Prosím o kontrolu logo 1.část

[Dor]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Roman at 2016-11-28 22:44:41
Microsoft Windows 10 Pro
System drive C: has 448 GB (90%) free of 500 GB
Total RAM: 6142 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:44:49, on 28.11.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0672)
Boot mode: Normal

Running processes:
C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Iomega\Home Storage Manager\Iomega Discovery.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\trend micro\Roman.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Program Files\PowerISO\PWRISOVM.EXE -startup
O4 - HKLM\..\Run: [Iomega Home Storage Manager] C:\Program Files (x86)\Iomega\Home Storage Manager\Iomega Discovery.exe
O4 - HKCU\..\Run: [EEDSpeedLauncher] rundll32.exe C:\WINDOWS\system32\eed_ec.dll,SpeedLauncher
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Unknown owner - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7752 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7560f717-3c3e-4e5d-8624-a2896f80d6c2 -SystemEventPortName:HostProcess-193aa534-3933-4798-95d3-b6c070a6d53d -IoCancelEventPortName:HostProcess-dc9f6053-0b71-4ddc-a51c-12f7a7826b68 -NonStateChangingEventPortName:HostProcess-b642d7a0-c079-4a4a-9b05-3d784e52bf1e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1d05f04d-b504-4f11-aae3-3be98cfcb88e -DeviceGroupId:WpdFsGroup
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\mqsvc.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
sihost.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding

C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"D:\Program Files\PowerISO\PWRISOVM.EXE" -startup
"C:\Program Files (x86)\Iomega\Home Storage Manager\Iomega Discovery.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files\Windows Defender\msascui.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\svchost.exe -k SDRSVC
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2016.1126.1.0_x64__8kea50m9krsh2\CalendarApp.Gui.Win10.exe" -ServerName:App.AppXn6er7mjp75jggxzp2f5ppbb3647b78j0.mca
"fontdrvhost.exe"
"C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.12.11142.0_x64__8wekyb3d8bbwe\Solitaire.exe" -ServerName:App.AppXx8xn0rs58sab7mvbtxgdhw97cpm1dzhb.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=54.0.2840.99 --handshake-handle=0x154
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/Control/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/TcpLowatOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,13,16,17,18,20,34,60 --gpu-vendor-id=0x1002 --gpu-device-id=0x68b8 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.201.1151.1008 --gpu-driver-date=11-4-2015 --mojo-application-channel-token=E9F166EBE11208E4601A1D663D882E2A --mojo-platform-channel-handle=1212 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Control/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/TcpLowatOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=C9403D0D48920194BB5F11D30C82CF05 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=C9403D0D48920194BB5F11D30C82CF05 --channel="512.2.1755460076\1604030108" --mojo-platform-channel-handle=2600 /prefetch:1
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" www.google.com
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1611.3123.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Control/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/TcpLowatOctober/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=C958D7BADA31943E1318D5D4EB61DF14 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=C958D7BADA31943E1318D5D4EB61DF14 --channel="512.99.1579532643\16841987" --mojo-platform-channel-handle=6908 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe34_ Global\UsGthrCtrlFltPipeMssGthrPipe34 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 624 632 640 8192 636
"C:\Tools\Wincom\TOTALCMD64.EXE"

"C:\Stahovák\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Uninstaller_SkipUac_Roman.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12 2472224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12 163720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12 163720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12 141192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12 141192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12 163720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12 141192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EEDSpeedLauncher"=C:\WINDOWS\system32\eed_ec.dll [2013-11-07 3069952]
"OneDrive"=C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-11-10 660672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bonus.SSR.FR11]
c:\program files (x86)\abbyy finereader 11\bonus.screenshotreader.exe [2013-06-28 1364496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CDAServer]
C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager]
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2012-06-08 1057408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OneDrive]
[]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-11-04 767176]
"PWRISOVM.EXE"=D:\Program Files\PowerISO\PWRISOVM.EXE [2015-02-28 408888]
"Iomega Home Storage Manager"=C:\Program Files (x86)\Iomega\Home Storage Manager\Iomega Discovery.exe [2009-10-27 152936]
""= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-11-28 22:44:42 ----D---- C:\Program Files\trend micro
2016-11-28 22:44:41 ----D---- C:\rsit
2016-11-28 12:47:27 ----D---- C:\AdwCleaner
2016-11-27 15:57:02 ----HD---- C:\OneDriveTemp
2016-11-27 14:42:01 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-11-27 14:41:34 ----D---- C:\ProgramData\Malwarebytes
2016-11-26 12:41:33 ----D---- C:\ProgramData\Oracle
2016-11-25 14:35:25 ----D---- C:\Users\Roman\AppData\Roaming\AIMP
2016-11-13 11:55:31 ----D---- C:\Users\Roman\AppData\Roaming\3909
2016-11-13 11:51:56 ----D---- C:\Users\Roman\AppData\Roaming\Police Tactics Imperio
2016-11-09 18:05:19 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-11-09 18:05:19 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-11-09 18:05:18 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-11-09 18:05:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-11-09 18:05:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-11-09 18:05:17 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2016-11-09 18:05:16 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-11-09 18:05:15 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-11-09 18:05:15 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-11-09 18:05:15 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-11-09 18:05:15 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-11-09 18:05:15 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-11-09 18:05:15 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-11-09 18:05:15 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-11-09 18:05:14 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-11-09 18:05:14 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-11-09 18:05:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-11-09 18:05:13 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-11-09 18:05:12 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-11-09 18:05:12 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-11-09 18:05:11 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-11-09 18:05:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-11-09 18:05:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-11-09 18:05:09 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-11-09 18:05:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-11-09 18:05:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-11-09 18:05:08 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-11-09 18:05:08 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-11-09 18:05:08 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-11-09 18:05:08 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-11-09 18:05:08 ----A---- C:\WINDOWS\system32\tquery.dll
2016-11-09 18:05:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-11-09 18:05:07 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-11-09 18:05:07 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-11-09 18:05:07 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-11-09 18:05:07 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-11-09 18:05:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-11-09 18:05:06 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2016-11-09 18:05:06 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-11-09 18:05:06 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-11-09 18:05:05 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-11-09 18:05:05 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-11-09 18:05:05 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2016-11-09 18:05:05 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-11-09 18:05:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-11-09 18:05:04 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-11-09 18:05:04 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-11-09 18:05:04 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-11-09 18:05:04 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-11-09 18:05:03 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-11-09 18:05:03 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-11-09 18:05:03 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2016-11-09 18:05:03 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2016-11-09 18:05:03 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-11-09 18:05:03 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-11-09 18:05:02 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-11-09 18:05:02 ----A---- C:\WINDOWS\SYSWOW64\prnfldr.dll
2016-11-09 18:05:02 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-11-09 18:05:02 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-11-09 18:05:02 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-11-09 18:05:02 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-11-09 18:05:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-11-09 18:05:01 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-11-09 18:05:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-11-09 18:05:00 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-11-09 18:05:00 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2016-11-09 18:04:59 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2016-11-09 18:04:59 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-11-09 18:04:59 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-11-09 18:04:58 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-11-09 18:04:58 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-11-09 18:04:58 ----A---- C:\WINDOWS\SYSWOW64\UIAnimation.dll
2016-11-09 18:04:58 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-11-09 18:04:58 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-11-09 18:04:58 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-11-09 18:04:58 ----A---- C:\WINDOWS\system32\SIHClient.exe
2016-11-09 18:04:57 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-11-09 18:04:57 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-11-09 18:04:57 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-11-09 18:04:57 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-11-09 18:04:56 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-11-09 18:04:56 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-11-09 18:04:56 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2016-11-09 18:04:56 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-11-09 18:04:56 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2016-11-09 18:04:55 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-11-09 18:04:54 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-11-09 18:04:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-11-09 18:04:54 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-11-09 18:04:54 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2016-11-09 18:04:54 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2016-11-09 18:04:53 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2016-11-09 18:04:53 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2016-11-09 18:04:53 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-11-09 18:04:53 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-11-09 18:04:53 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-11-09 18:04:52 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2016-11-09 18:04:52 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2016-11-09 18:04:52 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2016-11-09 18:04:52 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2016-11-09 18:04:51 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2016-11-09 18:04:51 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-11-09 18:04:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-11-09 18:04:51 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-11-09 18:04:51 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2016-11-09 18:04:51 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2016-11-09 18:04:50 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-11-09 18:04:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-09 18:04:50 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-11-09 18:04:50 ----A---- C:\WINDOWS\SYSWOW64\PhoneOm.dll
2016-11-09 18:04:50 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-11-09 18:04:50 ----A---- C:\WINDOWS\SYSWOW64\filemgmt.dll
2016-11-09 18:04:49 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2016-11-09 18:04:49 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-11-09 18:04:48 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-11-09 18:04:48 ----A---- C:\WINDOWS\SYSWOW64\certreq.exe
2016-11-09 18:04:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-11-09 18:04:46 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-11-09 18:04:46 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-11-09 18:04:46 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2016-11-09 18:04:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-11-09 18:04:45 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2016-11-09 18:04:45 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2016-11-09 18:04:45 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2016-11-09 18:04:45 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2016-11-09 18:04:45 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-11-09 18:04:45 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-11-09 18:04:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2016-11-09 18:04:44 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-11-09 18:04:44 ----A---- C:\WINDOWS\SYSWOW64\SCardDlg.dll
2016-11-09 18:04:44 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-11-09 18:04:44 ----A---- C:\WINDOWS\SYSWOW64\oemlicense.dll
2016-11-09 18:04:44 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2016-11-09 18:04:43 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2016-11-09 18:04:43 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2016-11-09 18:04:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2016-11-09 18:04:43 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-11-09 18:04:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-11-09 18:04:42 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-11-09 18:04:42 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-11-09 18:04:42 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-11-09 18:04:42 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-11-09 18:04:41 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2016-11-09 18:04:41 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2016-11-09 18:04:41 ----A---- C:\WINDOWS\SYSWOW64\objsel.dll
2016-11-09 18:04:41 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2016-11-09 18:04:40 ----A---- C:\WINDOWS\SYSWOW64\WSSync.dll
2016-11-09 18:04:40 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2016-11-09 18:04:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-11-09 18:04:40 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-11-09 18:04:40 ----A---- C:\WINDOWS\SYSWOW64\azroleui.dll
2016-11-09 18:04:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-09 18:04:39 ----A---- C:\WINDOWS\SYSWOW64\NPSMDesktopProvider.dll
2016-11-09 18:04:39 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-11-09 18:04:39 ----A---- C:\WINDOWS\SYSWOW64\licensingdiag.exe
2016-11-09 18:04:39 ----A---- C:\WINDOWS\SYSWOW64\dot3ui.dll
2016-11-09 18:04:39 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2016-11-09 18:04:38 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2016-11-09 18:04:38 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2016-11-09 18:04:38 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-11-09 18:04:38 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-11-09 18:04:38 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-11-09 18:04:38 ----A---- C:\WINDOWS\system32\drivers\BthAvrcpTg.sys
2016-11-09 18:04:36 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2016-11-09 18:04:34 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-11-09 18:04:34 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-11-09 18:04:22 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-11-09 18:04:22 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-11-09 18:04:21 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-11-09 18:04:21 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2016-11-09 18:04:21 ----A---- C:\WINDOWS\system32\Pimstore.dll
2016-11-09 18:04:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-11-09 18:04:19 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-11-09 18:04:18 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-11-09 18:04:18 ----A---- C:\WINDOWS\system32\winmde.dll
2016-11-09 18:04:18 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-11-09 18:04:18 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-11-09 18:04:18 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-11-09 18:04:17 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-11-09 18:04:17 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-11-09 18:04:17 ----A---- C:\WINDOWS\system32\PortableDeviceApi.dll
2016-11-09 18:04:17 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2016-11-09 18:04:17 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-11-09 18:04:17 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-11-09 18:04:16 ----A---- C:\WINDOWS\system32\wpdshext.dll
2016-11-09 18:04:16 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-11-09 18:04:16 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-11-09 18:04:15 ----A---- C:\WINDOWS\SYSWOW64\PortableDeviceApi.dll
2016-11-09 18:04:15 ----A---- C:\WINDOWS\system32\ubpm.dll
2016-11-09 18:04:15 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-11-09 18:04:14 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-11-09 18:04:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-11-09 18:04:14 ----A---- C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 18:04:14 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-11-09 18:04:13 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-11-09 18:04:13 ----A---- C:\WINDOWS\system32\wups.dll
2016-11-09 18:04:13 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-11-09 18:04:13 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-11-09 18:04:13 ----A---- C:\WINDOWS\system32\sdengin2.dll
2016-11-09 18:04:12 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-11-09 18:04:12 ----A---- C:\WINDOWS\SYSWOW64\PortableDeviceConnectApi.dll
2016-11-09 18:04:12 ----A---- C:\WINDOWS\system32\WalletService.dll
2016-11-09 18:04:12 ----A---- C:\WINDOWS\system32\StikyNot.exe
2016-11-09 18:04:12 ----A---- C:\WINDOWS\system32\PortableDeviceConnectApi.dll
2016-11-09 18:04:12 ----A---- C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2016-11-09 18:04:12 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-11-09 18:04:11 ----A---- C:\WINDOWS\SYSWOW64\PortableDeviceClassExtension.dll
2016-11-09 18:04:11 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2016-11-09 18:04:11 ----A---- C:\WINDOWS\system32\usocore.dll
2016-11-09 18:04:11 ----A---- C:\WINDOWS\system32\RADCUI.dll
2016-11-09 18:04:11 ----A---- C:\WINDOWS\system32\racpldlg.dll
2016-11-09 18:04:10 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-11-09 18:04:09 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-11-09 18:04:09 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-11-09 18:04:09 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-11-09 18:04:09 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-11-09 18:04:08 ----A---- C:\WINDOWS\system32\mos.dll
2016-11-09 18:04:07 ----A---- C:\WINDOWS\system32\shell32.dll
2016-11-09 18:04:07 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-11-09 18:04:06 ----A---- C:\WINDOWS\SYSWOW64\wmpeffects.dll
2016-11-09 18:04:06 ----A---- C:\WINDOWS\system32\wmpeffects.dll
2016-11-09 18:04:05 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-11-09 18:04:05 ----A---- C:\WINDOWS\system32\wmp.dll
2016-11-09 18:04:03 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-11-09 18:04:03 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-11-09 18:04:02 ----A---- C:\WINDOWS\system32\Wpc.dll
2016-11-09 18:04:02 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-11-09 18:04:01 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-11-09 18:04:01 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-11-09 18:04:01 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-11-09 18:04:01 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-11-09 18:04:00 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-11-09 18:04:00 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-11-09 18:04:00 ----A---- C:\WINDOWS\system32\moshost.dll
2016-11-09 18:04:00 ----A---- C:\WINDOWS\system32\mmc.exe
2016-11-09 18:04:00 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-09 18:03:59 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2016-11-09 18:03:59 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2016-11-09 18:03:59 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-11-09 18:03:59 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2016-11-09 18:03:58 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2016-11-09 18:03:58 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2016-11-09 18:03:58 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-11-09 18:03:58 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-11-09 18:03:58 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-09 18:03:57 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-11-09 18:03:57 ----A---- C:\WINDOWS\system32\msi.dll
2016-11-09 18:03:57 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-11-09 18:03:56 ----A---- C:\WINDOWS\system32\WMNetMgr.dll
2016-11-09 18:03:56 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-11-09 18:03:56 ----A---- C:\WINDOWS\system32\prnfldr.dll
2016-11-09 18:03:55 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-11-09 18:03:54 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-11-09 18:03:54 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-11-09 18:03:54 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2016-11-09 18:03:54 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-11-09 18:03:54 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-11-09 18:03:54 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-11-09 18:03:53 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-11-09 18:03:53 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2016-11-09 18:03:53 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-11-09 18:03:52 ----A---- C:\WINDOWS\SYSWOW64\WMNetMgr.dll
2016-11-09 18:03:52 ----A---- C:\WINDOWS\system32\wmdrmdev.dll
2016-11-09 18:03:52 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-11-09 18:03:52 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-11-09 18:03:51 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-09 18:03:51 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2016-11-09 18:03:51 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-11-09 18:03:51 ----A---- C:\WINDOWS\system32\mfps.dll
2016-11-09 18:03:51 ----A---- C:\WINDOWS\system32\localspl.dll
2016-11-09 18:03:49 ----A---- C:\WINDOWS\SYSWOW64\wmdrmsdk.dll
2016-11-09 18:03:49 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-11-09 18:03:49 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-11-09 18:03:49 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-11-09 18:03:49 ----A---- C:\WINDOWS\system32\pmcsnap.dll
2016-11-09 18:03:48 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2016-11-09 18:03:48 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-11-09 18:03:48 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-09 18:03:47 ----A---- C:\WINDOWS\system32\wmdrmsdk.dll
2016-11-09 18:03:47 ----A---- C:\WINDOWS\system32\rasgcw.dll
2016-11-09 18:03:47 ----A---- C:\WINDOWS\system32\cscui.dll
2016-11-09 18:03:46 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-11-09 18:03:46 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2016-11-09 18:03:45 ----A---- C:\WINDOWS\system32\netcenter.dll
2016-11-09 18:03:44 ----A---- C:\WINDOWS\system32\wlanui.dll
2016-11-09 18:03:44 ----A---- C:\WINDOWS\system32\WLanConn.dll
2016-11-09 18:03:44 ----A---- C:\WINDOWS\system32\msdrm.dll
2016-11-09 18:03:43 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-11-09 18:03:43 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-09 18:03:43 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-11-09 18:03:43 ----A---- C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-11-09 18:03:43 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-11-09 18:03:42 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-11-09 18:03:42 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-11-09 18:03:42 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-11-09 18:03:42 ----A---- C:\WINDOWS\system32\odbcconf.dll
2016-11-09 18:03:42 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-11-09 18:03:42 ----A---- C:\WINDOWS\system32\drivers\genericusbfn.sys
2016-11-09 18:03:39 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-11-09 18:03:38 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-11-09 18:03:37 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-11-09 18:03:37 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-11-09 18:03:37 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-11-09 18:03:36 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-11-09 18:03:36 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-11-09 18:03:35 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-11-09 18:03:34 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-11-09 18:03:34 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-11-09 18:03:34 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-11-09 18:03:33 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-11-09 18:03:32 ----A---- C:\WINDOWS\system32\wininet.dll
2016-11-09 18:03:32 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-11-09 18:03:32 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-11-09 18:03:31 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-11-09 18:03:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-09 18:03:29 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-11-09 18:03:29 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-11-09 18:03:29 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-11-09 18:03:27 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-11-09 18:03:27 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-11-09 18:03:26 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-11-09 18:03:26 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-11-09 18:03:25 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-09 18:03:25 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-11-09 18:03:24 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-11-09 18:03:24 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-11-09 18:03:24 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-11-09 18:03:24 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-11-09 18:03:23 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-11-09 18:03:18 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-11-09 18:03:17 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-11-09 18:03:16 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-11-09 18:03:16 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2016-11-09 18:03:15 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-11-09 18:03:14 ----A---- C:\WINDOWS\system32\OpcServices.dll
2016-11-09 18:03:14 ----A---- C:\WINDOWS\system32\combase.dll
2016-11-09 18:03:13 ----A---- C:\WINDOWS\system32\winload.exe
2016-11-09 18:03:13 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-11-09 18:03:13 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-11-09 18:03:12 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-09 18:03:12 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-11-09 18:03:12 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-11-09 18:03:11 ----A---- C:\WINDOWS\system32\ole32.dll
2016-11-09 18:03:11 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-11-09 18:03:11 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-09 18:03:10 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2016-11-09 18:03:09 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-11-09 18:03:09 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-09 18:03:09 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-11-09 18:03:09 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-11-09 18:03:09 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-11-09 18:03:09 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2016-11-09 18:03:09 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 18:03:09 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2016-11-09 18:03:08 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-11-09 18:03:08 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-11-09 18:03:08 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-11-09 18:03:08 ----A---- C:\WINDOWS\system32\PhoneOm.dll
2016-11-09 18:03:08 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-11-09 18:03:07 ----A---- C:\WINDOWS\system32\WSService.dll
2016-11-09 18:03:07 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-11-09 18:03:07 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-11-09 18:03:07 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-11-09 18:03:06 ----A---- C:\WINDOWS\system32\netcfgx.dll
2016-11-09 18:03:06 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys
2016-11-09 18:03:06 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-09 18:03:06 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-11-09 18:03:05 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-11-09 18:03:05 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2016-11-09 18:03:05 ----A---- C:\WINDOWS\system32\netman.dll
2016-11-09 18:03:04 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-11-09 18:03:04 ----A---- C:\WINDOWS\system32\wvc.dll
2016-11-09 18:03:04 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-11-09 18:03:04 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-11-09 18:03:04 ----A---- C:\WINDOWS\system32\SRH.dll
2016-11-09 18:03:04 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-11-09 18:03:04 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2016-11-09 18:03:03 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-11-09 18:03:03 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-11-09 18:03:03 ----A---- C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2016-11-09 18:03:02 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-11-09 18:03:02 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-11-09 18:03:02 ----A---- C:\WINDOWS\system32\werconcpl.dll
2016-11-09 18:03:02 ----A---- C:\WINDOWS\system32\wdc.dll
2016-11-09 18:03:02 ----A---- C:\WINDOWS\system32\netshell.dll
2016-11-09 18:03:01 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2016-11-09 18:03:01 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-11-09 18:03:01 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2016-11-09 18:03:01 ----A---- C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2016-11-09 18:03:01 ----A---- C:\WINDOWS\system32\WFS.exe
2016-11-09 18:03:01 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-11-09 18:03:00 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-11-09 18:03:00 ----A---- C:\WINDOWS\system32\wpr.exe
2016-11-09 18:03:00 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-11-09 18:03:00 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-11-09 18:03:00 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-09 18:03:00 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2016-11-09 18:03:00 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-11-09 18:02:59 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2016-11-09 18:02:59 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-11-09 18:02:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-11-09 18:02:59 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-11-09 18:02:59 ----A---- C:\WINDOWS\system32\iepeers.dll
2016-11-09 18:02:58 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-11-09 18:02:58 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-11-09 18:02:58 ----A---- C:\WINDOWS\system32\dot3ui.dll
2016-11-09 18:02:58 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-11-09 18:02:58 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-11-09 18:02:58 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-11-09 18:02:58 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-11-09 18:02:58 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-11-09 18:02:57 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2016-11-09 18:02:54 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 18:02:54 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-11-09 18:02:54 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2016-11-09 18:02:53 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-11-09 18:02:53 ----A---- C:\WINDOWS\system32\twinui.dll
2016-11-09 18:02:52 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-11-09 18:02:52 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-11-09 18:02:52 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-11-09 18:02:51 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-11-09 18:02:51 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-11-09 18:02:50 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-11-09 18:02:50 ----A---- C:\WINDOWS\system32\msctf.dll
2016-11-09 18:02:49 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-09 18:02:49 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-11-09 18:02:49 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-11-09 18:02:48 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2016-11-09 18:02:48 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-11-09 18:02:48 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-11-09 18:02:47 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-09 18:02:47 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-11-09 18:02:46 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-09 18:02:46 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-09 18:02:46 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2016-11-09 18:02:45 ----A---- C:\WINDOWS\system32\winresume.exe
2016-11-09 18:02:45 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2016-11-09 18:02:45 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-11-09 18:02:44 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2016-11-09 18:02:44 ----A---- C:\WINDOWS\system32\comdlg32.dll
2016-11-09 18:02:43 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-09 18:02:43 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-09 18:02:43 ----A---- C:\WINDOWS\explorer.exe
2016-11-09 18:02:42 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-11-09 18:02:42 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-11-09 18:02:42 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-09 18:02:42 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-11-09 18:02:42 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-11-09 18:02:41 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-09 18:02:41 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-11-09 18:02:41 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-11-09 18:02:40 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-11-09 18:02:40 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-11-09 18:02:40 ----A---- C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-11-09 18:02:39 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-09 18:02:39 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-09 18:02:38 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-11-09 18:02:38 ----A---- C:\WINDOWS\system32\propsys.dll
2016-11-09 18:02:38 ----A---- C:\WINDOWS\system32\authui.dll
2016-11-09 18:02:37 ----A---- C:\WINDOWS\system32\wsecedit.dll
2016-11-09 18:02:37 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-11-09 18:02:37 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-11-09 18:02:37 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-09 18:02:37 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-11-09 18:02:37 ----A---- C:\WINDOWS\system32\DXP.dll
2016-11-09 18:02:36 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-09 18:02:36 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-11-09 18:02:36 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-11-09 18:02:36 ----A---- C:\WINDOWS\system32\internetmail.dll
2016-11-09 18:02:36 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2016-11-09 18:02:35 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-09 18:02:35 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-09 18:02:35 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-11-09 18:02:34 ----A---- C:\WINDOWS\system32\wldp.dll
2016-11-09 18:02:34 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-11-09 18:02:34 ----A---- C:\WINDOWS\system32\vss_ps.dll
2016-11-09 18:02:34 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-11-09 18:02:34 ----A---- C:\WINDOWS\system32\phoneactivate.exe
2016-11-09 18:02:34 ----A---- C:\WINDOWS\system32\NPSM.dll
2016-11-09 18:02:34 ----A---- C:\WINDOWS\system32\input.dll
2016-11-09 18:02:34 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-11-09 18:02:34 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-11-09 18:02:33 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-11-09 18:02:33 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-11-09 18:02:33 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-11-09 18:02:33 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-11-09 18:02:32 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-09 18:02:32 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-11-09 18:02:32 ----A---- C:\WINDOWS\system32\gameux.dll
2016-11-09 18:02:31 ----A---- C:\WINDOWS\system32\wbengine.exe
2016-11-09 18:02:31 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-09 18:02:31 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-11-09 18:02:29 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-11-09 18:02:29 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-11-09 18:02:29 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-11-09 18:02:28 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-11-09 18:02:28 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-11-09 18:02:28 ----A---- C:\WINDOWS\system32\SCardDlg.dll
2016-11-09 18:02:28 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-11-09 18:02:28 ----A---- C:\WINDOWS\system32\certprop.dll
2016-11-09 18:02:27 ----A---- C:\WINDOWS\system32\UXInit.dll
2016-11-09 18:02:27 ----A---- C:\WINDOWS\system32\syncutil.dll
2016-11-09 18:02:27 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-11-09 18:02:27 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-11-09 18:02:27 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-11-09 18:02:27 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2016-11-09 18:02:27 ----A---- C:\WINDOWS\system32\certreq.exe
2016-11-09 18:02:26 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-09 18:02:26 ----A---- C:\WINDOWS\system32\fhsvc.dll
2016-11-09 18:02:26 ----A---- C:\WINDOWS\system32\cryptui.dll
2016-11-09 18:02:26 ----A---- C:\WINDOWS\system32\APHostService.dll
2016-11-09 18:02:25 ----A---- C:\WINDOWS\system32\themeui.dll
2016-11-09 18:02:25 ----A---- C:\WINDOWS\system32\oemlicense.dll
2016-11-09 18:02:25 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2016-11-09 18:02:25 ----A---- C:\WINDOWS\system32\dui70.dll
2016-11-09 18:02:25 ----A---- C:\WINDOWS\system32\certcli.dll
2016-11-09 18:02:25 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2016-11-09 18:02:24 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2016-11-09 18:02:24 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-11-09 18:02:24 ----A---- C:\WINDOWS\system32\Display.dll
2016-11-09 18:02:23 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-11-09 18:02:23 ----A---- C:\WINDOWS\system32\msctfp.dll
2016-11-09 18:02:23 ----A---- C:\WINDOWS\system32\Dxpserver.exe
2016-11-09 18:02:23 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-11-09 18:02:22 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-11-09 18:02:22 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-11-09 18:02:22 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-11-09 18:02:22 ----A---- C:\WINDOWS\system32\NPSMDesktopProvider.dll
2016-11-09 18:02:22 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-11-09 18:02:22 ----A---- C:\WINDOWS\system32\edputil.dll
2016-11-09 18:02:21 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-11-09 18:02:21 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-11-09 18:02:21 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-11-09 18:02:21 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2016-11-09 18:02:21 ----A---- C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-11-09 18:02:21 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2016-11-09 18:02:21 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-11-09 18:02:20 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-11-09 18:02:20 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-09 18:02:20 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-11-09 18:02:20 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-09 18:02:20 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-11-09 18:02:20 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-11-09 18:02:19 ----A---- C:\WINDOWS\system32\sud.dll
2016-11-09 18:02:19 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-11-05 12:29:32 ----D---- C:\Users\Roman\AppData\Roaming\HellShare Upload Manager
2016-11-03 19:36:54 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2016-11-03 19:36:54 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2016-11-03 19:36:54 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-11-03 19:36:54 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-03 19:36:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2016-11-03 19:36:53 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2016-11-03 19:36:52 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2016-11-03 19:36:52 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2016-11-03 19:36:52 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-03 19:36:52 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-03 19:36:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2016-11-03 19:36:51 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-11-03 19:36:50 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2016-11-03 19:36:50 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2016-11-03 19:36:49 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2016-11-03 19:36:49 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2016-11-03 19:36:48 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2016-11-03 19:36:48 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2016-11-03 19:36:48 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2016-11-03 19:36:48 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2016-11-03 19:36:48 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-03 19:36:48 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2016-11-03 19:36:47 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2016-11-03 19:36:47 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-03 19:36:46 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2016-11-03 19:36:46 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2016-11-03 19:36:45 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2016-11-03 19:36:45 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2016-11-03 19:36:44 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2016-11-03 19:36:44 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2016-11-03 19:36:43 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2016-11-03 19:36:43 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2016-11-03 19:36:42 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2016-11-03 19:36:42 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2016-11-03 19:36:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2016-11-03 19:36:41 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2016-11-03 19:36:40 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2016-11-03 19:36:40 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2016-11-03 19:36:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2016-11-03 19:36:39 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2016-11-03 19:36:39 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2016-11-03 19:36:39 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2016-11-03 19:36:38 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2016-11-03 19:36:38 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2016-11-03 19:36:37 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2016-11-03 19:36:37 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2016-11-03 19:36:37 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2016-11-03 19:36:37 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2016-11-03 19:36:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2016-11-03 19:36:36 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2016-11-03 19:36:35 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2016-11-03 19:36:35 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2016-11-03 19:36:34 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2016-11-03 19:36:34 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2016-11-03 19:36:34 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2016-11-03 19:36:34 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2016-11-03 19:36:32 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2016-11-03 19:36:32 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2016-11-03 19:36:31 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2016-11-03 19:36:31 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2016-11-03 19:36:31 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2016-11-03 19:36:31 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2016-11-03 19:36:30 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2016-11-03 19:36:30 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2016-11-03 19:36:30 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2016-11-03 19:36:30 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2016-11-03 19:36:28 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2016-11-03 19:36:28 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2016-11-03 19:36:28 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2016-11-03 19:36:28 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2016-11-03 19:36:28 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2016-11-03 19:36:28 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2016-11-03 19:36:26 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2016-11-03 19:36:26 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2016-11-03 19:36:26 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2016-11-03 19:36:26 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2016-11-03 19:36:25 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2016-11-03 19:36:25 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2016-11-03 19:36:24 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2016-11-03 19:36:24 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2016-11-03 19:36:24 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2016-11-03 19:36:24 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2016-11-03 19:36:22 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2016-11-03 19:36:22 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2016-11-03 19:36:22 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2016-11-03 19:36:22 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2016-11-03 19:36:21 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2016-11-03 19:36:21 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2016-11-03 19:36:21 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2016-11-03 19:36:21 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2016-11-03 19:36:19 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2016-11-03 19:36:19 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2016-11-03 19:36:19 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2016-11-03 19:36:19 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2016-11-03 19:36:18 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2016-11-03 19:36:18 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2016-11-03 19:36:17 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2016-11-03 19:36:17 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2016-11-03 19:36:16 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2016-11-03 19:36:16 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2016-11-03 19:36:16 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2016-11-03 19:36:16 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2016-11-03 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2016-11-03 19:36:15 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2016-11-03 19:36:14 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2016-11-03 19:36:14 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2016-11-03 19:36:13 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2016-11-03 19:36:13 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2016-11-03 19:36:13 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2016-11-03 19:36:13 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2016-11-03 19:36:11 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2016-11-03 19:36:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2016-11-03 19:36:11 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2016-11-03 19:36:11 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2016-11-03 19:36:09 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2016-11-03 19:36:09 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2016-11-03 19:36:09 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2016-11-03 19:36:09 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2016-11-03 19:36:08 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2016-11-03 19:36:08 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2016-11-03 19:36:07 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2016-11-03 19:36:07 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2016-11-03 19:36:07 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2016-11-03 19:36:07 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2016-11-03 19:36:06 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2016-11-03 19:36:06 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2016-11-03 19:36:06 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2016-11-03 19:36:06 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2016-11-03 19:36:05 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2016-11-03 19:36:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2016-11-03 19:36:05 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2016-11-03 19:36:05 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2016-11-03 19:36:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2016-11-03 19:36:03 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2016-11-03 19:36:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2016-11-03 19:36:02 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2016-11-03 19:36:02 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2016-11-03 19:36:02 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2016-11-03 19:36:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2016-11-03 19:36:01 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2016-11-03 19:36:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2016-11-03 19:36:00 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2016-11-03 19:35:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2016-11-03 19:35:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2016-11-03 19:35:59 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2016-11-03 19:35:59 ----A---- C:\WINDOWS\system32\d3dx10.dll
2016-11-03 19:35:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2016-11-03 19:35:58 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2016-11-03 19:35:57 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2016-11-03 19:35:57 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2016-11-03 19:35:57 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2016-11-03 19:35:57 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2016-11-03 19:35:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2016-11-03 19:35:56 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2016-11-03 19:35:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2016-11-03 19:35:55 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2016-11-03 19:35:54 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2016-11-03 19:35:54 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2016-11-03 19:35:54 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2016-11-03 19:35:54 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2016-11-03 19:35:53 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2016-11-03 19:35:53 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2016-11-03 19:35:52 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2016-11-03 19:35:52 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2016-11-03 19:35:43 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2016-11-03 19:35:43 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2016-11-03 19:35:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2016-11-03 19:35:42 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2016-11-03 19:35:42 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2016-11-03 19:35:42 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2016-11-03 19:35:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2016-11-03 19:35:41 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2016-11-03 19:35:40 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2016-11-03 19:35:40 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2016-11-03 19:35:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2016-11-03 19:35:39 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2016-11-03 19:35:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2016-11-03 19:35:38 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2016-11-03 19:35:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2016-11-03 19:35:37 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2016-11-03 19:35:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2016-11-03 19:35:36 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2016-10-31 13:08:42 ----D---- C:\Users\Roman\AppData\Roaming\Skype
2016-10-30 21:22:01 ----D---- C:\ProgramData\Application Data
2016-10-30 21:19:07 ----D---- C:\ProgramData\IMSIDesign
2016-10-30 11:05:35 ----D---- C:\Users\Roman\AppData\Roaming\Maxthon5
2016-10-30 10:55:04 ----D---- C:\Users\Roman\AppData\Roaming\Opera Software
2016-10-29 12:43:10 ----D---- C:\Users\Roman\AppData\Roaming\Aha-soft
2016-10-29 10:47:10 ----D---- C:\Users\Roman\AppData\Roaming\DVDVideoSoft

======List of files/folders modified in the last 1 month======

2016-11-28 22:44:45 ----D---- C:\WINDOWS\Prefetch
2016-11-28 22:44:42 ----RD---- C:\Program Files
2016-11-28 22:43:14 ----D---- C:\Stahovák
2016-11-28 22:33:47 ----D---- C:\WINDOWS\Temp
2016-11-28 21:55:00 ----D---- C:\WINDOWS\system32\sru
2016-11-28 16:53:52 ----SHD---- C:\System Volume Information
2016-11-28 16:22:47 ----D---- C:\WINDOWS\AppReadiness
2016-11-28 14:53:37 ----D---- C:\WINDOWS\Microsoft.NET
2016-11-28 12:56:05 ----D---- C:\WINDOWS\System32
2016-11-28 12:56:05 ----D---- C:\WINDOWS\INF
2016-11-28 12:56:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-28 12:41:55 ----D---- C:\WINDOWS\Tasks
2016-11-28 12:41:55 ----D---- C:\WINDOWS\system32\Tasks
2016-11-28 12:14:45 ----D---- C:\WINDOWS
2016-11-28 06:49:17 ----HD---- C:\Program Files\WindowsApps
2016-11-27 22:18:55 ----D---- C:\Users\Roman\AppData\Roaming\vlc
2016-11-27 16:38:19 ----D---- C:\Stůl
2016-11-27 16:08:02 ----SHDC---- C:\WINDOWS\Installer
2016-11-27 16:04:19 ----RD---- C:\Program Files (x86)
2016-11-27 16:03:59 ----D---- C:\Program Files (x86)\Google
2016-11-27 15:59:00 ----D---- C:\WINDOWS\debug
2016-11-27 15:55:45 ----RD---- C:\WINDOWS\DevicesFlow
2016-11-27 15:55:45 ----D---- C:\WINDOWS\system32\drivers
2016-11-27 14:53:19 ----D---- C:\WINDOWS\ServiceProfiles
2016-11-27 14:41:34 ----HD---- C:\ProgramData
2016-11-24 09:10:08 ----D---- C:\Program Files\Common Files
2016-11-22 17:52:35 ----D---- C:\WINDOWS\system32\catroot2
2016-11-22 11:43:27 ----D---- C:\ProgramData\ProductData
2016-11-21 19:22:28 ----AD---- C:\Program Files (x86)\Mozilla Thunderbird
2016-11-17 14:48:43 ----D---- C:\WINDOWS\system32\config
2016-11-13 12:13:45 ----D---- C:\WINDOWS\SoftwareDistribution
2016-11-13 12:01:52 ----D---- C:\WINDOWS\Logs
2016-11-12 17:17:04 ----D---- C:\WINDOWS\rescache
2016-11-11 18:21:45 ----RSD---- C:\WINDOWS\Fonts
2016-11-10 15:58:20 ----D---- C:\WINDOWS\system32\DriverStore
2016-11-10 15:58:07 ----D---- C:\WINDOWS\WinSxS
2016-11-10 14:56:02 ----RSD---- C:\WINDOWS\assembly
2016-11-10 14:50:45 ----D---- C:\WINDOWS\CbsTemp
2016-11-10 14:50:41 ----D---- C:\WINDOWS\system32\appraiser
2016-11-09 21:56:32 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-11-09 21:56:30 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-11-09 21:56:30 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-11-09 21:56:30 ----D---- C:\WINDOWS\SysWOW64
2016-11-09 21:56:08 ----D---- C:\WINDOWS\system32\wbem
2016-11-09 21:56:07 ----D---- C:\WINDOWS\system32\oobe
2016-11-09 21:56:03 ----D---- C:\WINDOWS\system32\migwiz
2016-11-09 21:56:03 ----D---- C:\WINDOWS\system32\migration
2016-11-09 21:55:59 ----SD---- C:\WINDOWS\system32\F12
2016-11-09 21:55:59 ----D---- C:\WINDOWS\system32\cs-CZ
2016-11-09 21:55:59 ----D---- C:\WINDOWS\system32\Boot
2016-11-09 21:55:32 ----RD---- C:\WINDOWS\PrintDialog
2016-11-09 21:55:32 ----D---- C:\WINDOWS\Provisioning
2016-11-09 21:55:30 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-11-09 21:55:28 ----D---- C:\WINDOWS\AppPatch
2016-11-09 21:55:28 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-11-09 21:55:27 ----D---- C:\Program Files (x86)\Windows Mail
2016-11-09 21:55:27 ----D---- C:\Program Files (x86)\Windows Defender
2016-11-09 21:55:27 ----D---- C:\Program Files (x86)\Internet Explorer
2016-11-09 21:55:26 ----D---- C:\Program Files\Windows Photo Viewer
2016-11-09 21:55:25 ----D---- C:\Program Files\Windows Media Player
2016-11-09 21:55:25 ----D---- C:\Program Files\Windows Mail
2016-11-09 21:55:25 ----D---- C:\Program Files\Windows Defender
2016-11-09 21:55:24 ----D---- C:\Program Files\Internet Explorer
2016-11-09 18:52:29 ----D---- C:\ProgramData\Microsoft Help
2016-11-09 18:51:26 ----D---- C:\WINDOWS\system32\MRT
2016-11-09 18:47:23 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-11-09 16:05:25 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-11-06 21:56:53 ----D---- C:\ProgramData\Package Cache
2016-11-03 10:08:00 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-11-01 22:02:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-10-30 21:29:12 ----D---- C:\Byt
2016-10-30 21:26:21 ----AD---- C:\ProgramData\Temp
2016-10-30 10:59:43 ----D---- C:\Users\Roman\AppData\Roaming\Mozilla
2016-10-29 11:25:27 ----D---- C:\Program Files (x86)\Common Files

[Dor]

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2015-02-28 127760]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-05-02 11576]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-17 21648880]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-17 674288]
R3 AtiHDAudioService;@oem4.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-05-28 102912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-05-03 175616]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-30 589824]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S2 eusk2par;EUTRON SmartKey Parallel Driver; \??\C:\WINDOWS\system32\Drivers\eusk2par.sys []
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-13 117248]
S3 dg_ssudbus;@oem26.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-10-25 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 ivusb;@oem6.inf,%INI.SvcDesc.USB%;Initio Driver for USB Default Controller; C:\WINDOWS\System32\drivers\ivusb.sys [2010-07-28 29720]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 SMARTMouseFilterx64;@oem17.inf,%SMARTMouseFilter%;HID-compliant mouse; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [2009-12-15 12584]
S3 SMARTVHidMiniVistaAmd64;@oem14.inf,%SMARTVHidMini%;SMART HID Device; C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys [2009-12-15 15784]
S3 SMARTVTabletPCx64;@oem15.inf,%SMARTVTabletPC%;SMART Virtual TabletPC; C:\WINDOWS\System32\drivers\SMARTVTabletPCx64.sys [2009-12-15 18432]
S3 ssudmdm;@oem27.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-17 255472]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-04 351944]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-07-20 2960672]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-05-03 26624]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_310fc;Hostitel synchronizace_310fc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_310fc;Data kontaktů_310fc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe []
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-27 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1cd2183;Hostitel synchronizace_1cd2183; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_297649;Hostitel synchronizace_297649; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_30724;Hostitel synchronizace_30724; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_32e4b;Hostitel synchronizace_32e4b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_337b369;Hostitel synchronizace_337b369; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_33a69;Hostitel synchronizace_33a69; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3489d;Hostitel synchronizace_3489d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_348c9;Hostitel synchronizace_348c9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_34c5f;Hostitel synchronizace_34c5f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_34cf4;Hostitel synchronizace_34cf4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_36b7b;Hostitel synchronizace_36b7b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_374fc;Hostitel synchronizace_374fc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_37880;Hostitel synchronizace_37880; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_477a7;Hostitel synchronizace_477a7; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_58172a9;Hostitel synchronizace_58172a9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_5909b6f;Hostitel synchronizace_5909b6f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6963f4e;Hostitel synchronizace_6963f4e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6b276e9;Hostitel synchronizace_6b276e9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6d2570;Hostitel synchronizace_6d2570; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_90ec672;Hostitel synchronizace_90ec672; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_9829e09;Hostitel synchronizace_9829e09; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_af8f3c0;Hostitel synchronizace_af8f3c0; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_bf60049;Hostitel synchronizace_bf60049; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-27 153752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1cd2183;Služba zasílání zpráv_1cd2183; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_297649;Služba zasílání zpráv_297649; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_30724;Služba zasílání zpráv_30724; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_310fc;Služba zasílání zpráv_310fc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_32e4b;Služba zasílání zpráv_32e4b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_337b369;Služba zasílání zpráv_337b369; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_33a69;Služba zasílání zpráv_33a69; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3489d;Služba zasílání zpráv_3489d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_348c9;Služba zasílání zpráv_348c9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_34c5f;Služba zasílání zpráv_34c5f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_34cf4;Služba zasílání zpráv_34cf4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_36b7b;Služba zasílání zpráv_36b7b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_374fc;Služba zasílání zpráv_374fc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_37880;Služba zasílání zpráv_37880; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_58172a9;Služba zasílání zpráv_58172a9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_5909b6f;Služba zasílání zpráv_5909b6f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6963f4e;Služba zasílání zpráv_6963f4e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6b276e9;Služba zasílání zpráv_6b276e9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6d2570;Služba zasílání zpráv_6d2570; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_90ec672;Služba zasílání zpráv_90ec672; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_9829e09;Služba zasílání zpráv_9829e09; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_af8f3c0;Služba zasílání zpráv_af8f3c0; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_bf60049;Služba zasílání zpráv_bf60049; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1cd2183;Data kontaktů_1cd2183; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_297649;Data kontaktů_297649; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_30724;Data kontaktů_30724; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_32e4b;Data kontaktů_32e4b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_337b369;Data kontaktů_337b369; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_33a69;Data kontaktů_33a69; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3489d;Data kontaktů_3489d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_348c9;Data kontaktů_348c9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_34c5f;Data kontaktů_34c5f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_34cf4;Data kontaktů_34cf4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_36b7b;Data kontaktů_36b7b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_374fc;Data kontaktů_374fc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_37880;Data kontaktů_37880; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_58172a9;Data kontaktů_58172a9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_5909b6f;Data kontaktů_5909b6f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6963f4e;Data kontaktů_6963f4e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6b276e9;Data kontaktů_6b276e9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6d2570;Data kontaktů_6d2570; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_90ec672;Data kontaktů_90ec672; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_9829e09;Data kontaktů_9829e09; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_af8f3c0;Data kontaktů_af8f3c0; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_bf60049;Data kontaktů_bf60049; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-07 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

[Polda18]

Mohl (nebo spíš měl) jsi to spojit do jednoho threadu. Když se to nevejde do jednoho postu, prostě druhou část pošleš jako odpověď.

[Rudy]

Témata sloučena. Proč dělíte log ze stejného PC? Myslíte, že je jednodušší přeskakovat z jednoho threadu do druhého? Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

[Dor]

# AdwCleaner v6.030 - Log soubor vytvořen 29/11/2016 na 21:53:42
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-29.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Roman - ROMAN-PC
# Beží od : C:\Users\Roman\Desktop\AdwCleaner.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support

***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.

***** [ Adresáře ] *****

Nebyly nalezeny žádné škodlivé složky.

***** [ Soubory ] *****

Nebyly nalezeny žádné škodlivé soubory.

***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL soubory.

***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.

***** [ Zástupce ] *****

Žádné infikovaný zástupce nenalezen.

***** [ Plánovač úloh ] *****

Žádný nebezpečná úloha nenalezena.

***** [ Registry ] *****

Nebyly nalezeny žádné škodlivé položky registru.

***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox báze.
Chromium nastavení nalezeno: [C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Web data] - facemoods.com
Chromium nastavení nalezeno: [C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Web data] - conduit.search
Chromium nastavení nalezeno: [C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Web data] - start.facemoods.com

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [1517 Bajtů] - [29/11/2016 21:53:42]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1591 Bajtů] ##########

[Dor]

Omlouvám se, tohle je konečný log po restartu:

# AdwCleaner v6.030 - Log soubor vytvořen 29/11/2016 na 22:01:04
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-29.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Roman - ROMAN-PC
# Beží od : C:\Users\Roman\Desktop\AdwCleaner.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Adresáře ] *****



***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****



***** [ Prohlížeče ] *****

[-] [C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazání:facemoods.com
[-] [C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazání:conduit.search
[-] [C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazání:start.facemoods.com


*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1151 Bajtů] - [29/11/2016 22:01:04]
C:\AdwCleaner\AdwCleaner[S0].txt - [1671 Bajtů] - [29/11/2016 21:53:42]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1299 Bajtů] ##########

[Rudy]

Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

[Dor]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-11-2016
Ran by Roman (administrator) on ROMAN-PC (29-11-2016 22:27:28)
Running from C:\Users\Roman\Desktop
Loaded Profiles: Roman (Available Profiles: Roman & DefaultAppPool)
Platform: Windows 10 Pro Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\WINDOWS\System32\atiesrxx.exe
(AMD) C:\WINDOWS\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\WINDOWS\System32\mqsvc.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Power Software Ltd) D:\Program Files\PowerISO\PWRISOVM.EXE
(Iomega Corporation) C:\Program Files (x86)\Iomega\Home Storage Manager\Iomega Discovery.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Inc.) C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.12.11142.0_x64__8wekyb3d8bbwe\Solitaire.exe
(Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2016.1126.1.0_x64__8kea50m9krsh2\CalendarApp.Gui.Win10.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1611.3123.0_x64__8wekyb3d8bbwe\Calculator.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => D:\Program Files\PowerISO\PWRISOVM.EXE [408888 2015-02-28] (Power Software Ltd)
HKLM-x32\...\Run: [Iomega Home Storage Manager] => C:\Program Files (x86)\Iomega\Home Storage Manager\Iomega Discovery.exe [152936 2009-10-27] (Iomega Corporation)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1285628505-2949731663-139041242-1001\...\Run: [EEDSpeedLauncher] => rundll32.exe C:\WINDOWS\system32\eed_ec.dll,SpeedLauncher
HKU\S-1-5-21-1285628505-2949731663-139041242-1001\...\MountPoints2: X - "X:\setup.exe"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{83736d10-ff10-4594-ace9-fce26c9345aa}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-1285628505-2949731663-139041242-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-1285628505-2949731663-139041242-1001 -> {7703C4F7-4BB9-4A1E-B71F-D344CCBAC569} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-1285628505-2949731663-139041242-1001 -> hxxps://seznam.cz/

FireFox:
========
FF DefaultProfile: d408q4vo.default
FF ProfilePath: C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\d408q4vo.default [2016-11-29]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-24] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-24] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1221171.dll [2015-10-19] (Adobe Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> D:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> D:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [No File]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1285628505-2949731663-139041242-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Roman\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-18] (Unity Technologies ApS)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Profile: C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default [2016-11-29]
CHR Extension: (Překladač Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-11-27]
CHR Extension: (Disk Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-27]
CHR Extension: (YouTube) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-27]
CHR Extension: (Kalendář Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2016-11-27]
CHR Extension: (Google Play) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2016-11-27]
CHR Extension: (Mapy Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-11-27]
CHR Extension: (Morpheon Dark) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2016-11-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-27]
CHR Extension: (Learn English) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogeblbgokjljbcoipfmbphbmcdbbnfjc [2016-11-27]
CHR Extension: (Picasa) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2016-11-27]
CHR Extension: (Fast search) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-11-27]
CHR Extension: (Gmail) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-27]
CHR Extension: (Chrome Media Router) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-27]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc.)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-07-20] (IObit)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-10-25] (Microsoft Corporation)
S2 DigitalWave.Update.Service; "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S2 eusk2par; C:\WINDOWS\SysWOW64\Drivers\eusk2par.sys [16695 2003-06-06] (EUTRON) [File not signed]
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
S3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [12584 2009-12-15] (SMART Technologies ULC)
S3 SMARTVHidMiniVistaAmd64; C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys [15784 2009-12-15] (SMART Technologies ULC)
S3 SMARTVTabletPCx64; C:\WINDOWS\System32\drivers\SMARTVTabletPCx64.sys [18432 2009-12-15] (SMART Technologies ULC) [File not signed]
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

[Dor]

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-29 22:27 - 2016-11-29 22:28 - 00013594 _____ C:\Users\Roman\Desktop\FRST.txt
2016-11-29 22:27 - 2016-11-29 22:27 - 02411520 _____ (Farbar) C:\Users\Roman\Desktop\FRST64.exe
2016-11-29 22:27 - 2016-11-29 22:27 - 00000000 ____D C:\FRST
2016-11-29 21:52 - 2016-11-29 22:20 - 00000000 ____D C:\AdwCleaner
2016-11-29 21:51 - 2016-11-28 12:11 - 03910208 _____ C:\Users\Roman\Desktop\AdwCleaner.exe
2016-11-29 16:33 - 2016-11-29 16:33 - 00000000 ___HD C:\OneDriveTemp
2016-11-29 16:31 - 2016-11-29 16:31 - 00000033 _____ C:\Users\Roman\Desktop\dd.txt
2016-11-28 22:44 - 2016-11-28 22:44 - 00000000 ____D C:\Program Files\trend micro
2016-11-27 16:04 - 2016-11-27 16:04 - 00002349 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-27 16:03 - 2016-11-29 22:08 - 00000968 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-27 16:03 - 2016-11-29 22:02 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-27 16:03 - 2016-11-27 16:03 - 00004026 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-27 16:03 - 2016-11-27 16:03 - 00003794 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-27 14:42 - 2016-11-27 15:36 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-27 14:41 - 2016-11-27 14:41 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-26 12:41 - 2016-11-26 12:41 - 00000000 ____D C:\ProgramData\Oracle
2016-11-25 14:35 - 2016-11-27 16:41 - 00000000 ____D C:\Users\Roman\AppData\Roaming\AIMP
2016-11-24 08:56 - 2016-11-24 08:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec
2016-11-13 11:55 - 2016-11-13 11:55 - 00000000 ____D C:\Users\Roman\AppData\Roaming\3909
2016-11-13 11:51 - 2016-11-13 11:51 - 00000000 ____D C:\Users\Roman\AppData\Roaming\Police Tactics Imperio
2016-11-10 21:52 - 2016-11-10 21:52 - 00003276 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2016-11-10 15:18 - 2016-11-10 15:18 - 00000000 ____D C:\Users\Roman\AppData\LocalLow\Z_Software GmbH
2016-11-09 18:05 - 2016-11-02 14:32 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-09 18:05 - 2016-11-02 14:31 - 00546968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-09 18:05 - 2016-10-25 09:32 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-09 18:05 - 2016-10-25 09:28 - 01083648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2016-11-09 18:05 - 2016-10-25 09:05 - 00712032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-09 18:05 - 2016-10-25 08:37 - 01349632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-11-09 18:05 - 2016-10-25 08:37 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-11-09 18:05 - 2016-10-25 08:37 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-11-09 18:05 - 2016-10-25 08:37 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-09 18:05 - 2016-10-25 08:31 - 01824272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-11-09 18:05 - 2016-10-25 08:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-09 18:05 - 2016-10-25 08:30 - 02938920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-09 18:05 - 2016-10-25 08:30 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-11-09 18:05 - 2016-10-25 08:27 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-09 18:05 - 2016-10-25 08:27 - 00256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-11-09 18:05 - 2016-10-25 08:26 - 05240952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-11-09 18:05 - 2016-10-25 08:26 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-09 18:05 - 2016-10-25 08:26 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-11-09 18:05 - 2016-10-25 08:18 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-09 18:05 - 2016-10-25 07:56 - 02195640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-09 18:05 - 2016-10-25 07:53 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-09 18:05 - 2016-10-25 07:27 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-11-09 18:05 - 2016-10-25 07:21 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-11-09 18:05 - 2016-10-25 07:08 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-11-09 18:05 - 2016-10-25 07:06 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-11-09 18:05 - 2016-10-25 06:49 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-11-09 18:05 - 2016-10-25 06:48 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-11-09 18:05 - 2016-10-25 06:45 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-11-09 18:05 - 2016-10-25 06:41 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-11-09 18:05 - 2016-10-25 06:37 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-11-09 18:05 - 2016-10-25 06:36 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-11-09 18:05 - 2016-10-25 06:36 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-09 18:05 - 2016-10-25 06:35 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-11-09 18:05 - 2016-10-25 06:32 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-11-09 18:05 - 2016-10-25 06:31 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-11-09 18:05 - 2016-10-25 06:30 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-11-09 18:05 - 2016-10-25 06:28 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-09 18:05 - 2016-10-25 06:28 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-11-09 18:05 - 2016-10-25 06:27 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-11-09 18:05 - 2016-10-25 06:23 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-09 18:05 - 2016-10-25 06:23 - 00964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-09 18:05 - 2016-10-25 06:21 - 03577344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-11-09 18:05 - 2016-10-25 06:11 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-11-09 18:05 - 2016-10-25 06:03 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-09 18:05 - 2016-10-25 06:00 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-09 18:05 - 2016-10-25 06:00 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-09 18:05 - 2016-10-25 06:00 - 02555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-09 18:05 - 2016-10-25 06:00 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-11-09 18:05 - 2016-10-25 06:00 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-11-09 18:05 - 2016-10-25 05:59 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2016-11-09 18:05 - 2016-10-25 05:58 - 09920512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-09 18:05 - 2016-10-25 05:57 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-11-09 18:05 - 2016-10-25 05:56 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-09 18:05 - 2016-10-25 05:55 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-09 18:05 - 2016-10-25 05:55 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnfldr.dll
2016-11-09 18:05 - 2016-10-25 05:54 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-09 18:05 - 2016-10-25 05:47 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-11-09 18:05 - 2016-10-25 05:46 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-11-09 18:05 - 2016-10-25 05:43 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-09 18:05 - 2016-10-25 05:40 - 05325824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-11-09 18:05 - 2016-10-25 05:38 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-09 18:05 - 2016-10-25 05:37 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-11-09 18:05 - 2016-10-25 05:35 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-09 18:05 - 2016-10-25 05:34 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-09 18:05 - 2016-10-25 05:32 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-09 18:05 - 2016-10-25 05:23 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-11-09 18:04 - 2016-11-02 13:51 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-09 18:04 - 2016-10-25 10:34 - 00454496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-11-09 18:04 - 2016-10-25 10:24 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-11-09 18:04 - 2016-10-25 10:18 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-09 18:04 - 2016-10-25 09:48 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-11-09 18:04 - 2016-10-25 09:48 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-11-09 18:04 - 2016-10-25 09:42 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-11-09 18:04 - 2016-10-25 09:39 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-11-09 18:04 - 2016-10-25 09:38 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-09 18:04 - 2016-10-25 09:37 - 06605544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-11-09 18:04 - 2016-10-25 09:37 - 01040792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-11-09 18:04 - 2016-10-25 09:35 - 06536248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-09 18:04 - 2016-10-25 09:32 - 01862000 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-11-09 18:04 - 2016-10-25 09:32 - 00845568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-11-09 18:04 - 2016-10-25 09:32 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-11-09 18:04 - 2016-10-25 09:30 - 00360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-09 18:04 - 2016-10-25 08:47 - 00305808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-11-09 18:04 - 2016-10-25 08:45 - 00032096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-11-09 18:04 - 2016-10-25 08:40 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-11-09 18:04 - 2016-10-25 08:39 - 00306840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-11-09 18:04 - 2016-10-25 08:37 - 02180128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-09 18:04 - 2016-10-25 08:37 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-11-09 18:04 - 2016-10-25 08:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-11-09 18:04 - 2016-10-25 08:30 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-09 18:04 - 2016-10-25 08:29 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-11-09 18:04 - 2016-10-25 08:27 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-09 18:04 - 2016-10-25 08:26 - 01355344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2016-11-09 18:04 - 2016-10-25 08:26 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-11-09 18:04 - 2016-10-25 08:26 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-11-09 18:04 - 2016-10-25 08:23 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-11-09 18:04 - 2016-10-25 08:22 - 00268040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-11-09 18:04 - 2016-10-25 08:22 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2016-11-09 18:04 - 2016-10-25 08:20 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-11-09 18:04 - 2016-10-25 08:19 - 00295776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-09 18:04 - 2016-10-25 08:18 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-11-09 18:04 - 2016-10-25 08:14 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-09 18:04 - 2016-10-25 08:13 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-11-09 18:04 - 2016-10-25 08:12 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2016-11-09 18:04 - 2016-10-25 08:12 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2016-11-09 18:04 - 2016-10-25 08:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2016-11-09 18:04 - 2016-10-25 08:06 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-11-09 18:04 - 2016-10-25 08:06 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceConnectApi.dll
2016-11-09 18:04 - 2016-10-25 08:05 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-11-09 18:04 - 2016-10-25 07:59 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-09 18:04 - 2016-10-25 07:56 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2016-11-09 18:04 - 2016-10-25 07:54 - 01522160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-11-09 18:04 - 2016-10-25 07:54 - 00273760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-09 18:04 - 2016-10-25 07:52 - 00577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-11-09 18:04 - 2016-10-25 07:51 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-11-09 18:04 - 2016-10-25 07:50 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 18:04 - 2016-10-25 07:49 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-11-09 18:04 - 2016-10-25 07:49 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2016-11-09 18:04 - 2016-10-25 07:48 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceApi.dll
2016-11-09 18:04 - 2016-10-25 07:43 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-11-09 18:04 - 2016-10-25 07:40 - 00253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-11-09 18:04 - 2016-10-25 07:39 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-11-09 18:04 - 2016-10-25 07:38 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-11-09 18:04 - 2016-10-25 07:38 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-11-09 18:04 - 2016-10-25 07:38 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-11-09 18:04 - 2016-10-25 07:37 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-11-09 18:04 - 2016-10-25 07:37 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2016-11-09 18:04 - 2016-10-25 07:33 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-11-09 18:04 - 2016-10-25 07:32 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-11-09 18:04 - 2016-10-25 07:28 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-11-09 18:04 - 2016-10-25 07:27 - 01466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2016-11-09 18:04 - 2016-10-25 07:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-11-09 18:04 - 2016-10-25 07:26 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-09 18:04 - 2016-10-25 07:23 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-11-09 18:04 - 2016-10-25 07:22 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-11-09 18:04 - 2016-10-25 07:18 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-11-09 18:04 - 2016-10-25 07:16 - 01965568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2016-11-09 18:04 - 2016-10-25 07:12 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-11-09 18:04 - 2016-10-25 07:09 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-09 18:04 - 2016-10-25 07:05 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2016-11-09 18:04 - 2016-10-25 07:05 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-11-09 18:04 - 2016-10-25 07:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-09 18:04 - 2016-10-25 07:03 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SCardDlg.dll
2016-11-09 18:04 - 2016-10-25 07:01 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
2016-11-09 18:04 - 2016-10-25 07:00 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-11-09 18:04 - 2016-10-25 07:00 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceClassExtension.dll
2016-11-09 18:04 - 2016-10-25 07:00 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-09 18:04 - 2016-10-25 06:59 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-11-09 18:04 - 2016-10-25 06:56 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceConnectApi.dll
2016-11-09 18:04 - 2016-10-25 06:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-11-09 18:04 - 2016-10-25 06:53 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-09 18:04 - 2016-10-25 06:51 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2016-11-09 18:04 - 2016-10-25 06:50 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2016-11-09 18:04 - 2016-10-25 06:50 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2016-11-09 18:04 - 2016-10-25 06:50 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-11-09 18:04 - 2016-10-25 06:50 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-09 18:04 - 2016-10-25 06:49 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2016-11-09 18:04 - 2016-10-25 06:48 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-11-09 18:04 - 2016-10-25 06:45 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-11-09 18:04 - 2016-10-25 06:45 - 00564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2016-11-09 18:04 - 2016-10-25 06:45 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-11-09 18:04 - 2016-10-25 06:45 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2016-11-09 18:04 - 2016-10-25 06:44 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-09 18:04 - 2016-10-25 06:43 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceApi.dll
2016-11-09 18:04 - 2016-10-25 06:43 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\filemgmt.dll
2016-11-09 18:04 - 2016-10-25 06:42 - 02876928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-11-09 18:04 - 2016-10-25 06:42 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-11-09 18:04 - 2016-10-25 06:41 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2016-11-09 18:04 - 2016-10-25 06:40 - 01336832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2016-11-09 18:04 - 2016-10-25 06:39 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-11-09 18:04 - 2016-10-25 06:39 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2016-11-09 18:04 - 2016-10-25 06:39 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-09 18:04 - 2016-10-25 06:37 - 04143104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2016-11-09 18:04 - 2016-10-25 06:37 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2016-11-09 18:04 - 2016-10-25 06:37 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2016-11-09 18:04 - 2016-10-25 06:36 - 04646400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-11-09 18:04 - 2016-10-25 06:36 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-11-09 18:04 - 2016-10-25 06:36 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-09 18:04 - 2016-10-25 06:36 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-11-09 18:04 - 2016-10-25 06:36 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2016-11-09 18:04 - 2016-10-25 06:36 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2016-11-09 18:04 - 2016-10-25 06:36 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-11-09 18:04 - 2016-10-25 06:35 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-11-09 18:04 - 2016-10-25 06:35 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-09 18:04 - 2016-10-25 06:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-11-09 18:04 - 2016-10-25 06:33 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-11-09 18:04 - 2016-10-25 06:33 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-11-09 18:04 - 2016-10-25 06:32 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-09 18:04 - 2016-10-25 06:32 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2016-11-09 18:04 - 2016-10-25 06:32 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2016-11-09 18:04 - 2016-10-25 06:29 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-11-09 18:04 - 2016-10-25 06:29 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-11-09 18:04 - 2016-10-25 06:29 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-11-09 18:04 - 2016-10-25 06:28 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-11-09 18:04 - 2016-10-25 06:28 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-09 18:04 - 2016-10-25 06:28 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-11-09 18:04 - 2016-10-25 06:28 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-11-09 18:04 - 2016-10-25 06:27 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2016-11-09 18:04 - 2016-10-25 06:26 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2016-11-09 18:04 - 2016-10-25 06:25 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-11-09 18:04 - 2016-10-25 06:25 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2016-11-09 18:04 - 2016-10-25 06:25 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-09 18:04 - 2016-10-25 06:25 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-11-09 18:04 - 2016-10-25 06:25 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-11-09 18:04 - 2016-10-25 06:24 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-11-09 18:04 - 2016-10-25 06:22 - 01562624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2016-11-09 18:04 - 2016-10-25 06:21 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-11-09 18:04 - 2016-10-25 06:17 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-09 18:04 - 2016-10-25 06:14 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-09 18:04 - 2016-10-25 06:14 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-11-09 18:04 - 2016-10-25 06:11 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-11-09 18:04 - 2016-10-25 06:11 - 04078592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-09 18:04 - 2016-10-25 06:09 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2016-11-09 18:04 - 2016-10-25 06:09 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-09 18:04 - 2016-10-25 06:07 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-09 18:04 - 2016-10-25 06:05 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-11-09 18:04 - 2016-10-25 06:05 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-09 18:04 - 2016-10-25 06:04 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-09 18:04 - 2016-10-25 06:01 - 02361856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2016-11-09 18:04 - 2016-10-25 05:59 - 14258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-09 18:04 - 2016-10-25 05:59 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-11-09 18:04 - 2016-10-25 05:58 - 07536128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-09 18:04 - 2016-10-25 05:53 - 03294208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-09 18:04 - 2016-10-25 05:53 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-11-09 18:04 - 2016-10-25 05:52 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-11-09 18:04 - 2016-10-25 05:51 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2016-11-09 18:04 - 2016-10-25 05:50 - 01487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-11-09 18:04 - 2016-10-25 05:45 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-11-09 18:04 - 2016-10-25 05:44 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-09 18:04 - 2016-10-25 05:41 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-09 18:04 - 2016-10-25 05:36 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-09 18:04 - 2016-10-25 05:35 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2016-11-09 18:04 - 2016-10-25 05:34 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-09 18:04 - 2016-10-25 05:34 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-09 18:04 - 2016-10-25 05:33 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-09 18:04 - 2016-10-25 05:32 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2016-11-09 18:04 - 2016-10-25 05:32 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-11-09 18:04 - 2016-10-25 05:30 - 12590080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-09 18:04 - 2016-10-25 05:27 - 03065344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-09 18:04 - 2016-10-25 05:21 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-09 18:04 - 2016-10-25 05:07 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-11-09 18:03 - 2016-10-25 10:42 - 07468384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-09 18:03 - 2016-10-25 10:42 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-09 18:03 - 2016-10-25 10:42 - 01142560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-09 18:03 - 2016-10-25 10:42 - 01098648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-11-09 18:03 - 2016-10-25 10:42 - 00125280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-11-09 18:03 - 2016-10-25 10:41 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-09 18:03 - 2016-10-25 10:40 - 00384864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-09 18:03 - 2016-10-25 10:25 - 01637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-09 18:03 - 2016-10-25 10:19 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-11-09 18:03 - 2016-10-25 09:51 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-11-09 18:03 - 2016-10-25 09:50 - 00439136 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-11-09 18:03 - 2016-10-25 09:49 - 00588328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2016-11-09 18:03 - 2016-10-25 09:49 - 00245840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-09 18:03 - 2016-10-25 09:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-09 18:03 - 2016-10-25 09:48 - 01152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-11-09 18:03 - 2016-10-25 09:48 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-09 18:03 - 2016-10-25 09:48 - 01017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-11-09 18:03 - 2016-10-25 09:48 - 00847648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-09 18:03 - 2016-10-25 09:42 - 02607336 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-11-09 18:03 - 2016-10-25 09:42 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-09 18:03 - 2016-10-25 09:41 - 03694088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-09 18:03 - 2016-10-25 09:32 - 01557776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-09 18:03 - 2016-10-25 09:30 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-09 18:03 - 2016-10-25 09:01 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-09 18:03 - 2016-10-25 08:47 - 28851216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-11-09 18:03 - 2016-10-25 08:47 - 02641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2016-11-09 18:03 - 2016-10-25 08:46 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-11-09 18:03 - 2016-10-25 08:45 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-11-09 18:03 - 2016-10-25 08:40 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-09 18:03 - 2016-10-25 08:33 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\genericusbfn.sys
2016-11-09 18:03 - 2016-10-25 08:32 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-11-09 18:03 - 2016-10-25 08:31 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 18:03 - 2016-10-25 08:31 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-11-09 18:03 - 2016-10-25 08:30 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2016-11-09 18:03 - 2016-10-25 08:24 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-09 18:03 - 2016-10-25 08:21 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-09 18:03 - 2016-10-25 08:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-09 18:03 - 2016-10-25 08:12 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2016-11-09 18:03 - 2016-10-25 08:08 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-11-09 18:03 - 2016-10-25 08:04 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-11-09 18:03 - 2016-10-25 08:02 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-09 18:03 - 2016-10-25 07:59 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-09 18:03 - 2016-10-25 07:58 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-11-09 18:03 - 2016-10-25 07:57 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-11-09 18:03 - 2016-10-25 07:56 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-11-09 18:03 - 2016-10-25 07:56 - 00317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-09 18:03 - 2016-10-25 07:55 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-11-09 18:03 - 2016-10-25 07:55 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2016-11-09 18:03 - 2016-10-25 07:55 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-11-09 18:03 - 2016-10-25 07:54 - 00752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-11-09 18:03 - 2016-10-25 07:53 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-11-09 18:03 - 2016-10-25 07:53 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-11-09 18:03 - 2016-10-25 07:53 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-09 18:03 - 2016-10-25 07:52 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-11-09 18:03 - 2016-10-25 07:52 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-09 18:03 - 2016-10-25 07:51 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2016-11-09 18:03 - 2016-10-25 07:51 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2016-11-09 18:03 - 2016-10-25 07:50 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2016-11-09 18:03 - 2016-10-25 07:50 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-09 18:03 - 2016-10-25 07:50 - 00363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneOm.dll
2016-11-09 18:03 - 2016-10-25 07:49 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2016-11-09 18:03 - 2016-10-25 07:48 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-11-09 18:03 - 2016-10-25 07:47 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-11-09 18:03 - 2016-10-25 07:46 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2016-11-09 18:03 - 2016-10-25 07:46 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-11-09 18:03 - 2016-10-25 07:43 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-09 18:03 - 2016-10-25 07:42 - 01813504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-11-09 18:03 - 2016-10-25 07:42 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-11-09 18:03 - 2016-10-25 07:41 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-11-09 18:03 - 2016-10-25 07:41 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-11-09 18:03 - 2016-10-25 07:41 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2016-11-09 18:03 - 2016-10-25 07:40 - 02331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2016-11-09 18:03 - 2016-10-25 07:40 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2016-11-09 18:03 - 2016-10-25 07:40 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-11-09 18:03 - 2016-10-25 07:40 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2016-11-09 18:03 - 2016-10-25 07:40 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-09 18:03 - 2016-10-25 07:40 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-11-09 18:03 - 2016-10-25 07:39 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-11-09 18:03 - 2016-10-25 07:39 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2016-11-09 18:03 - 2016-10-25 07:39 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-11-09 18:03 - 2016-10-25 07:39 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-11-09 18:03 - 2016-10-25 07:39 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-11-09 18:03 - 2016-10-25 07:38 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2016-11-09 18:03 - 2016-10-25 07:38 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2016-11-09 18:03 - 2016-10-25 07:36 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-11-09 18:03 - 2016-10-25 07:36 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-11-09 18:03 - 2016-10-25 07:35 - 01434112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-11-09 18:03 - 2016-10-25 07:35 - 01132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-11-09 18:03 - 2016-10-25 07:35 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-11-09 18:03 - 2016-10-25 07:35 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-09 18:03 - 2016-10-25 07:34 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-11-09 18:03 - 2016-10-25 07:34 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-09 18:03 - 2016-10-25 07:33 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-09 18:03 - 2016-10-25 07:33 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-11-09 18:03 - 2016-10-25 07:30 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-11-09 18:03 - 2016-10-25 07:29 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-11-09 18:03 - 2016-10-25 07:29 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-09 18:03 - 2016-10-25 07:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-11-09 18:03 - 2016-10-25 07:28 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-09 18:03 - 2016-10-25 07:27 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-11-09 18:03 - 2016-10-25 07:27 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2016-11-09 18:03 - 2016-10-25 07:27 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-09 18:03 - 2016-10-25 07:27 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-11-09 18:03 - 2016-10-25 07:26 - 02103296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-11-09 18:03 - 2016-10-25 07:25 - 01872896 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-11-09 18:03 - 2016-10-25 07:25 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-09 18:03 - 2016-10-25 07:25 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2016-11-09 18:03 - 2016-10-25 07:24 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-11-09 18:03 - 2016-10-25 07:22 - 01424384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2016-11-09 18:03 - 2016-10-25 07:21 - 02054144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-09 18:03 - 2016-10-25 07:19 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-11-09 18:03 - 2016-10-25 07:17 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-11-09 18:03 - 2016-10-25 07:07 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-11-09 18:03 - 2016-10-25 07:03 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-11-09 18:03 - 2016-10-25 07:03 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-11-09 18:03 - 2016-10-25 07:03 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-11-09 18:03 - 2016-10-25 07:01 - 01121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-09 18:03 - 2016-10-25 07:01 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-09 18:03 - 2016-10-25 06:59 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-09 18:03 - 2016-10-25 06:57 - 02285568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-11-09 18:03 - 2016-10-25 06:57 - 00833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2016-11-09 18:03 - 2016-10-25 06:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-09 18:03 - 2016-10-25 06:54 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-11-09 18:03 - 2016-10-25 06:54 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-09 18:03 - 2016-10-25 06:53 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-09 18:03 - 2016-10-25 06:52 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-09 18:03 - 2016-10-25 06:49 - 03081216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-09 18:03 - 2016-10-25 06:48 - 04826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-09 18:03 - 2016-10-25 06:46 - 02055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2016-11-09 18:03 - 2016-10-25 06:46 - 00486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnfldr.dll
2016-11-09 18:03 - 2016-10-25 06:46 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-09 18:03 - 2016-10-25 06:41 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-09 18:03 - 2016-10-25 06:35 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2016-11-09 18:03 - 2016-10-25 06:34 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-09 18:03 - 2016-10-25 06:34 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-11-09 18:03 - 2016-10-25 06:32 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-09 18:03 - 2016-10-25 06:30 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-09 18:03 - 2016-10-25 06:28 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-11-09 18:03 - 2016-10-25 06:28 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-09 18:03 - 2016-10-25 06:28 - 01186816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2016-11-09 18:03 - 2016-10-25 06:28 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-09 18:03 - 2016-10-25 06:25 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-11-09 18:03 - 2016-10-25 06:24 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-11-09 18:03 - 2016-10-25 06:23 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-11-09 18:03 - 2016-10-25 06:19 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-09 18:03 - 2016-10-25 06:17 - 04895744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-09 18:03 - 2016-10-25 06:14 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-11-09 18:03 - 2016-10-25 06:13 - 22375936 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-09 18:03 - 2016-10-25 06:05 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-09 18:03 - 2016-10-25 06:05 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-09 18:03 - 2016-10-25 06:02 - 24610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-09 18:03 - 2016-10-25 06:01 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-09 18:03 - 2016-10-25 05:55 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-09 18:03 - 2016-10-25 05:55 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-11-09 18:03 - 2016-10-25 05:53 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2016-11-09 18:03 - 2016-10-25 05:52 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-11-09 18:03 - 2016-10-25 05:48 - 07838208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-09 18:03 - 2016-10-25 05:48 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-11-09 18:03 - 2016-10-25 05:45 - 18673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-09 18:03 - 2016-10-25 05:44 - 19348480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-09 18:03 - 2016-10-25 05:44 - 12134400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-09 18:03 - 2016-10-25 05:43 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-09 18:03 - 2016-10-25 05:29 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2016-11-09 18:03 - 2016-10-25 05:26 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-09 18:03 - 2016-10-25 03:19 - 00775336 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-09 18:03 - 2016-10-25 03:19 - 00775336 _____ C:\WINDOWS\system32\locale.nls
2016-11-09 18:03 - 2016-10-25 02:47 - 00445873 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-09 18:03 - 2016-09-07 06:22 - 00604920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-11-09 18:02 - 2016-11-02 16:12 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-09 18:02 - 2016-11-02 16:08 - 00636296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-09 18:02 - 2016-11-02 15:25 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-09 18:02 - 2016-10-25 10:44 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-09 18:02 - 2016-10-25 10:44 - 00875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-09 18:02 - 2016-10-25 10:42 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-09 18:02 - 2016-10-25 10:42 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-11-09 18:02 - 2016-10-25 10:39 - 01238584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-11-09 18:02 - 2016-10-25 10:39 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-11-09 18:02 - 2016-10-25 10:26 - 00528736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-11-09 18:02 - 2016-10-25 09:39 - 00730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-11-09 18:02 - 2016-10-25 09:39 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-11-09 18:02 - 2016-10-25 09:38 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-09 18:02 - 2016-10-25 09:38 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-09 18:02 - 2016-10-25 09:37 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-09 18:02 - 2016-10-25 09:37 - 01603224 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-11-09 18:02 - 2016-10-25 09:37 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-11-09 18:02 - 2016-10-25 09:36 - 01540216 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-09 18:02 - 2016-10-25 09:36 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-09 18:02 - 2016-10-25 09:34 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-11-09 18:02 - 2016-10-25 09:34 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-11-09 18:02 - 2016-10-25 09:34 - 00106928 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2016-11-09 18:02 - 2016-10-25 09:33 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-11-09 18:02 - 2016-10-25 09:03 - 02549456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-09 18:02 - 2016-10-25 09:03 - 01988440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-11-09 18:02 - 2016-10-25 09:02 - 00577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-11-09 18:02 - 2016-10-25 09:02 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-11-09 18:02 - 2016-10-25 09:01 - 01415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-09 18:02 - 2016-10-25 09:01 - 00324448 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-09 18:02 - 2016-10-25 08:46 - 00376528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-11-09 18:02 - 2016-10-25 08:32 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2016-11-09 18:02 - 2016-10-25 08:31 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2016-11-09 18:02 - 2016-10-25 08:21 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-11-09 18:02 - 2016-10-25 08:19 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2016-11-09 18:02 - 2016-10-25 08:13 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2016-11-09 18:02 - 2016-10-25 08:13 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-11-09 18:02 - 2016-10-25 08:12 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2016-11-09 18:02 - 2016-10-25 08:12 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-09 18:02 - 2016-10-25 08:10 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-11-09 18:02 - 2016-10-25 08:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2016-11-09 18:02 - 2016-10-25 08:10 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-09 18:02 - 2016-10-25 08:09 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-11-09 18:02 - 2016-10-25 08:05 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-11-09 18:02 - 2016-10-25 08:02 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-09 18:02 - 2016-10-25 08:02 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-09 18:02 - 2016-10-25 08:00 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-09 18:02 - 2016-10-25 07:59 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-11-09 18:02 - 2016-10-25 07:59 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2016-11-09 18:02 - 2016-10-25 07:59 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvc.dll
2016-11-09 18:02 - 2016-10-25 07:59 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2016-11-09 18:02 - 2016-10-25 07:58 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2016-11-09 18:02 - 2016-10-25 07:58 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-09 18:02 - 2016-10-25 07:57 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-11-09 18:02 - 2016-10-25 07:56 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-11-09 18:02 - 2016-10-25 07:56 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dxpserver.exe
2016-11-09 18:02 - 2016-10-25 07:55 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-11-09 18:02 - 2016-10-25 07:55 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-09 18:02 - 2016-10-25 07:54 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-11-09 18:02 - 2016-10-25 07:53 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-11-09 18:02 - 2016-10-25 07:53 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2016-11-09 18:02 - 2016-10-25 07:53 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-11-09 18:02 - 2016-10-25 07:52 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-11-09 18:02 - 2016-10-25 07:52 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-09 18:02 - 2016-10-25 07:52 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-11-09 18:02 - 2016-10-25 07:52 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2016-11-09 18:02 - 2016-10-25 07:51 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-11-09 18:02 - 2016-10-25 07:51 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2016-11-09 18:02 - 2016-10-25 07:51 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-11-09 18:02 - 2016-10-25 07:51 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2016-11-09 18:02 - 2016-10-25 07:50 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-11-09 18:02 - 2016-10-25 07:50 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2016-11-09 18:02 - 2016-10-25 07:47 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-09 18:02 - 2016-10-25 07:47 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-09 18:02 - 2016-10-25 07:47 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2016-11-09 18:02 - 2016-10-25 07:46 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-11-09 18:02 - 2016-10-25 07:45 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-11-09 18:02 - 2016-10-25 07:44 - 01479168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2016-11-09 18:02 - 2016-10-25 07:44 - 00602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2016-11-09 18:02 - 2016-10-25 07:43 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-11-09 18:02 - 2016-10-25 07:43 - 00440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2016-11-09 18:02 - 2016-10-25 07:42 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-09 18:02 - 2016-10-25 07:42 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-11-09 18:02 - 2016-10-25 07:41 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-09 18:02 - 2016-10-25 07:41 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-09 18:02 - 2016-10-25 07:41 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-11-09 18:02 - 2016-10-25 07:40 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-11-09 18:02 - 2016-10-25 07:39 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-09 18:02 - 2016-10-25 07:39 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-11-09 18:02 - 2016-10-25 07:38 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-11-09 18:02 - 2016-10-25 07:38 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-09 18:02 - 2016-10-25 07:38 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-09 18:02 - 2016-10-25 07:37 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-11-09 18:02 - 2016-10-25 07:37 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-11-09 18:02 - 2016-10-25 07:36 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-11-09 18:02 - 2016-10-25 07:35 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-11-09 18:02 - 2016-10-25 07:34 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-11-09 18:02 - 2016-10-25 07:33 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-09 18:02 - 2016-10-25 07:32 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-09 18:02 - 2016-10-25 07:32 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-11-09 18:02 - 2016-10-25 07:32 - 01053696 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-09 18:02 - 2016-10-25 07:32 - 01037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-11-09 18:02 - 2016-10-25 07:32 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-11-09 18:02 - 2016-10-25 07:32 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-11-09 18:02 - 2016-10-25 07:32 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2016-11-09 18:02 - 2016-10-25 07:30 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-11-09 18:02 - 2016-10-25 07:29 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-11-09 18:02 - 2016-10-25 07:27 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-09 18:02 - 2016-10-25 07:24 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-09 18:02 - 2016-10-25 07:24 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-09 18:02 - 2016-10-25 07:23 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-11-09 18:02 - 2016-10-25 07:22 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-11-09 18:02 - 2016-10-25 07:21 - 01570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-11-09 18:02 - 2016-10-25 07:21 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-11-09 18:02 - 2016-10-25 07:21 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-11-09 18:02 - 2016-10-25 07:20 - 03549696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 18:02 - 2016-10-25 07:16 - 03415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-09 18:02 - 2016-10-25 07:16 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-09 18:02 - 2016-10-25 07:11 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-09 18:02 - 2016-10-25 07:09 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-11-09 18:02 - 2016-10-25 07:05 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-09 18:02 - 2016-10-25 07:05 - 02610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-11-09 18:02 - 2016-10-25 07:03 - 06675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-11-09 18:02 - 2016-10-25 07:01 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-11-09 18:02 - 2016-10-25 06:54 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-11-09 18:02 - 2016-10-25 06:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-09 18:02 - 2016-10-25 06:52 - 04170240 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-11-09 18:02 - 2016-10-25 06:52 - 00693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-11-09 18:02 - 2016-10-25 06:51 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-09 18:02 - 2016-10-25 06:50 - 02874880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2016-11-09 18:02 - 2016-10-25 06:49 - 01997312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-11-09 18:02 - 2016-10-25 06:47 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-11-09 18:02 - 2016-10-25 06:47 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AdmTmpl.dll
2016-11-09 18:02 - 2016-10-25 06:43 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-09 18:02 - 2016-10-25 06:40 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-09 18:02 - 2016-10-25 06:39 - 05503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-09 18:02 - 2016-10-25 06:38 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-11-09 18:02 - 2016-10-25 06:37 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-09 18:02 - 2016-10-25 06:35 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2016-11-09 18:02 - 2016-10-25 06:34 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-09 18:02 - 2016-10-25 06:26 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-09 18:02 - 2016-10-25 06:20 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-09 18:02 - 2016-10-25 06:13 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-11-09 18:02 - 2016-10-25 06:12 - 11544576 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-09 18:02 - 2016-10-25 06:10 - 01568256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-09 18:02 - 2016-10-25 06:10 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-11-09 18:02 - 2016-10-25 06:05 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-09 18:02 - 2016-10-25 06:03 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-09 18:02 - 2016-10-25 06:02 - 06976512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-09 18:02 - 2016-10-25 06:02 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-09 18:02 - 2016-10-25 06:02 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-11-09 18:02 - 2016-10-25 05:44 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-11-09 18:02 - 2016-10-25 05:43 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-06 21:57 - 2016-11-06 21:57 - 00000000 ____D C:\Users\Roman\AppData\Local\sigil-ebook
2016-11-05 14:51 - 2016-11-05 14:51 - 00000000 ____D C:\Users\Roman\Documents\U-Play online
2016-11-05 14:51 - 2016-11-05 14:51 - 00000000 ____D C:\Users\Roman\AppData\LocalLow\U-Play online
2016-11-05 12:43 - 2016-11-05 12:43 - 00000000 ____D C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2016-11-05 12:29 - 2016-11-05 12:29 - 00000000 ____D C:\Users\Roman\AppData\Roaming\HellShare Upload Manager
2016-11-05 10:25 - 2016-11-05 10:25 - 00000000 ____D C:\Users\Roman\Documents\Forward Development
2016-11-03 19:36 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-11-03 19:36 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-11-03 19:36 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-11-03 19:36 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-11-03 19:36 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-03 19:36 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2016-11-03 19:36 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2016-11-03 19:36 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-11-03 19:36 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-11-03 19:36 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-11-03 19:36 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-11-03 19:36 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-03 19:36 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-11-03 19:36 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-03 19:36 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-11-03 19:36 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-11-03 19:36 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-11-03 19:36 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-11-03 19:36 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-11-03 19:36 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-11-03 19:36 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-11-03 19:36 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-11-03 19:36 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-11-03 19:36 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-11-03 19:36 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-11-03 19:36 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-11-03 19:36 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-11-03 19:36 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-11-03 19:36 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-11-03 19:36 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-11-03 19:36 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-11-03 19:36 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-11-03 19:36 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-11-03 19:36 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-11-03 19:36 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-11-03 19:36 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-11-03 19:36 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-11-03 19:36 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-11-03 19:36 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-11-03 19:36 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-11-03 19:36 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-11-03 19:36 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-11-03 19:36 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-11-03 19:36 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-11-03 19:36 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-11-03 19:36 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-11-03 19:36 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-11-03 19:36 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-11-03 19:36 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-11-03 19:36 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-11-03 19:36 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-11-03 19:36 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-11-03 19:36 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-11-03 19:36 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-11-03 19:36 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-11-03 19:36 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-11-03 19:36 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-11-03 19:36 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-11-03 19:36 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-11-03 19:36 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-11-03 19:36 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-11-03 19:36 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-11-03 19:36 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-11-03 19:36 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-11-03 19:36 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-11-03 19:36 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-11-03 19:36 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-11-03 19:36 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-11-03 19:36 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-11-03 19:36 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-11-03 19:36 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-11-03 19:36 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-11-03 19:36 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-11-03 19:36 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-11-03 19:36 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-11-03 19:36 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-11-03 19:36 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-11-03 19:36 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-11-03 19:36 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-11-03 19:36 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-11-03 19:36 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-11-03 19:36 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-11-03 19:36 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-11-03 19:36 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-11-03 19:36 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-11-03 19:36 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-11-03 19:36 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-11-03 19:36 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-11-03 19:36 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-11-03 19:36 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-11-03 19:36 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-11-03 19:36 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-11-03 19:36 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-11-03 19:36 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-11-03 19:36 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-11-03 19:36 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-11-03 19:36 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-11-03 19:36 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-11-03 19:36 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-11-03 19:36 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-11-03 19:36 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-11-03 19:36 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-11-03 19:36 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-11-03 19:36 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-11-03 19:36 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-11-03 19:36 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-11-03 19:36 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-11-03 19:36 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-11-03 19:36 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-11-03 19:36 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-11-03 19:36 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-11-03 19:36 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-11-03 19:36 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-11-03 19:36 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-11-03 19:36 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-11-03 19:36 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-11-03 19:36 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-11-03 19:36 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-11-03 19:36 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-11-03 19:36 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-11-03 19:36 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-11-03 19:36 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-11-03 19:36 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-11-03 19:36 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-11-03 19:35 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-11-03 19:35 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-11-03 19:35 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-11-03 19:35 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-11-03 19:35 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-11-03 19:35 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-11-03 19:35 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-11-03 19:35 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-11-03 19:35 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-11-03 19:35 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-11-03 19:35 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-11-03 19:35 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-11-03 19:35 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-11-03 19:35 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-11-03 19:35 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-11-03 19:35 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-11-03 19:35 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-11-03 19:35 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-11-03 19:35 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-11-03 19:35 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-11-03 19:35 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-11-03 19:35 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-11-03 19:35 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-11-03 19:35 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-11-03 19:35 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-11-03 19:35 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-11-03 19:35 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-11-03 19:35 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-11-03 19:35 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-11-03 19:35 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-11-03 19:35 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-11-03 19:35 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-11-03 19:35 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-11-03 19:35 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-11-03 19:35 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-11-03 19:35 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-11-03 19:35 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-11-03 19:35 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-11-03 19:35 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-11-03 19:35 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-11-03 19:01 - 2016-11-03 19:01 - 00000000 ____D C:\Users\Roman\Documents\Remedy
2016-11-03 19:01 - 2016-11-03 19:01 - 00000000 ____D C:\Users\Roman\AppData\Local\SKIDROW
2016-11-01 12:41 - 2016-11-01 12:41 - 00112139 _____ C:\Users\Roman\Documents\Sešit1 (Automaticky uloženo).pdf
2016-10-31 13:08 - 2016-10-31 13:08 - 00000000 ____D C:\Users\Roman\AppData\Roaming\Skype
2016-10-30 21:22 - 2016-10-30 21:22 - 00000000 ____D C:\Users\Roman\Documents\TurboFLOORPLAN Dum & Interiér & Zahrada PRO 15
2016-10-30 21:21 - 2016-11-01 22:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IMSIDesign
2016-10-30 21:19 - 2016-10-30 21:19 - 00000000 ____D C:\ProgramData\IMSIDesign
2016-10-30 11:05 - 2016-10-30 11:11 - 00000000 ____D C:\Users\Roman\AppData\Roaming\Maxthon5
2016-10-30 10:59 - 2016-10-30 10:59 - 00000000 ____D C:\Users\Roman\AppData\Local\Mozilla
2016-10-30 10:55 - 2016-10-30 10:57 - 00000000 ____D C:\Users\Roman\AppData\Roaming\Opera Software
2016-10-30 10:55 - 2016-10-30 10:57 - 00000000 ____D C:\Users\Roman\AppData\Local\Opera Software

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-29 22:25 - 2015-07-14 20:10 - 00000000 ____D C:\Stahovák
2016-11-29 22:21 - 2016-10-23 15:52 - 02039646 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-29 22:21 - 2016-02-13 13:50 - 00843542 _____ C:\WINDOWS\system32\perfh005.dat
2016-11-29 22:21 - 2016-02-13 13:50 - 00192556 _____ C:\WINDOWS\system32\perfc005.dat
2016-11-29 22:21 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2016-11-29 22:03 - 2015-08-22 11:17 - 00000000 ___RD C:\Users\Roman\OneDrive
2016-11-29 22:02 - 2016-02-13 14:10 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-29 22:01 - 2015-10-30 07:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-11-29 16:34 - 2015-08-11 22:25 - 00000000 ____D C:\ProgramData\ProductData
2016-11-29 15:21 - 2016-06-27 09:50 - 00000000 ____D C:\Byt
2016-11-29 15:04 - 2015-08-22 11:29 - 00000296 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Roman.job
2016-11-29 15:04 - 2015-08-11 22:25 - 00002482 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Roman
2016-11-29 08:32 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-29 08:27 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-27 22:18 - 2015-07-14 20:42 - 00000000 ____D C:\Users\Roman\AppData\Roaming\vlc
2016-11-27 22:12 - 2015-10-14 18:55 - 00009728 _____ C:\Users\Roman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-11-27 16:38 - 2015-07-14 20:10 - 00000000 ____D C:\Stůl
2016-11-27 16:28 - 2015-08-22 11:13 - 00000000 ____D C:\Users\Roman\AppData\Local\Packages
2016-11-27 16:14 - 2015-07-24 08:54 - 00000000 ____D C:\Users\Roman\AppData\Local\Google
2016-11-27 16:03 - 2015-07-14 19:53 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-27 15:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-11-27 14:53 - 2016-02-13 14:06 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-11-27 08:46 - 2015-07-14 20:04 - 00000000 ____D C:\Users\Roman\AppData\Local\GHISLER
2016-11-25 15:26 - 2015-07-14 19:43 - 00000000 ___RD C:\Users\Roman\Desktop\Programy
2016-11-22 23:27 - 2016-05-03 07:38 - 00000000 ____D C:\Users\Roman
2016-11-21 19:22 - 2015-07-14 20:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-11-21 15:51 - 2015-07-14 19:57 - 00000000 ____D C:\Users\Roman\.FBReader
2016-11-15 00:48 - 2016-02-13 05:07 - 00277560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-12 17:17 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2016-11-10 21:52 - 2015-08-22 11:17 - 00002429 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-11-10 14:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-11-10 14:50 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-10 06:01 - 2016-02-13 14:14 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-10 06:01 - 2015-07-14 19:07 - 00000000 ___RD C:\Users\Roman\Virtual Machines
2016-11-09 21:56 - 2015-10-30 08:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-11-09 21:56 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-09 21:56 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-09 21:55 - 2015-10-30 08:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-11-09 21:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-11-09 21:55 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-09 21:55 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-11-09 21:55 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-11-09 21:55 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-09 21:55 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-09 21:55 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-09 18:51 - 2015-07-15 07:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 18:47 - 2015-07-15 07:28 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-09 16:05 - 2016-02-13 13:53 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-11-06 21:56 - 2016-05-03 07:34 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-05 12:29 - 2016-01-09 14:15 - 00000000 ____D C:\Users\Roman\.oracle_jre_usage
2016-11-02 19:53 - 2015-07-14 19:24 - 00068904 _____ C:\Users\Roman\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-01 22:02 - 2015-07-14 21:21 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-30 21:26 - 2016-05-23 21:49 - 00000000 ____D C:\ProgramData\Temp
2016-10-30 10:59 - 2015-07-14 20:11 - 00000000 ____D C:\Users\Roman\AppData\Roaming\Mozilla

==================== Files in the root of some directories =======

2004-08-04 02:07 - 2004-08-04 02:07 - 0001999 _____ () C:\Users\Roman\AppData\Roaming\netcache32.sys
2015-10-14 18:55 - 2016-11-27 22:12 - 0009728 _____ () C:\Users\Roman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-06-29 12:12 - 2016-08-12 07:34 - 0032038 _____ () C:\Users\Roman\AppData\Local\SquareClock.Production_Home_Siko_WebIcon.ico

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-11-25 14:13

==================== End of FRST.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\ApnDatabase.xml
C:\Users\Roman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1285628505-2949731663-139041242-1001\...\MountPoints2: X - "X:\setup.exe"
FF Plugin-x32: Adobe Acrobat -> D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [No File]
U3 idsvc; no ImagePath
Task: {31596037-C1B2-4993-9035-B7ECB8132890} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {833F0C4E-F44A-4B99-8AA7-6872043A66EB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {85F0D097-CAF1-4F31-BB43-865BAB6F5DE7} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
C:\Windows\AutoKMS\AutoKMS.exe
Task: {A4EC318F-E83A-4C10-9052-274E3A73E0A2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {A7453F79-7D9C-46EB-9710-E665D93C3AD0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {AD81B1C4-67FC-4BEC-9043-F1D7B34AA543} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B1CACF51-B31F-4C00-A124-E31B869F654E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {C4B83415-472E-45C8-B7A9-4FC30D22EFC5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {D14C2E94-C104-4A30-8691-4874387FF445} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {F0960F13-F2D0-43C4-8F25-36AB5FB26D21} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F130382A-E162-43DF-94ED-B98EDD8D3687} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {F838B4CF-4C10-495A-B03A-195A6F5E58D5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Temp:66BB1E73 [147]

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Dor]

Fix result of Farbar Recovery Scan Tool (x64) Version: 30-11-2016
Ran by Roman (30-11-2016 21:23:26) Run:1
Running from C:\Users\Roman\Desktop
Loaded Profiles: Roman (Available Profiles: Roman & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\ApnDatabase.xml
C:\Users\Roman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1285628505-2949731663-139041242-1001\...\MountPoints2: X - "X:\setup.exe"
FF Plugin-x32: Adobe Acrobat -> D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [No File]
U3 idsvc; no ImagePath
Task: {31596037-C1B2-4993-9035-B7ECB8132890} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {833F0C4E-F44A-4B99-8AA7-6872043A66EB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {85F0D097-CAF1-4F31-BB43-865BAB6F5DE7} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
C:\Windows\AutoKMS\AutoKMS.exe
Task: {A4EC318F-E83A-4C10-9052-274E3A73E0A2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {A7453F79-7D9C-46EB-9710-E665D93C3AD0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {AD81B1C4-67FC-4BEC-9043-F1D7B34AA543} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B1CACF51-B31F-4C00-A124-E31B869F654E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {C4B83415-472E-45C8-B7A9-4FC30D22EFC5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {D14C2E94-C104-4A30-8691-4874387FF445} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {F0960F13-F2D0-43C4-8F25-36AB5FB26D21} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F130382A-E162-43DF-94ED-B98EDD8D3687} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {F838B4CF-4C10-495A-B03A-195A6F5E58D5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Temp:66BB1E73 [147]

EmptyTemp:
End
*****************

C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
Could not move "C:\WINDOWS\system32\ApnDatabase.xml" => Scheduled to move on reboot.
C:\Users\Roman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
"HKU\S-1-5-21-1285628505-2949731663-139041242-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\X" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\Adobe Acrobat" => key removed successfully
idsvc => service removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{31596037-C1B2-4993-9035-B7ECB8132890}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{31596037-C1B2-4993-9035-B7ECB8132890}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{833F0C4E-F44A-4B99-8AA7-6872043A66EB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{833F0C4E-F44A-4B99-8AA7-6872043A66EB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{85F0D097-CAF1-4F31-BB43-865BAB6F5DE7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{85F0D097-CAF1-4F31-BB43-865BAB6F5DE7}" => key removed successfully
C:\WINDOWS\System32\Tasks\AutoKMS => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => key removed successfully
"C:\Windows\AutoKMS\AutoKMS.exe" => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A4EC318F-E83A-4C10-9052-274E3A73E0A2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4EC318F-E83A-4C10-9052-274E3A73E0A2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A7453F79-7D9C-46EB-9710-E665D93C3AD0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A7453F79-7D9C-46EB-9710-E665D93C3AD0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AD81B1C4-67FC-4BEC-9043-F1D7B34AA543}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD81B1C4-67FC-4BEC-9043-F1D7B34AA543}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1CACF51-B31F-4C00-A124-E31B869F654E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1CACF51-B31F-4C00-A124-E31B869F654E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C4B83415-472E-45C8-B7A9-4FC30D22EFC5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4B83415-472E-45C8-B7A9-4FC30D22EFC5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D14C2E94-C104-4A30-8691-4874387FF445}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D14C2E94-C104-4A30-8691-4874387FF445}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F0960F13-F2D0-43C4-8F25-36AB5FB26D21}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0960F13-F2D0-43C4-8F25-36AB5FB26D21}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F130382A-E162-43DF-94ED-B98EDD8D3687}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F130382A-E162-43DF-94ED-B98EDD8D3687}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F838B4CF-4C10-495A-B03A-195A6F5E58D5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F838B4CF-4C10-495A-B03A-195A6F5E58D5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
C:\ProgramData\Temp => ":66BB1E73" ADS removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 22539429 B
Java, Flash, Steam htmlcache => 781 B
Windows/system/drivers => 28874 B
Edge => 63012459 B
Chrome => 710382153 B
Firefox => 5143609 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 13824 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 11386 B
Roman => 13969995 B
DefaultAppPool => 6144 B

RecycleBin => 0 B
EmptyTemp: => 777.3 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-11-2016 21:24:57)

C:\WINDOWS\system32\ApnDatabase.xml => Is moved successfully

==== End of Fixlog 21:24:57 ====

[Rudy]

Smazáno, log je již OK.

[Dor]

Děkuji moc

[Rudy]

Rádo se stalo!