091b11dee6f0f5fa73a31405560
  40. R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
  41. F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
  42. O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
  43. O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
  44. O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
  45. O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
  46. O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
  47. O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
  48. O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
  49. O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
  50. O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
  51. O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe /S
  52. O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
  53. O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
  54. O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
  55. O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
  56. O4 - HKLM\..\Run: [Bonus.SSR.FR12] "C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe" /autorun
  57. O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
  58. O4 - HKLM\..\Run: [SafeQClient] C:\Program Files (x86)\SafeQ\SafeQ_cli.exe
  59. O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
  60. O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
  61. O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jan\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
  62. O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
  63. O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
  64. O4 - HKCU\..\Run: [Discord] C:\Users\Jan\AppData\Local\Discord\app-0.0.297\Discord.exe
  65. O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
  66. O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
  67. O4 - HKCU\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
  68. O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
  69. O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
  70. O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'SYSTEM')
  71. O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'Default user')
  72. O8 - Extra context menu item: &Enviar para o OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
  73. O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
  74. O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
  75. O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
  76. O9 - Extra button: Clique para Telefonar do Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
  77. O9 - Extra 'Tools' menuitem: Clique para Telefonar do Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
  78. O9 - Extra button: &Anotaçoes Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
  79. O9 - Extra 'Tools' menuitem: &Anotaçoes Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
  80. O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
  81. O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
  82. O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
  83. O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
  84. O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
  85. O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
  86. O23 - Service: ABBYY FineReader 12 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.12.0) - ABBYY Production LLC - C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe
  87. O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
  88. O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  89. O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
  90. O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
  91. O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
  92. O23 - Service: ArcGIS License Manager - Flexera Software LLC - C:\Program Files (x86)\ArcGIS\License10.3\bin\lmgrd.exe
  93. O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
  94. O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
  95. O23 - Service: Asus WebStorage Windows Service - Unknown owner - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
  96. O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
  97. O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
  98. O23 - Service: @oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
  99. O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
  100. O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
  101. O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
  102. O23 - Service: BlueStacks Plus Android Service (BstHdPlusAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe
  103. O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
  104. O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
  105. O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
  106. O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
  107. O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
  108. O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
  109. O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
  110. O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
  111. O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  112. O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  113. O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
  114. O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
  115. O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
  116. O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
  117. O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  118. O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
  119. O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
  120. O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  121. O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
  122. O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
  123. O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
  124. O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
  125. O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
  126. O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
  127. O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
  128. O23 - Service: Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
  129. O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
  130. O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
  131. O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
  132. O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
  133. O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
  134. O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
  135. O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
  136. O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  137. O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
  138. O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
  139. O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
  140. O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
  141. O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
  142. O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
  143. O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
  144. O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
  145. O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
  146. O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
  147. O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
  148. O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
  149. O23 - Service: Wondershare Application Framework Service (WsAppService) - Unknown owner - C:\Program Files (x86)\Wondershare\WAF\2.3.2.220\WsAppService.exe (file missing)
  150.  
  151. --
  152. End of file - 16937 bytes
  153.  
  154. ====== Enumerating Processes ======
  155.  
  156. C:\WINDOWS\system32\winlogon.exe
  157. C:\WINDOWS\system32\lsass.exe
  158. C:\WINDOWS\system32\svchost.exe -k DcomLaunch
  159. C:\WINDOWS\system32\svchost.exe -k RPCSS
  160. C:\WINDOWS\system32\dwm.exe
  161. C:\WINDOWS\system32\svchost.exe -k netsvcs
  162. C:\WINDOWS\System32\svchost.exe -k NetworkService
  163. C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
  164. C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
  165. C:\WINDOWS\system32\svchost.exe -k LocalService
  166. "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1803f6ec-c136-40b8-b94a-24d7a173c774 -SystemEventPortName:HostProcess-4d163c69-bad8-4906-923e-f43d4cdfc7c2 -IoCancelEventPortName:HostProcess-0670ca7f-a424-46ba-a7b0-6e2a0a992619 -NonStateChangingEventPortName:HostProcess-27f92a2d-b8be-4725-b772-b6394b48f5e2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e3b9d20d-b12c-4981-acdc-562780cb7be5 -DeviceGroupId:WudfDefaultDevicePool
  167. "C:\WINDOWS\system32\nvvsvc.exe"
  168. C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
  169. C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
  170. C:\WINDOWS\system32\dashost.exe
  171. C:\WINDOWS\system32\igfxCUIService.exe
  172. C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
  173. C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
  174. C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
  175. "C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
  176. "C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
  177. C:\WINDOWS\system32\WLANExt.exe 1704213323360
  178. \??\C:\WINDOWS\system32\conhost.exe 0x4
  179. C:\WINDOWS\System32\spoolsv.exe
  180. C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
  181. "C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe"
  182. "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe"
  183. C:\WINDOWS\system32\BtwRSupportService.exe
  184. C:\WINDOWS\System32\svchost.exe -k utcsvc
  185. "C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe" -service
  186. "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
  187. "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
  188. "C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe"
  189. "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
  190. "C:\Program Files\Intel\iCLS Client\HeciServer.exe"
  191. "C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
  192. "c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
  193. "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
  194. C:\WINDOWS\system32\svchost.exe -k imgsvc
  195. C:\WINDOWS\system32\svchost.exe -k appmodel
  196. C:\WINDOWS\system32\SearchIndexer.exe /Embedding
  197. C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
  198. "C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
  199. "C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe"
  200. "C:\Program Files\Windows Media Player\wmpnetwk.exe"
  201. C:\WINDOWS\system32\sihost.exe
  202. C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
  203. C:\WINDOWS\system32\wbem\wmiprvse.exe
  204. "C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
  205. "C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
  206. C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
  207. C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
  208. C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
  209. C:\WINDOWS\system32\taskhostw.exe
  210. "C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe"
  211. "C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
  212. "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
  213. "C:\Program Files\ASUS\P4G\BatteryLife.exe"
  214. C:\WINDOWS\system32\igfxEM.exe
  215. "C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
  216. C:\WINDOWS\system32\igfxHK.exe
  217. C:\WINDOWS\system32\igfxTray.exe
  218. "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4
  219. "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
  220. "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
  221. C:\Windows\System32\RuntimeBroker.exe -Embedding
  222. "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
  223. "C:\Program Files\Windows Defender\MSASCuiL.exe"
  224. "C:\Users\Jan\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
  225. "C:\Program Files (x86)\BlueStacks\HD-Agent.exe"
  226. "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe"
  227. "C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE15\CSISYN~1.EXE" -Embedding
  228. C:\WINDOWS\system32\wbem\WmiApSrv.exe
  229. "C:\Program Files (x86)\ArcGIS\License10.3\bin\lmgrd.exe"
  230. \??\C:\WINDOWS\system32\conhost.exe 0x4
  231. "C:\Program Files (x86)\ArcGIS\License10.3\bin\lmgrd.exe" -c "C:\Program Files (x86)\ArcGIS\License10.3\bin\service.txt" -l "C:\Program Files (x86)\ArcGIS\License10.3\bin\lmgrd9.log" -z -s -local
  232. "C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe"
  233. "C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
  234. "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
  235. "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
  236. C:\Program Files\Windows Defender\MpCmdRun.exe
  237. "C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
  238. "C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
  239. "C:\Program Files\Microsoft Office\Office15\WINWORD.EXE" /n "C:\Users\Jan\Desktop\MODELOVÁNÍ.docx
  240. C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
  241. "C:\Program Files (x86)\Steam\Steam.exe"
  242. "C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" "-cachedir=C:\Users\Jan\AppData\Local\Steam\htmlcache" "-steampid=1896" "-buildid=1493162727" "-steamid=0" --disable-gpu-compositing --disable-gpu --process-per-tab --disable-spell-checking --disable-out-of-process-pac --disable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
  243. "C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
  244. "C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --disable-smooth-scrolling --enable-pinch --primordial-pipe-token=CD8888AD20B946189D496F7F1C78E170 --lang=en-US --lang=cs-CZ --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --service-request-channel-token=CD8888AD20B946189D496F7F1C78E170 --renderer-client-id=2 --mojo-platform-channel-handle=1516 /prefetch:1
  245. C:\WINDOWS\explorer.exe
  246. "C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
  247. "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
  248. C:\Program Files (x86)\ArcGIS\License10.3\bin\ARCGIS.exe
  249. "C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
  250. "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
  251. \??\C:\WINDOWS\system32\conhost.exe 0x4
  252. C:\WINDOWS\system32\AUDIODG.EXE 0x4bc
  253. C:\Windows\System32\smartscreen.exe -Embedding
  254. C:\WINDOWS\system32\taskhostw.exe
  255. C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
  256. "D:\Download\RSITx64.exe"
  257. C:\WINDOWS\system32\wbem\wmiprvse.exe
  258.  
  259. ====== Scheduled tasks folder ======
  260.  
  261. C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
  262. C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
  263. C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
  264. C:\WINDOWS\system32\tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-xawier01@gmail.com - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
  265. C:\WINDOWS\system32\tasks\ASUS InstantOn Config - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
  266. C:\WINDOWS\system32\tasks\ASUS Live Update1 - C:\Program Files (x86) -critical
  267. C:\WINDOWS\system32\tasks\ASUS Live Update2 - C:\Program Files (x86) -check
  268. C:\WINDOWS\system32\tasks\ASUS P4G - C:\Program Files\ASUS\P4G\BatteryLife.exe
  269. C:\WINDOWS\system32\tasks\ASUS Smart Gesture Launcher - "C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe"
  270. C:\WINDOWS\system32\tasks\ASUS Splendid ACMON - C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
  271. C:\WINDOWS\system32\tasks\ASUS Splendid ColorU - C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
  272. C:\WINDOWS\system32\tasks\ASUS USB Charger Plus - "C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
  273. C:\WINDOWS\system32\tasks\AsusVibeSchedule - "C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe" /start
  274. C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
  275. C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
  276. C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
  277. C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\Jan\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
  278. C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
  279. C:\WINDOWS\system32\tasks\Opera scheduled Autoupdate 1469091417 - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate $(Arg0)
  280. C:\WINDOWS\system32\tasks\RtHDVBg - "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4
  281. C:\WINDOWS\system32\tasks\RtHDVBg_ListenToDevice - "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
  282. C:\WINDOWS\system32\tasks\RTKCPL - "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
  283. C:\WINDOWS\system32\tasks\Update Checker - C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe
  284. C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{3BAF0A95-1555-4DC9-87F7-3420FF3694B6} - C:\WINDOWS\system32\msfeedssync.exe sync
  285. C:\WINDOWS\system32\tasks\{D5691734-86E2-4663-830D-09E193D786BE} - C:\WINDOWS\system32\pcalua.exe -a "c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Setup\SetupARP.exe" -c /arp
  286. C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
  287. C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
  288. C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
  289. C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
  290. C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
  291. C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
  292. C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
  293. C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
  294. C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
  295. C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
  296. C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
  297. C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
  298. C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
  299. C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
  300. C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
  301. C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
  302. C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
  303. C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
  304. C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
  305. C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
  306. C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
  307. C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
  308. C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
  309. C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
  310. C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
  311. C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
  312. C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
  313. C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
  314. C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
  315. C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
  316. C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
  317. C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
  318. C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
  319. C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
  320. C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
  321. C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
  322. C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
  323. C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
  324. C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
  325. C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
  326. C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
  327. C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
  328. C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
  329. C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
  330. C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
  331. C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
  332. C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
  333. C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
  334. C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
  335. C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
  336. C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
  337. C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
  338. C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
  339. C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
  340. C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
  341. C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
  342. C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
  343. C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
  344. C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
  345. C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
  346. C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
  347. C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
  348. C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
  349. C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
  350. C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
  351. C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
  352. C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
  353. C:\WINDOWS\system32\tasks\Microsoft\VisualStudio\VSIX Auto Update 14 - C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe
  354. C:\WINDOWS\system32\tasks\Microsoft\Office\Office 15 Subscription Heartbeat - %ProgramFiles%\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
  355. C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack - "C:\Program Files\Microsoft Office\Office15\msoia.exe" scan upload mininterval:2880
  356. C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn - "C:\Program Files\Microsoft Office\Office15\msoia.exe" scan upload
  357.  
  358. =========Mozilla firefox=========
  359.  
  360. ProfilePath - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\8obh3292.default
  361.  
  362. prefs.js - "browser.startup.homepage" - "about:home"
  363.  
  364. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
  365. "Description"=Adobe® Flash® Player 24.0.0.221 Plugin
  366. "Path"=C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_221.dll
  367.  
  368. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
  369. "Description"=Intel IPT WebApi plugin
  370. "Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
  371.  
  372. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56]
  373. "Description"=Intel IPT WebApi plugin
  374. "Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
  375.  
  376. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
  377. "Description"=This plugin updates Intel WebAPI component
  378. "Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
  379.  
  380. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
  381. "Description"=Java™ Deployment Toolkit
  382. "Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
  383.  
  384. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
  385. "Description"=Oracle® Next Generation Java™ Plug-In
  386. "Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
  387.  
  388. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
  389. "Description"=Microsoft Lync Plug-in for Firefox
  390. "Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
  391.  
  392. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
  393. "Description"=Ag Player Plugin
  394. "Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll
  395.  
  396. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
  397. "Description"=Microsoft SharePoint Plug-in for Firefox
  398. "Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
  399.  
  400. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
  401. "Description"=WLPG Install MIME type
  402. "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
  403.  
  404. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
  405. "Description"=Google Update
  406. "Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
  407.  
  408. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
  409. "Description"=Google Update
  410. "Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
  411.  
  412. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
  413. "Description"=WildTangent Games App V2 Presence Detector Plugin
  414. "Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
  415.  
  416. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
  417. "Description"=Handles PDFs in-place in Firefox
  418. "Path"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll
  419.  
  420. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
  421. "Description"=Handles PDFs in-place in Firefox
  422. "Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
  423.  
  424. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
  425. "Description"=
  426. "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
  427.  
  428.  
  429. [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
  430. "Description"=Adobe® Flash® Player 24.0.0.221 Plugin
  431. "Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll
  432.  
  433. [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
  434. "Description"=Ag Player Plugin
  435. "Path"=C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll
  436.  
  437. [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
  438. "Description"=Microsoft SharePoint Plug-in for Firefox
  439. "Path"=C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL
  440.  
  441. [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
  442. "Description"=
  443. "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
  444.  
  445.  
  446. C:\Program Files (x86)\Mozilla Firefox\plugins\
  447. npMeetingJoinPluginOC.dll
  448. nppdf32.CZE
  449. nppdf32.dll
  450.  
  451. C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\8obh3292.default\addons.json
  452. Firebug - extension - firebug@software.joehewitt.com
  453.  
  454. C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\8obh3292.default\extensions.json
  455. Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
  456. Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
  457. Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
  458. Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
  459. Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
  460. Firebug - extension - firebug@software.joehewitt.com - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\8obh3292.default\extensions\firebug@software.joehewitt.com.xpi
  461. Adobe Acrobat DC - Create PDF - extension - web2pdfextension.15@web2pdf.adobedotcom - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
  462. Disable TLS Certificate Transparency - extension - disable-cert-transparency@mozilla.org - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\8obh3292.default\features\{a5874bc1-3990-42ca-b10e-35f008bb08f5}\disable-cert-transparency@mozilla.org.xpi
  463. Disable Prefetch - extension - disable-prefetch@mozilla.org - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\8obh3292.default\features\{a5874bc1-3990-42ca-b10e-35f008bb08f5}\disable-prefetch@mozilla.org.xpi
  464. Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\8obh3292.default\features\{a5874bc1-3990-42ca-b10e-35f008bb08f5}\e10srollout@mozilla.org.xpi
  465.  
  466. C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\8obh3292.default\pluginreg.dat
  467. Plugin - Shockwave Flash - 24.0.0.221 - C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_221.dll
  468.  
  469. =========Google Chrome=========
  470.  
  471. C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
  472. Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace Google 0.9
  473. Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
  474. Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
  475. Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
  476. Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
  477. Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
  478. Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
  479. Extension efaidnbmnnnibpcajpcglclefindmkaj 0 Adobe Acrobat 15.1.0.6
  480. Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky Google 1.1
  481. Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
  482. Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
  483. Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.10.0
  484. Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
  485. Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
  486. Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
  487. Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
  488. Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
  489. Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
  490. Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
  491. Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5817.313.0.5
  492. Homepage:
  493. default_search_provider.search_url:
  494. C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Preferences
  495. Homepage:
  496. default_search_provider.search_url:
  497.  
  498. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
  499. "Path"=
  500.  
  501.  
  502. ======Registry dump ======
  503.  
  504.  
  505. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
  506. "DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  507. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
  508. "URL"=http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS
  509.  
  510.  
  511. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
  512. "DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  513. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
  514. "URL"=http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS
  515.  
  516. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
  517. Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-04-11 229064]
  518.  
  519. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
  520. Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17 171704]
  521.  
  522. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
  523. Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~4\Office15\GROOVEEX.DLL [2017-02-23 2351920]
  524.  
  525. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
  526. Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17 171704]
  527.  
  528. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
  529. Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-04-11 163528]
  530.  
  531. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
  532. Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-29 473152]
  533.  
  534. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
  535. Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17 141496]
  536.  
  537. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
  538. Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2017-02-23 1743664]
  539.  
  540. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
  541. Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-29 186944]
  542.  
  543. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
  544. Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17 141496]
  545.  
  546. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
  547. {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17 171704]
  548.  
  549. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
  550. {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17 141496]
  551.  
  552. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  553. "AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01 508128]
  554. "NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-06-15 2398776]
  555. "WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-04-28 631808]
  556.  
  557. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  558. "Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-04-26 3019552]
  559. "OneDrive"=C:\Users\Jan\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-04-14 1518808]
  560. "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-06 9288408]
  561. "DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-12-22 4701888]
  562. "Discord"=C:\Users\Jan\AppData\Local\Discord\app-0.0.297\Discord.exe [2017-01-04 64290304]
  563. "Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2013-02-05 1081224]
  564. "Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-03-14 27545048]
  565. "BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe [2017-03-31 225816]
  566.  
  567. [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
  568. "Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2015-09-24 40336]
  569. "ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2013-05-01 3187360]
  570. "ASUSWebStorage"=C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [2012-12-19 3576784]
  571. "RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-03-08 95192]
  572. "SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
  573. "AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
  574. "Autodesk Desktop App"=C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [2016-07-01 721856]
  575. "Bonus.SSR.FR12"=C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [2016-11-13 1517088]
  576. "LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2017-03-02 5883912]
  577. "SafeQClient"=C:\Program Files (x86)\SafeQ\SafeQ_cli.exe [2015-12-10 493568]
  578. "Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [2017-04-05 1870928]
  579. ""= []
  580.  
  581. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
  582. WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
  583.  
  584. [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
  585. "SecurityProviders" = credssp.dll
  586.  
  587. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
  588.  
  589. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
  590.  
  591. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
  592.  
  593. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
  594. "ConsentPromptBehaviorAdmin"=5
  595. "ConsentPromptBehaviorUser"=3
  596. "DSCAutomationHostEnabled"=2
  597. "EnableCursorSuppression"=1
  598. "EnableUIADesktopToggle"=0
  599. "undockwithoutlogon"=1
  600. "dontdisplaylastusername"=0
  601. "legalnoticecaption"=
  602. "legalnoticetext"=
  603. "shutdownwithoutlogon"=1
  604.  
  605. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  606. ""=
  607.  
  608. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  609. "ForceActiveDesktopOn"=0
  610. "NoActiveDesktop"=1
  611. "NoActiveDesktopChanges"=1
  612.  
  613. [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
  614.  
  615. [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
  616.  
  617.  
  618. [HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
  619. "StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
  620. [HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
  621. "StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
  622.  
  623. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
  624. "midimapper"=midimap.dll
  625. "msacm.imaadpcm"=imaadp32.acm
  626. "msacm.l3acm"=C:\Windows\System32\l3codeca.acm
  627. "msacm.msadpcm"=msadp32.acm
  628. "msacm.msg711"=msg711.acm
  629. "msacm.msgsm610"=msgsm32.acm
  630. "vidc.i420"=iyuv_32.dll
  631. "vidc.iyuv"=iyuv_32.dll
  632. "vidc.mrle"=msrle32.dll
  633. "vidc.msvc"=msvidc32.dll
  634. "vidc.uyvy"=msyuv.dll
  635. "vidc.yuy2"=msyuv.dll
  636. "vidc.yvu9"=tsbyuv.dll
  637. "vidc.yvyu"=msyuv.dll
  638. "wavemapper"=msacm32.drv
  639. "MSVideo8"=VfWWDM32.dll
  640. "wave1"=wdmaud.drv
  641. "midi1"=wdmaud.drv
  642. "mixer1"=wdmaud.drv
  643. "VIDC.FPS1"=frapsv64.dll
  644. "wave"=wdmaud.drv
  645. "midi"=wdmaud.drv
  646. "mixer"=wdmaud.drv
  647. "aux"=wdmaud.drv
  648. "vidc.x264"=x264vfw64.dll
  649. "wave2"=wdmaud.drv
  650. "midi2"=wdmaud.drv
  651. "mixer2"=wdmaud.drv
  652. "aux1"=wdmaud.drv
  653.  
  654. ====== File associations ======
  655.  
  656. .js - edit - C:\Windows\System32\Notepad.exe %1
  657. .js - open - C:\Windows\System32\WScript.exe "%1" %*
  658. .scr - open - C:\WINDOWS\system32\notepad.exe "%1"
  659. .scr - install -
  660. .scr - config -
  661.  
  662. ====== List of files/folders created in the last 1 month ======
  663.  
  664. 2017-05-10 21:57:34 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
  665. 2017-05-10 21:57:34 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
  666. 2017-05-10 21:57:34 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
  667. 2017-05-10 21:57:34 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
  668. 2017-05-10 21:57:34 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
  669. 2017-05-10 21:57:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
  670. 2017-05-10 21:57:33 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
  671. 2017-05-10 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
  672. 2017-05-10 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
  673. 2017-05-10 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
  674. 2017-05-10 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
  675. 2017-05-10 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
  676. 2017-05-10 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
  677. 2017-05-10 21:57:31 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
  678. 2017-05-10 21:57:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
  679. 2017-05-10 21:57:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
  680. 2017-05-10 21:57:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
  681. 2017-05-10 21:57:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
  682. 2017-05-10 21:57:31 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
  683. 2017-05-10 21:57:31 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
  684. 2017-05-10 21:57:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
  685. 2017-05-10 21:57:31 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
  686. 2017-05-10 21:57:30 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
  687. 2017-05-10 21:57:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
  688. 2017-05-10 21:57:30 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
  689. 2017-05-10 21:57:30 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
  690. 2017-05-10 21:57:30 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
  691. 2017-05-10 21:57:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
  692. 2017-05-10 21:57:29 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
  693. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
  694. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
  695. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
  696. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
  697. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
  698. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
  699. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
  700. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
  701. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
  702. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
  703. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
  704. 2017-05-10 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
  705. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
  706. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
  707. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
  708. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
  709. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
  710. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
  711. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
  712. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
  713. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
  714. 2017-05-10 21:57:27 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
  715. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
  716. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
  717. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
  718. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
  719. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
  720. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
  721. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
  722. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
  723. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
  724. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
  725. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
  726. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
  727. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
  728. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
  729. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
  730. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
  731. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
  732. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
  733. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
  734. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
  735. 2017-05-10 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
  736. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
  737. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
  738. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
  739. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
  740. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
  741. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
  742. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
  743. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
  744. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
  745. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
  746. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
  747. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
  748. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
  749. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
  750. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
  751. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
  752. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
  753. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
  754. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
  755. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
  756. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
  757. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
  758. 2017-05-10 21:57:25 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
  759. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
  760. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
  761. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
  762. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
  763. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
  764. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
  765. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
  766. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
  767. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
  768. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsDesktopEngine.exe
  769. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
  770. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
  771. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
  772. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
  773. 2017-05-10 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
  774. 2017-05-10 21:57:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
  775. 2017-05-10 21:57:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
  776. 2017-05-10 21:57:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
  777. 2017-05-10 21:57:23 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
  778. 2017-05-10 21:57:23 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
  779. 2017-05-10 21:57:23 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
  780. 2017-05-10 21:57:23 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
  781. 2017-05-10 21:57:23 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
  782. 2017-05-10 21:57:23 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
  783. 2017-05-10 21:57:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
  784. 2017-05-10 21:57:22 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
  785. 2017-05-10 21:57:21 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
  786. 2017-05-10 21:57:21 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
  787. 2017-05-10 21:57:21 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
  788. 2017-05-10 21:57:21 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
  789. 2017-05-10 21:57:21 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
  790. 2017-05-10 21:57:20 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
  791. 2017-05-10 21:57:20 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
  792. 2017-05-10 21:57:20 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
  793. 2017-05-10 21:57:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
  794. 2017-05-10 21:57:19 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
  795. 2017-05-10 21:57:19 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
  796. 2017-05-10 21:57:19 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
  797. 2017-05-10 21:57:18 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
  798. 2017-05-10 21:57:18 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
  799. 2017-05-10 21:57:18 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
  800. 2017-05-10 21:57:17 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
  801. 2017-05-10 21:57:17 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
  802. 2017-05-10 21:57:17 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
  803. 2017-05-10 21:57:17 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
  804. 2017-05-10 21:57:17 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
  805. 2017-05-10 21:57:17 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
  806. 2017-05-10 21:57:17 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
  807. 2017-05-10 21:57:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
  808. 2017-05-10 21:57:16 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
  809. 2017-05-10 21:57:16 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
  810. 2017-05-10 21:57:16 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
  811. 2017-05-10 21:57:16 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
  812. 2017-05-10 21:57:16 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
  813. 2017-05-10 21:57:16 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
  814. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
  815. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
  816. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
  817. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
  818. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
  819. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
  820. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
  821. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
  822. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
  823. 2017-05-10 21:57:15 ----A---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
  824. 2017-05-10 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
  825. 2017-05-10 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
  826. 2017-05-10 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
  827. 2017-05-10 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
  828. 2017-05-10 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\input.dll
  829. 2017-05-10 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
  830. 2017-05-10 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
  831. 2017-05-10 21:57:14 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
  832. 2017-05-10 21:57:13 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
  833. 2017-05-10 21:57:13 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
  834. 2017-05-10 21:57:13 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
  835. 2017-05-10 21:57:13 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
  836. 2017-05-10 21:57:13 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
  837. 2017-05-10 21:57:13 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
  838. 2017-05-10 21:57:13 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
  839. 2017-05-10 21:57:13 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
  840. 2017-05-10 21:57:13 ----A---- C:\WINDOWS\SYSWOW64\adsnt.dll
  841. 2017-05-10 21:57:12 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
  842. 2017-05-10 21:57:12 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
  843. 2017-05-10 21:57:12 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
  844. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
  845. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
  846. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
  847. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
  848. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
  849. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
  850. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
  851. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
  852. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
  853. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
  854. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
  855. 2017-05-10 21:57:11 ----A---- C:\WINDOWS\SYSWOW64\BthTelemetry.dll
  856. 2017-05-10 21:57:09 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
  857. 2017-05-10 21:57:09 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
  858. 2017-05-10 21:57:08 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
  859. 2017-05-10 21:57:08 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
  860. 2017-05-10 21:57:08 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
  861. 2017-05-10 21:57:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
  862. 2017-05-10 21:57:08 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
  863. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
  864. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\WwaApi.dll
  865. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\wuuhext.dll
  866. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
  867. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
  868. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
  869. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\Windows.UI.dll
  870. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
  871. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
  872. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
  873. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\WebcamUi.dll
  874. 2017-05-10 21:57:07 ----A---- C:\WINDOWS\system32\mssprxy.dll
  875. 2017-05-10 21:57:06 ----A---- C:\WINDOWS\system32\mssrch.dll
  876. 2017-05-10 21:57:05 ----A---- C:\WINDOWS\system32\usocore.dll
  877. 2017-05-10 21:57:04 ----A---- C:\WINDOWS\system32\WWAHost.exe
  878. 2017-05-10 21:57:04 ----A---- C:\WINDOWS\system32\MusNotification.exe
  879. 2017-05-10 21:56:59 ----A---- C:\WINDOWS\system32\updatehandlers.dll
  880. 2017-05-10 21:56:56 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
  881. 2017-05-10 21:56:54 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
  882. 2017-05-10 21:56:54 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
  883. 2017-05-10 21:56:53 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
  884. 2017-05-10 21:56:53 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
  885. 2017-05-10 21:56:53 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
  886. 2017-05-10 21:56:53 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
  887. 2017-05-10 21:56:53 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
  888. 2017-05-10 21:56:53 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
  889. 2017-05-10 21:56:53 ----A---- C:\WINDOWS\system32\InstallAgent.exe
  890. 2017-05-10 21:56:53 ----A---- C:\WINDOWS\system32\efswrt.dll
  891. 2017-05-10 21:56:53 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
  892. 2017-05-10 21:56:52 ----A---- C:\WINDOWS\system32\wpnapps.dll
  893. 2017-05-10 21:56:52 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
  894. 2017-05-10 21:56:52 ----A---- C:\WINDOWS\system32\StoreAgent.dll
  895. 2017-05-10 21:56:52 ----A---- C:\WINDOWS\system32\SensorsApi.dll
  896. 2017-05-10 21:56:52 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
  897. 2017-05-10 21:56:52 ----A---- C:\WINDOWS\system32\mfnetcore.dll
  898. 2017-05-10 21:56:52 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
  899. 2017-05-10 21:56:52 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
  900. 2017-05-10 21:56:52 ----A---- C:\WINDOWS\system32\EmailApis.dll
  901. 2017-05-10 21:56:51 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
  902. 2017-05-10 21:56:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
  903. 2017-05-10 21:56:51 ----A---- C:\WINDOWS\system32\mfcore.dll
  904. 2017-05-10 21:56:51 ----A---- C:\WINDOWS\system32\LicenseManager.dll
  905. 2017-05-10 21:56:50 ----A---- C:\WINDOWS\system32\Windows.Media.dll
  906. 2017-05-10 21:56:50 ----A---- C:\WINDOWS\system32\rdpudd.dll
  907. 2017-05-10 21:56:50 ----A---- C:\WINDOWS\system32\KernelBase.dll
  908. 2017-05-10 21:56:49 ----A---- C:\WINDOWS\system32\windows.storage.dll
  909. 2017-05-10 21:56:49 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
  910. 2017-05-10 21:56:49 ----A---- C:\WINDOWS\system32\oleaut32.dll
  911. 2017-05-10 21:56:49 ----A---- C:\WINDOWS\system32\localspl.dll
  912. 2017-05-10 21:56:49 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
  913. 2017-05-10 21:56:48 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
  914. 2017-05-10 21:56:48 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
  915. 2017-05-10 21:56:48 ----A---- C:\WINDOWS\system32\shell32.dll
  916. 2017-05-10 21:56:47 ----A---- C:\WINDOWS\system32\mstscax.dll
  917. 2017-05-10 21:56:46 ----A---- C:\WINDOWS\system32\smartscreen.exe
  918. 2017-05-10 21:56:46 ----A---- C:\WINDOWS\system32\rdpcorets.dll
  919. 2017-05-10 21:56:46 ----A---- C:\WINDOWS\system32\diagtrack.dll
  920. 2017-05-10 21:56:45 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
  921. 2017-05-10 21:56:45 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
  922. 2017-05-10 21:56:45 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
  923. 2017-05-10 21:56:45 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
  924. 2017-05-10 21:56:44 ----A---- C:\WINDOWS\system32\wmp.dll
  925. 2017-05-10 21:56:44 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
  926. 2017-05-10 21:56:44 ----A---- C:\WINDOWS\system32\puiobj.dll
  927. 2017-05-10 21:56:43 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
  928. 2017-05-10 21:56:43 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
  929. 2017-05-10 21:56:42 ----A---- C:\WINDOWS\system32\wpncore.dll
  930. 2017-05-10 21:56:42 ----A---- C:\WINDOWS\system32\wmpps.dll
  931. 2017-05-10 21:56:42 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
  932. 2017-05-10 21:56:42 ----A---- C:\WINDOWS\system32\services.exe
  933. 2017-05-10 21:56:42 ----A---- C:\WINDOWS\system32\ngcsvc.dll
  934. 2017-05-10 21:56:42 ----A---- C:\WINDOWS\system32\mf.dll
  935. 2017-05-10 21:56:41 ----A---- C:\WINDOWS\system32\usercpl.dll
  936. 2017-05-10 21:56:41 ----A---- C:\WINDOWS\system32\rdpcore.dll
  937. 2017-05-10 21:56:41 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
  938. 2017-05-10 21:56:41 ----A---- C:\WINDOWS\system32\mstsc.exe
  939. 2017-05-10 21:56:41 ----A---- C:\WINDOWS\system32\mprddm.dll
  940. 2017-05-10 21:56:41 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
  941. 2017-05-10 21:56:41 ----A---- C:\WINDOWS\system32\drivers\srv.sys
  942. 2017-05-10 21:56:40 ----A---- C:\WINDOWS\system32\wiaservc.dll
  943. 2017-05-10 21:56:40 ----A---- C:\WINDOWS\system32\tsmf.dll
  944. 2017-05-10 21:56:40 ----A---- C:\WINDOWS\system32\SpaceControl.dll
  945. 2017-05-10 21:56:40 ----A---- C:\WINDOWS\system32\mfps.dll
  946. 2017-05-10 21:56:40 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
  947. 2017-05-10 21:56:39 ----A---- C:\WINDOWS\system32\msi.dll
  948. 2017-05-10 21:56:39 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
  949. 2017-05-10 21:56:39 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
  950. 2017-05-10 21:56:37 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
  951. 2017-05-10 21:56:37 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
  952. 2017-05-10 21:56:27 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
  953. 2017-05-10 21:56:27 ----A---- C:\WINDOWS\system32\fvewiz.dll
  954. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\wksprt.exe
  955. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\Unistore.dll
  956. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\storewuauth.dll
  957. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\rdpencom.dll
  958. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\rdpclip.exe
  959. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\rastlsext.dll
  960. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\rastls.dll
  961. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
  962. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\fvecpl.dll
  963. 2017-05-10 21:56:26 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
  964. 2017-05-10 21:56:25 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
  965. 2017-05-10 21:56:25 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
  966. 2017-05-10 21:56:25 ----A---- C:\WINDOWS\system32\ie4uinit.exe
  967. 2017-05-10 21:56:24 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
  968. 2017-05-10 21:56:23 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
  969. 2017-05-10 21:56:23 ----A---- C:\WINDOWS\system32\msfeeds.dll
  970. 2017-05-10 21:56:22 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
  971. 2017-05-10 21:56:22 ----A---- C:\WINDOWS\system32\urlmon.dll
  972. 2017-05-10 21:56:22 ----A---- C:\WINDOWS\system32\iedkcs32.dll
  973. 2017-05-10 21:56:21 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
  974. 2017-05-10 21:56:21 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
  975. 2017-05-10 21:56:20 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
  976. 2017-05-10 21:56:20 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
  977. 2017-05-10 21:56:17 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
  978. 2017-05-10 21:56:15 ----A---- C:\WINDOWS\system32\Chakra.dll
  979. 2017-05-10 21:56:14 ----A---- C:\WINDOWS\system32\mshtmled.dll
  980. 2017-05-10 21:56:13 ----A---- C:\WINDOWS\system32\win32kbase.sys
  981. 2017-05-10 21:56:13 ----A---- C:\WINDOWS\system32\odbcconf.dll
  982. 2017-05-10 21:56:13 ----A---- C:\WINDOWS\system32\ieframe.dll
  983. 2017-05-10 21:56:13 ----A---- C:\WINDOWS\system32\dxtrans.dll
  984. 2017-05-10 21:56:13 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
  985. 2017-05-10 21:56:12 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
  986. 2017-05-10 21:56:12 ----A---- C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
  987. 2017-05-10 21:56:12 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
  988. 2017-05-10 21:56:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
  989. 2017-05-10 21:56:12 ----A---- C:\WINDOWS\system32\Geolocation.dll
  990. 2017-05-10 21:56:11 ----A---- C:\WINDOWS\system32\mshtml.dll
  991. 2017-05-10 21:56:11 ----A---- C:\WINDOWS\system32\FlightSettings.dll
  992. 2017-05-10 21:56:10 ----A---- C:\WINDOWS\system32\wininet.dll
  993. 2017-05-10 21:56:10 ----A---- C:\WINDOWS\system32\ole32.dll
  994. 2017-05-10 21:56:10 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
  995. 2017-05-10 21:56:10 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
  996. 2017-05-10 21:56:10 ----A---- C:\WINDOWS\system32\msdtctm.dll
  997. 2017-05-10 21:56:10 ----A---- C:\WINDOWS\system32\iertutil.dll
  998. 2017-05-10 21:56:09 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
  999. 2017-05-10 21:56:09 ----A---- C:\WINDOWS\system32\PlayToManager.dll
  1000. 2017-05-10 21:56:09 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
  1001. 2017-05-10 21:56:09 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
  1002. 2017-05-10 21:56:09 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
  1003. 2017-05-10 21:56:09 ----A---- C:\WINDOWS\system32\d2d1.dll
  1004. 2017-05-10 21:56:09 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
  1005. 2017-05-10 21:56:08 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
  1006. 2017-05-10 21:56:08 ----A---- C:\WINDOWS\system32\Windows.Web.dll
  1007. 2017-05-10 21:56:08 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
  1008. 2017-05-10 21:56:08 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
  1009. 2017-05-10 21:56:08 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
  1010. 2017-05-10 21:56:08 ----A---- C:\WINDOWS\system32\TokenBroker.dll
  1011. 2017-05-10 21:56:08 ----A---- C:\WINDOWS\system32\aadcloudap.dll
  1012. 2017-05-10 21:56:07 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
  1013. 2017-05-10 21:56:07 ----A---- C:\WINDOWS\system32\edgehtml.dll
  1014. 2017-05-10 21:56:05 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
  1015. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
  1016. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
  1017. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
  1018. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
  1019. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
  1020. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
  1021. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
  1022. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
  1023. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\SyncSettings.dll
  1024. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\RDXService.dll
  1025. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
  1026. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
  1027. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
  1028. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\DisplayManager.dll
  1029. 2017-05-10 21:56:04 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
  1030. 2017-05-10 21:56:03 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
  1031. 2017-05-10 21:56:03 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
  1032. 2017-05-10 21:56:03 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
  1033. 2017-05-10 21:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
  1034. 2017-05-10 21:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
  1035. 2017-05-10 21:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
  1036. 2017-05-10 21:56:01 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
  1037. 2017-05-10 21:56:01 ----A---- C:\WINDOWS\system32\jscript9.dll
  1038. 2017-05-10 21:56:00 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
  1039. 2017-05-10 21:56:00 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
  1040. 2017-05-10 21:56:00 ----A---- C:\WINDOWS\system32\DWrite.dll
  1041. 2017-05-10 21:56:00 ----A---- C:\WINDOWS\system32\aadtb.dll
  1042. 2017-05-10 21:55:59 ----A---- C:\WINDOWS\system32\wlidsvc.dll
  1043. 2017-05-10 21:55:59 ----A---- C:\WINDOWS\system32\LogonController.dll
  1044. 2017-05-10 21:55:59 ----A---- C:\WINDOWS\system32\dwmcore.dll
  1045. 2017-05-10 21:55:58 ----A---- C:\WINDOWS\system32\FntCache.dll
  1046. 2017-05-10 21:55:57 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
  1047. 2017-05-10 21:55:57 ----A---- C:\WINDOWS\system32\rasmans.dll
  1048. 2017-05-10 21:55:57 ----A---- C:\WINDOWS\system32\ieproxy.dll
  1049. 2017-05-10 21:55:57 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
  1050. 2017-05-10 21:55:57 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
  1051. 2017-05-10 21:55:57 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
  1052. 2017-05-10 21:55:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
  1053. 2017-05-10 21:55:56 ----A---- C:\WINDOWS\system32\thumbcache.dll
  1054. 2017-05-10 21:55:56 ----A---- C:\WINDOWS\system32\browserbroker.dll
  1055. 2017-05-10 21:55:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
  1056. 2017-05-10 21:55:55 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
  1057. 2017-05-10 21:55:55 ----A---- C:\WINDOWS\system32\ConhostV2.dll
  1058. 2017-05-10 21:55:55 ----A---- C:\WINDOWS\system32\browser_broker.exe
  1059. 2017-05-10 21:55:54 ----A---- C:\WINDOWS\system32\vbscript.dll
  1060. 2017-05-10 21:55:53 ----A---- C:\WINDOWS\system32\credprovhost.dll
  1061. 2017-05-10 21:55:53 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
  1062. 2017-05-10 21:55:52 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
  1063. 2017-05-10 21:55:52 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
  1064. 2017-05-10 21:55:52 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
  1065. 2017-05-10 21:55:52 ----A---- C:\WINDOWS\system32\LocationFramework.dll
  1066. 2017-05-10 21:55:52 ----A---- C:\WINDOWS\system32\iepeers.dll
  1067. 2017-05-10 21:55:52 ----A---- C:\WINDOWS\system32\dialclient.dll
  1068. 2017-05-10 21:55:52 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
  1069. 2017-05-10 21:55:52 ----A---- C:\WINDOWS\system32\catsrvps.dll
  1070. 2017-05-10 21:55:51 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
  1071. 2017-05-10 21:55:51 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
  1072. 2017-05-10 21:55:51 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
  1073. 2017-05-10 21:55:51 ----A---- C:\WINDOWS\system32\webcheck.dll
  1074. 2017-05-10 21:55:51 ----A---- C:\WINDOWS\system32\shutdownux.dll
  1075. 2017-05-10 21:55:51 ----A---- C:\WINDOWS\system32\CellularAPI.dll
  1076. 2017-05-10 21:55:48 ----A---- C:\WINDOWS\system32\GamePanel.exe
  1077. 2017-05-10 21:55:48 ----A---- C:\WINDOWS\system32\apprepsync.dll
  1078. 2017-05-10 21:55:48 ----A---- C:\WINDOWS\system32\apprepapi.dll
  1079. 2017-05-10 21:55:46 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
  1080. 2017-05-10 21:55:46 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
  1081. 2017-05-10 21:55:46 ----A---- C:\WINDOWS\system32\CertEnroll.dll
  1082. 2017-05-10 21:55:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
  1083. 2017-05-10 21:55:45 ----A---- C:\WINDOWS\system32\oleacc.dll
  1084. 2017-05-10 21:55:45 ----A---- C:\WINDOWS\system32\msxml6.dll
  1085. 2017-05-10 21:55:45 ----A---- C:\WINDOWS\system32\dlnashext.dll
  1086. 2017-05-10 21:55:45 ----A---- C:\WINDOWS\system32\AuthBroker.dll
  1087. 2017-05-10 21:55:45 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
  1088. 2017-05-10 21:55:44 ----A---- C:\WINDOWS\system32\wuaueng.dll
  1089. 2017-05-10 21:55:44 ----A---- C:\WINDOWS\system32\win32kfull.sys
  1090. 2017-05-10 21:55:44 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
  1091. 2017-05-10 21:55:44 ----A---- C:\WINDOWS\system32\sppobjs.dll
  1092. 2017-05-10 21:55:44 ----A---- C:\WINDOWS\system32\AppContracts.dll
  1093. 2017-05-10 21:55:43 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
  1094. 2017-05-10 21:55:43 ----A---- C:\WINDOWS\system32\twinui.dll
  1095. 2017-05-10 21:55:43 ----A---- C:\WINDOWS\system32\ShareHost.dll
  1096. 2017-05-10 21:55:43 ----A---- C:\WINDOWS\system32\deviceaccess.dll
  1097. 2017-05-10 21:55:43 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
  1098. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
  1099. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
  1100. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
  1101. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
  1102. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
  1103. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
  1104. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\gdi32full.dll
  1105. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
  1106. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\Family.Client.dll
  1107. 2017-05-10 21:55:40 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
  1108. 2017-05-10 21:55:39 ----A---- C:\WINDOWS\system32\WinTypes.dll
  1109. 2017-05-10 21:55:39 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
  1110. 2017-05-10 21:55:39 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
  1111. 2017-05-10 21:55:39 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
  1112. 2017-05-10 21:55:39 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
  1113. 2017-05-10 21:55:39 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
  1114. 2017-05-10 21:55:39 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
  1115. 2017-05-10 21:55:39 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
  1116. 2017-05-10 21:55:39 ----A---- C:\WINDOWS\system32\combase.dll
  1117. 2017-05-10 21:55:38 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
  1118. 2017-05-10 21:55:38 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
  1119. 2017-05-10 21:55:38 ----A---- C:\WINDOWS\system32\mispace.dll
  1120. 2017-05-10 21:55:38 ----A---- C:\WINDOWS\system32\drivers\cng.sys
  1121. 2017-05-10 21:55:38 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
  1122. 2017-05-10 21:55:37 ----A---- C:\WINDOWS\system32\storagewmi.dll
  1123. 2017-05-10 21:55:37 ----A---- C:\WINDOWS\explorer.exe
  1124. 2017-05-10 21:55:36 ----A---- C:\WINDOWS\system32\wsp_fs.dll
  1125. 2017-05-10 21:55:36 ----A---- C:\WINDOWS\system32\usermgr.dll
  1126. 2017-05-10 21:55:36 ----A---- C:\WINDOWS\system32\OpcServices.dll
  1127. 2017-05-10 21:55:36 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
  1128. 2017-05-10 21:55:36 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
  1129. 2017-05-10 21:55:35 ----A---- C:\WINDOWS\system32\wsp_sr.dll
  1130. 2017-05-10 21:55:35 ----A---- C:\WINDOWS\system32\wsp_health.dll
  1131. 2017-05-10 21:55:35 ----A---- C:\WINDOWS\system32\winsrv.dll
  1132. 2017-05-10 21:55:35 ----A---- C:\WINDOWS\system32\updatepolicy.dll
  1133. 2017-05-10 21:55:35 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
  1134. 2017-05-10 21:55:35 ----A---- C:\WINDOWS\system32\lsasrv.dll
  1135. 2017-05-10 21:55:35 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
  1136. 2017-05-10 21:55:35 ----A---- C:\WINDOWS\system32\crypt32.dll
  1137. 2017-05-10 21:55:34 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
  1138. 2017-05-10 21:55:34 ----A---- C:\WINDOWS\system32\uReFS.dll
  1139. 2017-05-10 21:55:34 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
  1140. 2017-05-10 21:55:34 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
  1141. 2017-05-10 21:55:34 ----A---- C:\WINDOWS\system32\audiosrv.dll
  1142. 2017-05-10 21:55:33 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
  1143. 2017-05-10 21:55:33 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
  1144. 2017-05-10 21:55:33 ----A---- C:\WINDOWS\system32\resutils.dll
  1145. 2017-05-10 21:55:33 ----A---- C:\WINDOWS\system32\kernel32.dll
  1146. 2017-05-10 21:55:33 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
  1147. 2017-05-10 21:55:33 ----A---- C:\WINDOWS\system32\authui.dll
  1148. 2017-05-10 21:55:32 ----A---- C:\WINDOWS\system32\wbengine.exe
  1149. 2017-05-10 21:55:32 ----A---- C:\WINDOWS\system32\rpcss.dll
  1150. 2017-05-10 21:55:32 ----A---- C:\WINDOWS\system32\ResetEngine.dll
  1151. 2017-05-10 21:55:32 ----A---- C:\WINDOWS\system32\dafBth.dll
  1152. 2017-05-10 21:55:32 ----A---- C:\WINDOWS\system32\bisrv.dll
  1153. 2017-05-10 21:55:31 ----A---- C:\WINDOWS\system32\VSSVC.exe
  1154. 2017-05-10 21:55:31 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
  1155. 2017-05-10 21:55:31 ----A---- C:\WINDOWS\system32\securekernel.exe
  1156. 2017-05-10 21:55:31 ----A---- C:\WINDOWS\system32\DevicePairing.dll
  1157. 2017-05-10 21:55:31 ----A---- C:\WINDOWS\system32\AppReadiness.dll
  1158. 2017-05-10 21:55:30 ----A---- C:\WINDOWS\system32\wimserv.exe
  1159. 2017-05-10 21:55:30 ----A---- C:\WINDOWS\system32\wimgapi.dll
  1160. 2017-05-10 21:55:30 ----A---- C:\WINDOWS\system32\virtdisk.dll
  1161. 2017-05-10 21:55:30 ----A---- C:\WINDOWS\system32\spwizeng.dll
  1162. 2017-05-10 21:55:30 ----A---- C:\WINDOWS\system32\spaceman.exe
  1163. 2017-05-10 21:55:30 ----A---- C:\WINDOWS\system32\ReAgent.dll
  1164. 2017-05-10 21:55:30 ----A---- C:\WINDOWS\system32\input.dll
  1165. 2017-05-10 21:55:30 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
  1166. 2017-05-10 21:55:30 ----A---- C:\WINDOWS\system32\CPFilters.dll
  1167. 2017-05-10 21:55:29 ----A---- C:\WINDOWS\system32\winlogon.exe
  1168. 2017-05-10 21:55:29 ----A---- C:\WINDOWS\system32\vds.exe
  1169. 2017-05-10 21:55:29 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
  1170. 2017-05-10 21:55:29 ----A---- C:\WINDOWS\system32\LocationApi.dll
  1171. 2017-05-10 21:55:29 ----A---- C:\WINDOWS\system32\imapi2.dll
  1172. 2017-05-10 21:55:29 ----A---- C:\WINDOWS\system32\cryptui.dll
  1173. 2017-05-10 21:55:29 ----A---- C:\WINDOWS\system32\bthserv.dll
  1174. 2017-05-10 21:55:29 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
  1175. 2017-05-10 21:55:29 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
  1176. 2017-05-10 21:55:28 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
  1177. 2017-05-10 21:55:28 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
  1178. 2017-05-10 21:55:28 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
  1179. 2017-05-10 21:55:28 ----A---- C:\WINDOWS\system32\vaultcli.dll
  1180. 2017-05-10 21:55:28 ----A---- C:\WINDOWS\system32\ConsentUX.dll
  1181. 2017-05-10 21:55:28 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
  1182. 2017-05-10 21:55:28 ----A---- C:\WINDOWS\system32\appidsvc.dll
  1183. 2017-05-10 21:55:28 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
  1184. 2017-05-10 21:55:28 ----A---- C:\WINDOWS\system32\adsnt.dll
  1185. 2017-04-23 18:11:57 ----AD---- C:\Program Files (x86)\PDFTools
  1186.  
  1187. ====== List of files/folders modified in the last 1 month ======
  1188.  
  1189. 2017-05-18 11:08:27 ----D---- C:\Program Files\trend micro
  1190. 2017-05-18 11:07:31 ----D---- C:\WINDOWS\Temp
  1191. 2017-05-18 11:06:02 ----D---- C:\WINDOWS\AppReadiness
  1192. 2017-05-18 10:31:17 ----D---- C:\WINDOWS\system32\sru
  1193. 2017-05-18 10:30:30 ----D---- C:\WINDOWS\system32\SleepStudy
  1194. 2017-05-17 22:38:14 ----RD---- C:\WINDOWS\Microsoft.NET
  1195. 2017-05-17 21:37:07 ----D---- C:\Users\Jan\AppData\Roaming\.minecraft
  1196. 2017-05-17 17:38:23 ----D---- C:\WINDOWS\Prefetch
  1197. 2017-05-17 12:15:45 ----D---- C:\Program Files (x86)\Steam
  1198. 2017-05-17 11:55:47 ----D---- C:\ProgramData\ASUS Smart Gesture
  1199. 2017-05-17 11:55:06 ----D---- C:\WINDOWS\System32
  1200. 2017-05-17 11:55:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
  1201. 2017-05-17 11:48:26 ----D---- C:\WINDOWS\system32\catroot2
  1202. 2017-05-17 11:47:56 ----D---- C:\AdwCleaner
  1203. 2017-05-17 10:28:29 ----HD---- C:\Program Files\WindowsApps
  1204. 2017-05-17 10:23:10 ----D---- C:\Users\Jan\AppData\Roaming\FileZilla
  1205. 2017-05-16 18:10:18 ----D---- C:\WINDOWS\system32\config
  1206. 2017-05-16 18:01:17 ----D---- C:\WINDOWS\INF
  1207. 2017-05-16 17:34:10 ----D---- C:\WINDOWS\WinSxS
  1208. 2017-05-16 17:31:53 ----D---- C:\WINDOWS\system32\DriverStore
  1209. 2017-05-16 17:30:01 ----SHD---- C:\Config.Msi
  1210. 2017-05-16 17:30:01 ----D---- C:\WINDOWS\system32\drivers
  1211. 2017-05-16 17:23:50 ----SD---- C:\WINDOWS\SYSWOW64\F12
  1212. 2017-05-16 17:23:50 ----D---- C:\WINDOWS\SYSWOW64\wbem
  1213. 2017-05-16 17:23:50 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
  1214. 2017-05-16 17:23:50 ----D---- C:\WINDOWS\SYSWOW64\Dism
  1215. 2017-05-16 17:23:50 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
  1216. 2017-05-16 17:23:50 ----AD---- C:\WINDOWS\SysWOW64
  1217. 2017-05-16 17:23:39 ----D---- C:\WINDOWS\system32\wbem
  1218. 2017-05-16 17:23:38 ----SD---- C:\WINDOWS\system32\F12
  1219. 2017-05-16 17:23:38 ----D---- C:\WINDOWS\system32\SystemResetPlatform
  1220. 2017-05-16 17:23:38 ----D---- C:\WINDOWS\system32\sr-Latn-CS
  1221. 2017-05-16 17:23:38 ----D---- C:\WINDOWS\system32\oobe
  1222. 2017-05-16 17:23:38 ----D---- C:\WINDOWS\system32\cs-CZ
  1223. 2017-05-16 17:23:28 ----D---- C:\WINDOWS\ShellExperiences
  1224. 2017-05-16 17:23:28 ----D---- C:\WINDOWS\Provisioning
  1225. 2017-05-16 17:23:28 ----D---- C:\WINDOWS\PolicyDefinitions
  1226. 2017-05-16 17:23:27 ----RD---- C:\WINDOWS\ImmersiveControlPanel
  1227. 2017-05-16 17:23:27 ----RD---- C:\Program Files\Windows Defender
  1228. 2017-05-16 17:23:27 ----D---- C:\Windows
  1229. 2017-05-16 17:23:27 ----D---- C:\Program Files\Windows Photo Viewer
  1230. 2017-05-16 17:23:27 ----D---- C:\Program Files (x86)\Windows Photo Viewer
  1231. 2017-05-16 17:23:27 ----D---- C:\Program Files (x86)\Windows Defender
  1232. 2017-05-16 16:35:53 ----D---- C:\WINDOWS\CbsTemp
  1233. 2017-05-16 16:35:40 ----D---- C:\WINDOWS\system32\appraiser
  1234. 2017-05-16 16:35:28 ----SHD---- C:\System Volume Information
  1235. 2017-05-16 11:45:04 ----AD---- C:\Program Files (x86)\Mozilla Firefox
  1236. 2017-05-15 15:34:06 ----D---- C:\Users\Jan\AppData\Roaming\uTorrent
  1237. 2017-05-14 14:18:59 ----D---- C:\ProgramData\BlueStacksSetup
  1238. 2017-05-11 22:12:07 ----D---- C:\Users\Jan\AppData\Roaming\TS3Client
  1239. 2017-05-11 16:53:52 ----D---- C:\WINDOWS\system32\MRT
  1240. 2017-05-11 16:49:51 ----AC---- C:\WINDOWS\system32\MRT.exe
  1241. 2017-05-11 16:49:20 ----SHDC---- C:\WINDOWS\Installer
  1242. 2017-05-11 16:49:19 ----D---- C:\ProgramData\Microsoft Help
  1243. 2017-05-11 16:46:55 ----RSD---- C:\WINDOWS\assembly
  1244. 2017-05-11 16:36:11 ----A---- C:\WINDOWS\win.ini
  1245. 2017-05-10 21:23:55 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
  1246. 2017-05-05 11:01:56 ----D---- C:\WINDOWS\system32\Tasks
  1247. 2017-05-02 10:28:22 ----D---- C:\WINDOWS\system32\NDF
  1248. 2017-04-29 10:34:59 ----RD---- C:\Program Files (x86)
  1249. 2017-04-29 02:59:37 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
  1250. 2017-04-28 03:01:16 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
  1251. 2017-04-23 19:03:46 ----D---- C:\Users\Jan\AppData\Roaming\Adobe
  1252. 2017-04-23 18:51:54 ----D---- C:\ProgramData\regid.1986-12.com.adobe
  1253. 2017-04-23 18:42:13 ----D---- C:\WINDOWS\system32\CatRoot
  1254. 2017-04-23 18:40:52 ----RSD---- C:\WINDOWS\Fonts
  1255. 2017-04-23 18:40:05 ----AD---- C:\Program Files (x86)\Adobe
  1256. 2017-04-23 18:31:31 ----D---- C:\WINDOWS\system32\drivers\etc
  1257.  
  1258. File C:\WINDOWS\system32\winlogon.exe is digitally signed
  1259. File C:\WINDOWS\system32\wininit.exe is digitally signed
  1260. File C:\WINDOWS\explorer.exe is digitally signed
  1261. File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
  1262. File C:\WINDOWS\system32\svchost.exe is digitally signed
  1263. File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
  1264. File C:\WINDOWS\system32\services.exe is digitally signed
  1265. File C:\WINDOWS\system32\User32.dll is digitally signed
  1266. File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
  1267. File C:\WINDOWS\system32\userinit.exe is digitally signed
  1268. File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
  1269. File C:\WINDOWS\system32\rpcss.dll is digitally signed
  1270. File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
  1271.  
  1272. ====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
  1273.  
  1274. R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-09-14 647736]
  1275. R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
  1276. R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2016-09-20 48696]
  1277. R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2013-07-02 19768]
  1278. R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
  1279. R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
  1280. R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2012-09-18 17152]
  1281. R3 AsusTP;@oem26.inf,%PS2.DeviceDesc%;ASUS Input Touchpad Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2017-03-09 128024]
  1282. R3 bcbtums;@oem18.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-03-27 173312]
  1283. R3 BCM43XX;@oem1.inf,%BCM43XX_Service_DispName%;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2014-04-18 8462000]
  1284. R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-09-19 114176]
  1285. R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2017-04-28 249856]
  1286. R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
  1287. R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-09-19 84992]
  1288. R3 dtlitescsibus;@oem13.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2017-01-03 30264]
  1289. R3 dtliteusbbus;@oem15.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2017-01-03 47672]
  1290. R3 Hamachi;@oem29.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\System32\drivers\Hamdrv.sys [2016-07-20 45680]
  1291. R3 HIDSwitch;@oem96.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2015-05-13 19976]
  1292. R3 iwdbus;@oem22.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
  1293. R3 kbfiltr;@oem11.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-02 14992]
  1294. R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_d5bd1ae16e09cc23\nvlddmkm.sys [2016-09-20 14242872]
  1295. R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-06-15 28216]
  1296. R3 nvvad_WaveExtensible;@oem5.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2016-04-14 56384]
  1297. R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
  1298. R3 RSBASTOR;@oem6.inf,%Rts5208%;Realtek PCIE CardReader Driver - BA; C:\WINDOWS\system32\DRIVERS\RtsBaStor.sys [2015-07-08 321792]
  1299. R3 rt640x64;@oem20.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-02-20 947712]
  1300. R3 SensorsSimulatorDriver;@oem31.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [2016-07-16 216064]
  1301. R3 tap0901t;@oem0.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\System32\drivers\tap0901t.sys [2016-04-26 48824]
  1302. S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
  1303. S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-04-28 88416]
  1304. S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
  1305. S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
  1306. S3 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [2017-03-31 152672]
  1307. S3 BstkDrv;BlueStacks Plus Hypervisor; \??\C:\Program Files (x86)\BlueStacks\BstkDrv.sys [2017-03-31 270904]
  1308. S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2017-04-28 967680]
  1309. S3 btwampfl;@oem18.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-03-27 188160]
  1310. S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-19 73568]
  1311. S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
  1312. S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
  1313. S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
  1314. S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
  1315. S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
  1316. S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
  1317. S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
  1318. S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
  1319. S3 RTL8168;@oem66.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2013-11-29 838872]
  1320. S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
  1321.  
  1322. ====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
  1323.  
  1324. R2 ABBYY.Licensing.FineReader.Professional.12.0;ABBYY FineReader 12 PE Licensing Service; C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe [2014-07-13 961744]
  1325. R2 AdAppMgrSvc;Autodesk Desktop App Service; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2016-07-01 1295376]
  1326. R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2017-02-27 2227312]
  1327. R2 ArcGIS License Manager;ArcGIS License Manager; C:\Program Files (x86)\ArcGIS\License10.3\bin\lmgrd.exe [2014-09-18 1499512]
  1328. R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2013-09-09 111416]
  1329. R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [2012-04-13 277120]
  1330. R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
  1331. R2 BcmBtRSupport;@oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
  1332. R2 CDPUserSvc_3da44;CDPUserSvc_3da44; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
  1333. R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
  1334. R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
  1335. R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-08-13 154584]
  1336. R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2017-02-27 419248]
  1337. R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-08-13 405976]
  1338. R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-06-15 1881144]
  1339. R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-06-15 2522680]
  1340. R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-09-17 1364024]
  1341. R2 OneSyncSvc_3da44;Hostitel synchronizace_3da44; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
  1342. R2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by arvato; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2013-09-13 337776]
  1343. R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2016-04-30 131776]
  1344. R3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2016-07-20 1104176]
  1345. R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
  1346. R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-06-15 3634232]
  1347. R3 PimIndexMaintenanceSvc_3da44;Data kontaktů_3da44; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
  1348. R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-04-26 1590048]
  1349. S2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [2012-12-19 72192]
  1350. S2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
  1351. S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [2017-03-31 406040]
  1352. S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
  1353. S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2017-03-02 3416584]
  1354. S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-27 317400]
  1355. S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
  1356. S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-04-13 1530376]
  1357. S3 BstHdAndroidSvc;BlueStacks Android Service ; C:\Program Files (x86)\BlueStacks\HD-Service.exe [2017-03-31 428056]
  1358. S3 BstHdPlusAndroidSvc;BlueStacks Plus Android Service ; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [2017-03-31 452632]
  1359. S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-12-22 1471168]
  1360. S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2017-03-08 1471352]
  1361. S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
  1362. S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
  1363. S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
  1364. S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
  1365. S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
  1366. S3 MessagingService_3da44;Služba zasílání zpráv_3da44; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
  1367. S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-03-19 172488]
  1368. S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
  1369. S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
  1370. S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
  1371. S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
  1372. S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
  1373.  
  1374. -----------------EOF-----------------
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!