Windows installer problem

[miro1091]

2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1047.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1026.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10082.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10081.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10079.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10029.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10021.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10017.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10010.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10007.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10006.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10005.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10004.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10000.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\SysWOW64\C_037.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_875.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_870.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_500.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_21027.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_21025.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20924.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20905.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20880.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20871.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20838.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20833.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20424.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20423.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20420.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20297.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20290.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20285.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20284.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20280.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20278.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20277.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20273.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20269.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20108.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20107.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20106.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_20105.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1149.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1148.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1147.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1146.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1145.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1144.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1143.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1142.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1141.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1140.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1047.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_1026.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10082.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10081.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10079.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10029.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10021.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10017.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10010.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10007.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10006.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10005.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10004.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_10000.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066082 _____ C:\WINDOWS\system32\C_037.NLS
2017-02-05 12:30 - 2017-02-05 12:30 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00065664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastSrv.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidnsp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndadmin.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\hdwwiz.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fthsvc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhlisten.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhautoplay.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngprovider.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationHostProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFSpellcheckDS.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00064512 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2i_GPIO2.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsnmp32.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00063081 _____ C:\WINDOWS\system32\certlm.msc
2017-02-05 12:30 - 2017-02-05 12:30 - 00063070 _____ C:\WINDOWS\system32\certmgr.msc
2017-02-05 12:30 - 2017-02-05 12:30 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\stclient.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\pautoenr.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\edptask.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xwizard.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\l2nacp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WorkFoldersRes.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersRes.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\takeown.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\capiprovider.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00061528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlrmdr.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbFlt.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmbmgr.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00060744 _____ (Microsoft Corporation) C:\WINDOWS\system32\gacinstall.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00060744 _____ (Mellanox) C:\WINDOWS\system32\Drivers\winverbs.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00060504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00060232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00060232 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\Drivers\HpSAMD.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00060232 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wclEtw.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00059720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00059720 _____ (Marvell Semiconductor, Inc.) C:\WINDOWS\system32\Drivers\mvumis.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00059480 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsActionDialog.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provlaunch.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhtask.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdPnp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00058696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmutil.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\adprovider.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\umbus.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00057672 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\percsas3i.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAlacEncoder.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucmhc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransliterationRanker.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PNPXAssocPrx.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAlacDecoder.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicDisplay.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00057160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsvd.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdhui.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HelpPaneProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PnPUnattend.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhsetup.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapiprovider.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmintf.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00056136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00056119 _____ C:\WINDOWS\system32\srms.dat
2017-02-05 12:30 - 2017-02-05 12:30 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\CleanPCCSP.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00055624 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\megasas.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpowmi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WudfSMCClassExt.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00054600 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\percsas2i.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00054312 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcleanup.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsigd.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\networkitemfactory.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MultiDigiMon.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpninputrouter.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmojiDS.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAConn.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AtBroker.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00053576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\signdrv.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\drttransport.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidi2c.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00052040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\condrv.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SortWindows61.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdiagschd.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingService.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmocx.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmdl32.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeXmlParser.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPCRYPT.DLL
2017-02-05 12:30 - 2017-02-05 12:30 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh263enc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00049992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vdrvroot.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcacli.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardBi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmler.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\forfiles.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\circlass.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00048968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\CAD.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sfc_os.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFCoinstaller.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2017-02-05 12:30 - 2017-02-05 12:30 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxcommon.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00047682 _____ C:\WINDOWS\system32\diskmgmt.msc
2017-02-05 12:30 - 2017-02-05 12:30 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmictimeprovider.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAlacDecoder.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcbcp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthHfAud.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\cipher.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00046920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mausbip.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00046920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidinterrupt.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00046908 _____ C:\WINDOWS\system32\OutdoorAudioEnvironment.bin
2017-02-05 12:30 - 2017-02-05 12:30 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SortServer2003Compat.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rrinstaller.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Udecx.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\devauthe.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.WebPlatform.SecurityBroker.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvfw.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmlua.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00044872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netfxperf.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh263enc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDriverRetrievalClient.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredprovider.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\uicom.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmcompc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndfetw.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00043336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00043131 _____ C:\WINDOWS\mib.bin
2017-02-05 12:30 - 2017-02-05 12:30 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UI0Detect.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsiCofire.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsjob.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmmon32.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00041587 _____ C:\WINDOWS\system32\azman.msc
2017-02-05 12:30 - 2017-02-05 12:30 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\netfxperf.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00040872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00040776 _____ (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\Drivers\sisraid2.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00040776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssmbios.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\where.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsUsbGDCoInstaller.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthudtask.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\whealogr.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACCTRES.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\waitfor.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\cnvfat.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rrinstaller.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpui.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsauth.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksetup.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00038312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msgsm32.acm
2017-02-05 12:30 - 2017-02-05 12:30 - 00038128 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_GPIO.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaExt.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dtsh.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBCAMD2.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddodiag.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\credwiz.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmcfg32.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00037376 _____ C:\WINDOWS\system32\SpectrumSyncClient.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackagedCWALauncher.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\cliconfg.rll
2017-02-05 12:30 - 2017-02-05 12:30 - 00037192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00037192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00036936 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-02-05 12:30 - 2017-02-05 12:30 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SetNetworkLocationFlyout.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\klist.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\esevss.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filetrace.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapPeerProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsium.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthBatteryAlertsManager.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdi.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\witnesswmiv2provider.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcsubs.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Apphlpdm.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapAuthProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SetProxyCredential.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsApoFxProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhf.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbGD.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\pots.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\FDResPub.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RNDISMP.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasphone.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwlauncher.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\proquota.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidserv.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\FdDevQuery.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDisplayStatusManager.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\choice.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00034120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbatt.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\datusage.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\cofiredm.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00033280 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\iagpio.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.WorkplaceSettings.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcnsh.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfg.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbrpm.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fdc.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00032584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\syskey.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndproxystub.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutilext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthhfHid.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmNotificationBroker.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\cacls.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthpanapi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzSqlExt.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00032072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\battc.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00032056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\winrnr.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDOIProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00031584 _____ (Microsoft Corporation) C:\WINDOWS\system32\imaadp32.acm
2017-02-05 12:30 - 2017-02-05 12:30 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwsso.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2017-02-05 12:30 - 2017-02-05 12:30 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tape.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00031032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdmo.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00031032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msadp32.acm
2017-02-05 12:30 - 2017-02-05 12:30 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ureg.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\timeout.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpapi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cliconfg.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxdm.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\CmBatt.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpupdate.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWNet.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\clip.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmiprop.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxsstore.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\setspn.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.proxystub.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dot3Conn.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmpbk32.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00028984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winnsi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvfw.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MemoryDiagnostic.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\elsTrans.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\asyncmac.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00028488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00028488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00028472 _____ (Microsoft Corporation) C:\WINDOWS\system32\avrt.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAMRNBSink.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallButtons.ProxyStub.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00027976 _____ (Mellanox) C:\WINDOWS\system32\Drivers\winmad.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00027928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraSettingsUIHost.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wephostsvc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00027472 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptbase.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00027464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpauto.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\icmui.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npsvctrig.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEject.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00026952 _____ C:\WINDOWS\system32\Drivers\SDFRd.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00026952 _____ (Promise Technology, Inc.) C:\WINDOWS\system32\Drivers\stexstor.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdown.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\davhlpr.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmdext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WINSRPC.DLL
2017-02-05 12:30 - 2017-02-05 12:30 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\osbaseln.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncuprov.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gptext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmutil.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsldr.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\netbtugc.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaApi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DefaultPrinterProvider.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00025416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\urschipidea.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00025416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscisvif.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdiagnhost.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdProp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comp.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\chkwudrv.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00024904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00024904 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDACLSys.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fc.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAMRNBSink.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\serwvdrv.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00023880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\urssynopsys.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00023880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mcd.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbnmpntw.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\cofire.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\capisp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhapi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00023280 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtapi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvcctl.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kdnic.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\acu.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00022856 _____ (Microsoft Corporation) C:\WINDOWS\system32\streamci.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022856 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00022856 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdxata.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00022736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winnsi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmlprovi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshelper.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\uniplat.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcVSp1res.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\easconsent.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsDeviceAccessRevocation.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasctrs.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\nbtstat.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smclib.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00021744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg711.acm
2017-02-05 12:30 - 2017-02-05 12:30 - 00021656 _____ C:\WINDOWS\system32\NetTrace.PLA.Diagnostics.xml
2017-02-05 12:30 - 2017-02-05 12:30 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\replace.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiltcfg.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\genericusbfn.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icmui.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdPHost.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisVirtualBus.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\convert.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmstplua.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bridgeunattend.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\userinitext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\umdmxfrm.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdial.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\netevent.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EsdSip.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AcpiDev.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00020272 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00020200 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscorier.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMmRes.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2017-02-05 12:30 - 2017-02-05 12:30 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\runas.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscorier.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\irclass.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMmRes.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\syssetup.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\serialui.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteWipeCSP.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\doskey.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00019272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\isapnp.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00019184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksuser.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\TieringEngineProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\netbios.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHostProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernelceip.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wmiacpi.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\clb.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\hh.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00017935 _____ C:\WINDOWS\system32\EventViewer_EventDetails.xsl
2017-02-05 12:30 - 2017-02-05 12:30 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\RmClient.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasautou.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ktmutil.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\find.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wowreg32.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00017280 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtIntcLpioDMA.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00017224 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlS0WndH.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\secinit.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\print.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\label.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsavailux.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxapi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MTConfig.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\whhelper.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\subst.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\pstorec.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\pstask.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetmon.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00016040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwinsat.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\regidle.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcwrun.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ifsutilx.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\clrhost.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshirda.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wclSqm.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpts.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msidcrl40.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\BamSettingsClient.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015232 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtPL080.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00015176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msisadrv.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensApi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sas.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpipmi.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcmonitor.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014544 _____ (Microsoft Corporation) C:\WINDOWS\system32\psapi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshhyperv.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmcodecdspps.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbperf.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeSyncTask.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBthProxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\FamilySafetyExt.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsui.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\umpass.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpitime.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\DockInterface.ProxyStub.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\coreaudiopolicymanagerext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2017-02-05 12:30 - 2017-02-05 12:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_ISCII.DLL
2017-02-05 12:30 - 2017-02-05 12:30 - 00014208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRTProxy.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00014152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swenum.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundPlayback.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\svsvc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentTask.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\errdev.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clrhost.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonUI.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LAPRXY.DLL
2017-02-05 12:30 - 2017-02-05 12:30 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InfDefaultInstall.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serscan.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\acproxy.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSHTCPIP.DLL
2017-02-05 12:30 - 2017-02-05 12:30 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wship6.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpipagr.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00012616 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizres.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00012416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshhyperv.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiwer.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsied.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\DefaultDeviceManager.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00012104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volume.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00012056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeDateMUICallback.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\spnet.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\regedt32.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscat32.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\help.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomcnfg.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\VpnSohDesktop.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\spmpm.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Locator.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CIRCoInst.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\acledit.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmcodecdspps.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\softpub.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\plasrv.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Nlsdl.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebCache.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OskSupport.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssip32.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-power-cad-events.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\idndl.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\beep.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\comcat.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00009728 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\bcmfn2.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\osuninst.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxex.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscadminui.exe
2017-02-05 12:30 - 2017-02-05 12:30 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys
2017-02-05 12:30 - 2017-02-05 12:30 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wclWdi.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\simpdata.tlb
2017-02-05 12:30 - 2017-02-05 12:30 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00007496 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlibres.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Firewall.cpl
2017-02-05 12:30 - 2017-02-05 12:30 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-storage-tiering-events.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdatsrc.tlb
2017-02-05 12:30 - 2017-02-05 12:30 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2help.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsyncres.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00004014 _____ C:\WINDOWS\system32\xwizard.dtd
2017-02-05 12:30 - 2017-02-05 12:30 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_8.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sfc.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rnr20.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msafd.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskres2.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bridgeres.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\asferror.dll
2017-02-05 12:30 - 2017-02-05 12:30 - 00001820 _____ C:\WINDOWS\system32\rasctrnm.h
2017-02-05 12:30 - 2017-02-05 12:30 - 00000843 _____ C:\WINDOWS\system32\onlinesetup.cmd
2017-02-05 12:30 - 2017-02-05 12:30 - 00000714 _____ C:\WINDOWS\system32\RestartManager.mof
2017-02-05 12:30 - 2017-02-05 12:30 - 00000646 _____ C:\WINDOWS\system32\Drivers\gmreadme.txt
2017-02-05 12:30 - 2017-02-05 12:30 - 00000614 _____ C:\WINDOWS\system32\WdsUnattendTemplate.xml
2017-02-05 12:30 - 2017-02-05 12:30 - 00000565 _____ C:\WINDOWS\system32\NdfEventView.xml
2017-02-05 12:30 - 2017-02-05 12:30 - 00000263 _____ C:\WINDOWS\system32\odbcconf.rsp
2017-02-05 12:30 - 2017-02-05 12:30 - 00000176 _____ C:\WINDOWS\system32\RestartManagerUninstall.mof
2017-02-05 12:21 - 2017-02-18 07:54 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-05 06:29 - 2017-02-18 20:51 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-02-05 06:29 - 2017-02-18 07:18 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-02-05 06:29 - 2017-02-18 07:00 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-02-05 06:29 - 2017-02-06 00:02 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-02-05 06:29 - 2017-02-06 00:02 - 00000000 ____D C:\WINDOWS\servicing
2017-02-05 06:29 - 2017-02-05 12:39 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2017-02-05 06:29 - 2017-02-05 12:39 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-02-05 06:29 - 2017-02-05 06:29 - 00843080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmiEngine.dll
2017-02-05 06:29 - 2017-02-05 06:29 - 00758088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-02-05 06:29 - 2017-02-05 06:29 - 00243016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdscore.dll
2017-02-05 06:29 - 2017-02-05 06:29 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PkgMgr.exe
2017-02-05 06:29 - 2017-02-05 06:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-02-05 06:29 - 2017-02-05 06:29 - 00139592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2017-02-05 06:29 - 2017-02-05 06:29 - 00128840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SSShim.dll
2017-02-05 06:29 - 2017-02-05 06:29 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-02-05 06:29 - 2017-02-05 06:29 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2017-02-05 06:29 - 2017-02-05 06:29 - 00000000 ____D C:\WINDOWS\system32\SMI
2017-02-05 06:29 - 2017-02-05 06:29 - 00000000 ____D C:\WINDOWS\system32\downlevel
2017-01-29 20:35 - 2017-02-18 20:50 - 00000000 ____D C:\AdwCleaner
2017-01-29 08:40 - 2017-01-29 08:40 - 00000000 ____D C:\Users\miro1\AppData\Roaming\MAXON
2017-01-29 00:03 - 2017-02-18 07:15 - 00002289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-01-28 23:55 - 2017-01-29 00:10 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-01-28 22:29 - 2017-01-28 22:29 - 00219009 _____ C:\ProgramData\cl.uninstall.1485638849.bdinstall.bin
2017-01-28 22:29 - 2017-01-28 22:29 - 00029050 _____ C:\ProgramData\agent.1485638962.bdinstall.bin
2017-01-28 22:27 - 2017-01-28 22:27 - 00035670 _____ C:\ProgramData\dm.1485638863.bdinstall.bin
2017-01-28 20:56 - 2017-02-18 20:55 - 00031149 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-01-28 20:54 - 2017-01-28 20:54 - 00040925 _____ C:\ProgramData\dm.1485633253.bdinstall.bin
2017-01-28 20:53 - 2017-01-28 20:53 - 00057045 _____ C:\ProgramData\dm.1485633184.bdinstall.bin
2017-01-28 20:53 - 2017-01-28 20:53 - 00000000 ____D C:\ProgramData\Bitdefender Device Management
2017-01-28 20:52 - 2017-01-28 20:52 - 00379289 _____ C:\ProgramData\cl.1485632982.bdinstall.bin
2017-01-28 20:52 - 2017-01-28 20:52 - 00000385 _____ C:\WINDOWS\system32\user_gensett.xml
2017-01-28 20:51 - 2017-01-28 22:29 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Bitdefender
2017-01-28 20:51 - 2017-01-28 20:51 - 00000000 ____D C:\ProgramData\BDLogging
2017-01-28 20:51 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2017-01-28 20:49 - 2017-01-28 22:29 - 00000000 ____D C:\ProgramData\Bitdefender
2017-01-28 20:49 - 2017-01-28 20:49 - 00000000 ____D C:\Users\miro1\AppData\Roaming\QuickScan
2017-01-28 20:30 - 2017-01-28 20:30 - 00028905 _____ C:\ProgramData\agent.1485631807.bdinstall.bin
2017-01-28 20:17 - 2017-01-29 08:24 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2017-01-28 19:19 - 2017-01-28 19:19 - 00028897 _____ C:\ProgramData\agent.1485627591.bdinstall.bin
2017-01-28 18:36 - 2017-01-28 18:36 - 00028898 _____ C:\ProgramData\agent.1485624968.bdinstall.bin
2017-01-28 18:33 - 2017-01-28 18:33 - 00047353 _____ C:\ProgramData\agent.1485624834.bdinstall.bin
2017-01-28 18:33 - 2017-01-28 18:33 - 00000000 ____D C:\ProgramData\Bitdefender Agent
2017-01-28 17:52 - 2017-01-28 17:52 - 00000000 ____D C:\WINDOWS\system32\MpEngineStore
2017-01-28 16:46 - 2017-01-28 16:46 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Obsidium
2017-01-28 16:35 - 2017-01-28 16:35 - 00000000 ____D C:\ProgramData\dbg
2017-01-28 16:30 - 2017-01-28 16:45 - 00048494 _____ C:\WINDOWS\ZAM.krnl.trace
2017-01-28 16:30 - 2017-01-28 16:30 - 00203680 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zamguard64.sys
2017-01-28 16:29 - 2017-01-28 18:32 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-01-28 16:29 - 2017-01-28 16:29 - 00000000 ____D C:\Users\miro1\AppData\Local\Zemana
2017-01-28 16:16 - 2017-01-28 18:04 - 00000000 ____D C:\Program Files (x86)\Trojan Remover
2017-01-28 16:03 - 2017-01-28 16:03 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-01-28 12:25 - 2017-02-18 07:18 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-01-28 12:18 - 2017-01-29 03:39 - 00289608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.exe
2017-01-28 12:18 - 2017-01-28 12:18 - 00000191 _____ C:\WINDOWS\system32\AppVStreamingUX.exe.config
2017-01-27 14:34 - 2017-01-29 08:21 - 00000000 ____D C:\Program Files\Common Files\AV
2017-01-26 13:11 - 2017-02-18 07:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DB Browser for SQLite
2017-01-26 13:11 - 2017-01-26 13:11 - 00000000 ____D C:\Program Files\DB Browser for SQLite
2017-01-24 21:23 - 2017-01-24 21:23 - 00000000 ____D C:\Users\miro1\AppData\Local\DBG
2017-01-23 19:32 - 2017-01-23 19:39 - 00000000 ____D C:\Users\miro1\AppData\Local\MQTT-FX
2017-01-23 19:32 - 2017-01-23 19:32 - 00000000 ____D C:\Users\miro1\AppData\Roaming\de.jensd.mqttfx.ui.MQTTFX
2017-01-21 10:13 - 2017-01-23 14:22 - 00000168 _____ C:\Users\miro1\.packettracer
2017-01-21 10:13 - 2017-01-21 10:20 - 00019456 _____ C:\Users\miro1\AppData\Local\WebpageIcons.db
2017-01-21 10:13 - 2017-01-21 10:20 - 00000000 ____D C:\Users\miro1\Cisco Packet Tracer 7.0
2017-01-21 10:12 - 2017-02-18 07:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Packet Tracer
2017-01-21 10:12 - 2017-01-21 10:12 - 00000000 ____D C:\Program Files\Cisco Packet Tracer 7.0

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-18 20:51 - 2016-07-15 00:38 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2017-02-18 16:15 - 2015-08-01 10:38 - 00000000 ____D C:\Users\miro1\AppData\Local\Packages
2017-02-18 13:42 - 2016-01-26 10:13 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Skype
2017-02-18 13:26 - 2015-08-30 21:42 - 00007630 _____ C:\Users\miro1\AppData\Local\Resmon.ResmonCfg
2017-02-18 08:01 - 2016-06-10 17:57 - 00007168 _____ (painter) C:\WINDOWS\system32\painter_x64.dll
2017-02-18 08:00 - 2016-10-23 13:22 - 00000000 ____D C:\Users\miro1\AppData\Roaming\vlc
2017-02-18 07:23 - 2015-11-03 10:24 - 00000000 ____D C:\ProgramData\Apple Computer
2017-02-18 07:22 - 2015-08-01 10:40 - 00002368 _____ C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-02-18 07:20 - 2015-08-01 10:53 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-02-18 07:20 - 2015-08-01 10:38 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-02-18 07:19 - 2015-12-30 03:21 - 00000258 __RSH C:\ProgramData\ntuser.pol
2017-02-18 07:18 - 2015-12-30 03:20 - 00022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-02-18 07:12 - 2016-11-06 08:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-02-18 07:12 - 2016-11-05 22:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastShare
2017-02-18 07:12 - 2016-11-03 10:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced IP Scanner v2
2017-02-18 07:12 - 2016-10-24 09:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-02-18 07:12 - 2016-10-23 13:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-02-18 07:12 - 2016-09-26 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB R2016a
2017-02-18 07:12 - 2016-09-20 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TDM-GCC-32
2017-02-18 07:12 - 2016-09-20 05:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans
2017-02-18 07:12 - 2016-09-17 06:26 - 00000000 ____D C:\Users\Default.migrated
2017-02-18 07:12 - 2016-09-05 09:07 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Alt-C
2017-02-18 07:12 - 2016-09-01 06:56 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-18 07:12 - 2016-09-01 06:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-18 07:12 - 2016-08-28 10:06 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft ProduKey
2017-02-18 07:12 - 2016-08-02 08:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-02-18 07:12 - 2016-08-01 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-02-18 07:12 - 2016-07-18 10:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MonitorTest
2017-02-18 07:12 - 2016-07-15 23:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2017-02-18 07:12 - 2016-07-15 09:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
2017-02-18 07:12 - 2016-07-15 00:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAMP
2017-02-18 07:12 - 2016-07-08 12:20 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2017-02-18 07:12 - 2016-07-06 13:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2017-02-18 07:12 - 2016-06-29 10:42 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ruby 2.3.0-p0-x64
2017-02-18 07:12 - 2016-06-26 07:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2017-02-18 07:12 - 2016-06-03 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MOBILedit!
2017-02-18 07:12 - 2016-06-03 17:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Compiled Driver Disc (Full)
2017-02-18 07:12 - 2016-04-04 02:17 - 00000000 ____D C:\WINDOWS\ShellNew
2017-02-18 07:12 - 2016-03-10 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CircuitMaker 2000
2017-02-18 07:12 - 2016-03-09 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Grep
2017-02-18 07:12 - 2016-01-26 20:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transcend Recovery
2017-02-18 07:12 - 2016-01-26 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Display Manager
2017-02-18 07:12 - 2016-01-22 15:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape 0.91
2017-02-18 07:12 - 2016-01-14 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
2017-02-18 07:12 - 2015-12-01 22:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipSync Server
2017-02-18 07:12 - 2015-11-30 22:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft WebMatrix
2017-02-18 07:12 - 2015-11-25 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-02-18 07:12 - 2015-11-25 12:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluge
2017-02-18 07:12 - 2015-11-22 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-02-18 07:12 - 2015-11-19 11:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-02-18 07:12 - 2015-11-06 06:52 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TransMac
2017-02-18 07:12 - 2015-10-28 12:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2017-02-18 07:12 - 2015-10-20 08:14 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2017-02-18 07:12 - 2015-10-20 08:14 - 00000000 ____D C:\WINDOWS\system32\1033
2017-02-18 07:12 - 2015-10-20 08:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2012
2017-02-18 07:12 - 2015-10-01 14:28 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2017-02-18 07:12 - 2015-09-29 10:09 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2017-02-18 07:12 - 2015-09-09 14:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2017-02-18 07:12 - 2015-08-25 20:28 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusicBee
2017-02-18 07:12 - 2015-08-19 18:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2017-02-18 07:12 - 2015-08-10 19:17 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-02-18 07:12 - 2015-08-05 09:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-02-18 07:12 - 2015-08-01 17:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-02-18 07:12 - 2015-08-01 13:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-02-18 07:12 - 2015-08-01 11:47 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2017-02-18 07:04 - 2016-10-23 12:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2017-02-18 07:04 - 2016-10-23 12:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2017-02-18 07:04 - 2016-07-18 11:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D
2017-02-18 07:04 - 2016-07-08 14:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-02-18 07:04 - 2016-01-26 10:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-02-18 07:04 - 2015-12-27 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2017-02-18 07:04 - 2015-12-22 20:48 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2017-02-18 07:04 - 2015-11-30 22:16 - 00000000 ____D C:\Program Files\IIS
2017-02-18 07:04 - 2015-10-20 08:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2017-02-18 07:04 - 2015-10-17 11:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2017-02-18 07:04 - 2015-08-31 19:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2017-02-18 07:04 - 2015-08-22 17:07 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-18 07:04 - 2015-08-05 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2017-02-18 07:04 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\system32\d
2017-02-18 07:02 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-02-18 07:00 - 2016-11-03 19:01 - 00000000 ____D C:\Temp
2017-02-18 02:00 - 2015-08-01 17:09 - 00000000 ____D C:\Users\miro1\AppData\Local\Adobe
2017-02-17 19:34 - 2015-07-10 12:04 - 00000298 _____ C:\WINDOWS\win.ini
2017-02-17 18:46 - 2015-08-05 09:22 - 00000000 ____D C:\ProgramData\Package Cache
2017-02-16 21:23 - 2016-04-13 11:00 - 00000000 __SHD C:\Users\miro1\AppData\Local\lxss
2017-02-16 20:01 - 2015-11-24 23:27 - 00000000 ____D C:\Users\miro1\AppData\Local\CrashDumps
2017-02-16 19:51 - 2015-10-17 11:13 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-16 19:50 - 2015-10-17 11:13 - 00000000 ____D C:\Program Files (x86)\Samsung
2017-02-16 19:04 - 2016-06-03 17:39 - 00000000 ____D C:\Users\miro1\AppData\Roaming\MOBILedit
2017-02-16 18:45 - 2015-11-19 11:56 - 00000000 ____D C:\Users\miro1\AppData\Roaming\FileZilla
2017-02-16 18:04 - 2015-09-29 10:06 - 00000000 ____D C:\Program Files (x86)\Opera
2017-02-16 13:32 - 2015-08-19 18:19 - 00000000 ____D C:\Users\miro1\AppData\Local\ElevatedDiagnostics
2017-02-16 12:16 - 2016-10-28 19:13 - 00351477 _____ C:\DUMP1433.tmp
2017-02-16 12:04 - 2016-09-14 21:21 - 00000000 ____D C:\Users\DefaultAppPool
2017-02-16 12:04 - 2015-09-11 19:05 - 00000000 ____D C:\Users\miro1091
2017-02-16 12:04 - 2015-08-19 18:28 - 00000000 ____D C:\Users\miro1091_asus
2017-02-16 12:04 - 2015-08-01 10:49 - 00000000 ____D C:\Program Files (x86)\Intel
2017-02-15 12:48 - 2015-11-16 17:27 - 00000600 _____ C:\Users\miro1\AppData\Roaming\winscp.rnd
2017-02-12 19:05 - 2015-11-03 10:22 - 00000000 ____D C:\ProgramData\Apple
2017-02-12 14:01 - 2016-06-03 17:39 - 00000000 ____D C:\Program Files\Compiled Driver Disk (Apple)
2017-02-12 00:46 - 2015-08-01 13:24 - 00000000 ____D C:\NST
2017-02-12 00:19 - 2016-07-15 00:57 - 00000000 ____D C:\Users\miro1\AppData\Local\clink
2017-02-12 00:11 - 2016-04-13 11:02 - 00002175 _____ C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bash on Ubuntu on Windows.lnk
2017-02-11 23:34 - 2015-11-06 06:52 - 00000000 ____D C:\Program Files (x86)\TransMac
2017-02-11 22:58 - 2016-10-23 12:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2017-02-11 22:58 - 2016-10-23 12:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2017-02-11 22:58 - 2016-04-30 09:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2017-02-11 22:31 - 2015-08-19 18:16 - 00000000 ____D C:\Program Files\Java
2017-02-11 22:31 - 2015-08-01 17:06 - 00000000 ____D C:\ProgramData\Oracle
2017-02-11 22:31 - 2015-08-01 17:06 - 00000000 ____D C:\Program Files (x86)\Java
2017-02-11 22:30 - 2015-08-01 17:06 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-02-11 21:40 - 2015-09-29 10:07 - 00000000 ____D C:\Users\miro1\AppData\Local\JDownloader v2.0
2017-02-10 01:22 - 2017-01-16 21:13 - 00001456 _____ C:\Users\miro1\AppData\Local\Adobe Save for Web 13.0 Prefs
2017-02-09 15:45 - 2015-09-29 10:06 - 00001125 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-02-08 21:18 - 2015-08-01 10:40 - 00000000 ___RD C:\Users\miro1\OneDrive
2017-02-08 21:17 - 2016-04-13 10:46 - 00000000 ____D C:\Users\miro1\AppData\Local\ConnectedDevicesPlatform
2017-02-02 13:37 - 2016-09-23 08:33 - 00000033 _____ C:\Users\miro1\AppData\Roaming\AdobeWLCMCache.dat
2017-02-02 10:33 - 2016-03-06 16:23 - 00000000 ____D C:\Program Files (x86)\FastShare
2017-02-01 18:24 - 2016-01-25 10:55 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-02-01 11:17 - 2016-10-23 12:45 - 00000000 ____D C:\Users\miro1\Documents\Visual Studio 2015
2017-02-01 10:46 - 2016-12-10 09:55 - 00000000 ____D C:\Users\miro1\AppData\Local\Arduino15
2017-01-29 11:05 - 2016-07-15 00:01 - 00000000 ____D C:\MAMP
2017-01-29 08:25 - 2016-08-19 07:48 - 00000000 ___RD C:\Users\miro1\Google Drive
2017-01-29 00:03 - 2015-08-01 11:00 - 00000000 ____D C:\Program Files (x86)\Google
2017-01-28 20:56 - 2016-10-19 18:24 - 00000000 ____D C:\ProgramData\AVAST Software
2017-01-28 19:33 - 2016-01-26 10:12 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-01-28 19:33 - 2016-01-26 10:12 - 00000000 ____D C:\ProgramData\Skype
2017-01-28 18:35 - 2015-10-11 15:44 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-28 18:33 - 2016-11-20 13:40 - 00000000 ____D C:\ProgramData\McAfee
2017-01-28 18:33 - 2016-01-29 12:49 - 00054736 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2017-01-28 18:22 - 2016-09-06 21:33 - 00000884 _____ C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2017-01-28 17:31 - 2016-01-29 12:51 - 00000532 _____ C:\WINDOWS\system32\.crusader
2017-01-28 17:03 - 2015-10-11 14:10 - 00000000 ____D C:\Program Files (x86)\Magical Jelly Bean
2017-01-28 16:35 - 2015-08-05 09:23 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2017-01-28 16:34 - 2015-08-05 09:33 - 00000000 ____D C:\Program Files (x86)\Autodesk
2017-01-28 16:27 - 2015-08-05 09:27 - 00000000 ____D C:\Users\miro1\Documents\3dsMax
2017-01-28 16:21 - 2016-11-06 08:39 - 00000000 ____D C:\Users\miro1\AppData\Roaming\MPC-HC
2017-01-28 15:57 - 2017-01-15 20:21 - 00000000 ____D C:\Program Files\PDF Printer for Windows 7
2017-01-28 15:57 - 2016-07-15 00:59 - 00000000 __SHD C:\Users\miro1091\IntelGraphicsProfiles
2017-01-28 13:07 - 2016-09-20 05:15 - 00000000 ____D C:\Program Files\NetBeans 8.1
2017-01-25 00:52 - 2016-10-10 07:24 - 00000000 ____D C:\Users\miro1\Counter-Strike 1.6
2017-01-23 16:48 - 2016-12-10 09:55 - 00000000 ____D C:\Users\miro1\Documents\Arduino
2017-01-21 23:39 - 2016-06-29 10:15 - 00000000 ____D C:\Users\miro1\AppData\Roaming\npm
2017-01-21 19:26 - 2016-08-08 09:57 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2017-01-21 15:24 - 2015-11-20 16:39 - 00000000 ____D C:\Users\miro1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse
2017-01-21 14:18 - 2015-08-22 17:07 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories =======

2016-09-23 08:33 - 2017-02-02 13:37 - 0000033 _____ () C:\Users\miro1\AppData\Roaming\AdobeWLCMCache.dat
2015-08-01 17:33 - 2015-08-01 18:10 - 0000626 _____ () C:\Users\miro1\AppData\Roaming\All CPU MeterV3_Settings.ini
2015-08-01 20:28 - 2015-08-18 19:47 - 0000054 _____ () C:\Users\miro1\AppData\Roaming\Battery Meter_Data.ini
2015-08-01 17:33 - 2015-08-01 18:08 - 0000263 _____ () C:\Users\miro1\AppData\Roaming\Battery Meter_Settings.ini
2015-08-01 17:34 - 2015-08-01 17:34 - 0000599 _____ () C:\Users\miro1\AppData\Roaming\Digital Clock_Settings.ini
2015-08-01 17:35 - 2015-08-01 17:58 - 0000841 _____ () C:\Users\miro1\AppData\Roaming\Drives Meter_Settings.ini
2015-08-01 17:36 - 2015-08-01 17:36 - 0000282 _____ () C:\Users\miro1\AppData\Roaming\GPU MeterV2_Settings.ini
2016-06-20 10:46 - 2016-06-20 10:46 - 0000112 _____ () C:\Users\miro1\AppData\Roaming\JP2K CS6 Prefs
2015-08-01 17:35 - 2015-08-01 18:04 - 0001212 _____ () C:\Users\miro1\AppData\Roaming\Network Meter_Settings.ini
2015-08-01 17:53 - 2015-08-19 07:55 - 0000023 _____ () C:\Users\miro1\AppData\Roaming\Network Meter_Usage.ini
2015-08-01 17:38 - 2015-08-01 17:45 - 0000367 _____ () C:\Users\miro1\AppData\Roaming\Weather Meter_Settings.ini
2015-11-16 17:27 - 2017-02-15 12:48 - 0000600 _____ () C:\Users\miro1\AppData\Roaming\winscp.rnd
2017-01-16 21:13 - 2017-02-10 01:22 - 0001456 _____ () C:\Users\miro1\AppData\Local\Adobe Save for Web 13.0 Prefs
2016-01-29 11:34 - 2016-01-29 11:34 - 0000001 _____ () C:\Users\miro1\AppData\Local\llftool.4.40.agreement
2015-10-14 08:29 - 2016-04-15 08:00 - 0000600 _____ () C:\Users\miro1\AppData\Local\PUTTY.RND
2016-12-10 08:29 - 2016-12-10 08:29 - 0001167 _____ () C:\Users\miro1\AppData\Local\recently-used.xbel
2016-12-07 06:02 - 2016-12-07 06:02 - 0000000 _____ () C:\Users\miro1\AppData\Local\recently-used.xbel.DPQ4RY
2015-08-30 21:42 - 2017-02-18 13:26 - 0007630 _____ () C:\Users\miro1\AppData\Local\Resmon.ResmonCfg
2017-01-21 10:13 - 2017-01-21 10:20 - 0019456 _____ () C:\Users\miro1\AppData\Local\WebpageIcons.db
2017-01-28 18:33 - 2017-01-28 18:33 - 0047353 _____ () C:\ProgramData\agent.1485624834.bdinstall.bin
2017-01-28 18:36 - 2017-01-28 18:36 - 0028898 _____ () C:\ProgramData\agent.1485624968.bdinstall.bin
2017-01-28 19:19 - 2017-01-28 19:19 - 0028897 _____ () C:\ProgramData\agent.1485627591.bdinstall.bin
2017-01-28 20:30 - 2017-01-28 20:30 - 0028905 _____ () C:\ProgramData\agent.1485631807.bdinstall.bin
2017-01-28 22:29 - 2017-01-28 22:29 - 0029050 _____ () C:\ProgramData\agent.1485638962.bdinstall.bin
2016-08-02 08:00 - 2016-08-02 08:00 - 0000057 _____ () C:\ProgramData\Ament.ini
2017-01-28 20:52 - 2017-01-28 20:52 - 0379289 _____ () C:\ProgramData\cl.1485632982.bdinstall.bin
2017-01-28 22:29 - 2017-01-28 22:29 - 0219009 _____ () C:\ProgramData\cl.uninstall.1485638849.bdinstall.bin
2017-01-28 20:53 - 2017-01-28 20:53 - 0057045 _____ () C:\ProgramData\dm.1485633184.bdinstall.bin
2017-01-28 20:54 - 2017-01-28 20:54 - 0040925 _____ () C:\ProgramData\dm.1485633253.bdinstall.bin
2017-01-28 22:27 - 2017-01-28 22:27 - 0035670 _____ () C:\ProgramData\dm.1485638863.bdinstall.bin
2017-02-18 07:00 - 2017-02-18 07:00 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job => C:\ProgramData\cis44.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\MATLAB R2016a Startup Accelerator.job => C:\Program Files\MATLAB\R2016a\bin\win64\MATLABStartupAccelerator.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\miro1\Desktop" je 19 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

[Rudy]

Teď je to OK. Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\ProgramData\DP45977C.lfl
Task: C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job => C:\ProgramData\cis44.exe <==== ATTENTION
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\system32\winrm.vbs
C:\WINDOWS\SysWOW64\winrm.vbs
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
SearchScopes: HKU\S-1-5-80-4287524181-3401991209-718407576-1481970793-3068686015 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\miro1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
C:\Program Files\Bonjour
C:\Program Files (x86)\Bonjour
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\AutoKMS
C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job
Task: {30DF4E08-B621-42CB-A4E5-C1447B200D01} - System32\Tasks\wgf0h45y => C:\Program Files\Common Files\uz2zoyky\72938gvvd3zxb.exe <==== ATTENTION
Task: {73DDA105-C52D-4837-A116-4671BD3BBE5C} - System32\Tasks\ulpgrlzh => C:\Program Files\Common Files\3cn3ayoe\e82adom0afsxk.exe <==== ATTENTION
Task: {7B3F0377-0936-4632-8C3C-C98505188D94} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {81770684-33CB-433D-9C95-09165D143AB0} - System32\Tasks\{2352E982-583D-42FB-B004-CE9555697865} => pcalua.exe -a D:\Desktop\A-DATA-
Task: {8ECE3D46-EFDE-4AAA-9172-FEA72C3612D3} - \Microsoft\XblGameSave\XblGameSaveTask\Logon -> No File <==== ATTENTION
Task: {A5E48D44-6C1E-48D6-B966-8B5B44501F84} - System32\Tasks\737DA0E1-C41-4A8B-866D-594862EE57F => C:\Users\miro1\AppData\Local\737DA0E1-C41-4A8B-866D-594862EE57F\737DA0E1-C41-4A8B-866D-594862EE57F.exe <==== ATTENTION
Task: {C5C4105A-606B-4117-BD87-A5C7365EAB1F} - System32\Tasks\FF518342-7CAE-492A-905A-B13F51CAFC65 => C:\Users\miro1\AppData\Local\FF518342-7CAE-492A-905A-B13F51CAFC65\FF518342-7CAE-492A-905A-B13F51CAFC65.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job => C:\ProgramData\cis44.exe <==== ATTENTION

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[miro1091]

Fix result of Farbar Recovery Scan Tool (x64) Version: 18-02-2017 01
Ran by miro1091 (18-02-2017 21:36:31) Run:1
Running from C:\Users\miro1\Desktop
Loaded Profiles: miro1091 & MSSQL$ADK (Available Profiles: miro1091 & MSSQL$ADK)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
C:\ProgramData\DP45977C.lfl
Task: C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job => C:\ProgramData\cis44.exe <==== ATTENTION
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\system32\winrm.vbs
C:\WINDOWS\SysWOW64\winrm.vbs
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
SearchScopes: HKU\S-1-5-80-4287524181-3401991209-718407576-1481970793-3068686015 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\miro1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
C:\Program Files\Bonjour
C:\Program Files (x86)\Bonjour
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\AutoKMS
C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job
Task: {30DF4E08-B621-42CB-A4E5-C1447B200D01} - System32\Tasks\wgf0h45y => C:\Program Files\Common Files\uz2zoyky\72938gvvd3zxb.exe <==== ATTENTION
Task: {73DDA105-C52D-4837-A116-4671BD3BBE5C} - System32\Tasks\ulpgrlzh => C:\Program Files\Common Files\3cn3ayoe\e82adom0afsxk.exe <==== ATTENTION
Task: {7B3F0377-0936-4632-8C3C-C98505188D94} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {81770684-33CB-433D-9C95-09165D143AB0} - System32\Tasks\{2352E982-583D-42FB-B004-CE9555697865} => pcalua.exe -a D:\Desktop\A-DATA-
Task: {8ECE3D46-EFDE-4AAA-9172-FEA72C3612D3} - \Microsoft\XblGameSave\XblGameSaveTask\Logon -> No File <==== ATTENTION
Task: {A5E48D44-6C1E-48D6-B966-8B5B44501F84} - System32\Tasks\737DA0E1-C41-4A8B-866D-594862EE57F => C:\Users\miro1\AppData\Local\737DA0E1-C41-4A8B-866D-594862EE57F\737DA0E1-C41-4A8B-866D-594862EE57F.exe <==== ATTENTION
Task: {C5C4105A-606B-4117-BD87-A5C7365EAB1F} - System32\Tasks\FF518342-7CAE-492A-905A-B13F51CAFC65 => C:\Users\miro1\AppData\Local\FF518342-7CAE-492A-905A-B13F51CAFC65\FF518342-7CAE-492A-905A-B13F51CAFC65.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job => C:\ProgramData\cis44.exe <==== ATTENTION

EmptyTemp:
End
*****************

C:\ProgramData\DP45977C.lfl => moved successfully
C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job => moved successfully
C:\WINDOWS\system32\ApnDatabase.xml => moved successfully
C:\WINDOWS\system32\winrm.vbs => moved successfully
C:\WINDOWS\SysWOW64\winrm.vbs => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
HKU\S-1-5-80-4287524181-3401991209-718407576-1481970793-3068686015\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"C:\Users\miro1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>" => not found.
C:\Program Files\Bonjour => moved successfully
C:\Program Files (x86)\Bonjour => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\AutoKMS => moved successfully
"C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{30DF4E08-B621-42CB-A4E5-C1447B200D01} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{30DF4E08-B621-42CB-A4E5-C1447B200D01} => key removed successfully
C:\WINDOWS\System32\Tasks\wgf0h45y => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\wgf0h45y => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73DDA105-C52D-4837-A116-4671BD3BBE5C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73DDA105-C52D-4837-A116-4671BD3BBE5C} => key removed successfully
C:\WINDOWS\System32\Tasks\ulpgrlzh => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ulpgrlzh => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{7B3F0377-0936-4632-8C3C-C98505188D94} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7B3F0377-0936-4632-8C3C-C98505188D94} => key removed successfully
C:\WINDOWS\System32\Tasks\AutoKMS => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{81770684-33CB-433D-9C95-09165D143AB0} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{81770684-33CB-433D-9C95-09165D143AB0} => key removed successfully
C:\WINDOWS\System32\Tasks\{2352E982-583D-42FB-B004-CE9555697865} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2352E982-583D-42FB-B004-CE9555697865} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8ECE3D46-EFDE-4AAA-9172-FEA72C3612D3} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8ECE3D46-EFDE-4AAA-9172-FEA72C3612D3} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\XblGameSave\XblGameSaveTask\Logon => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A5E48D44-6C1E-48D6-B966-8B5B44501F84} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5E48D44-6C1E-48D6-B966-8B5B44501F84} => key removed successfully
C:\WINDOWS\System32\Tasks\737DA0E1-C41-4A8B-866D-594862EE57F => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\737DA0E1-C41-4A8B-866D-594862EE57F => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C5C4105A-606B-4117-BD87-A5C7365EAB1F} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C5C4105A-606B-4117-BD87-A5C7365EAB1F} => key removed successfully
C:\WINDOWS\System32\Tasks\FF518342-7CAE-492A-905A-B13F51CAFC65 => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FF518342-7CAE-492A-905A-B13F51CAFC65 => key removed successfully
C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job => not found.

=========== EmptyTemp: ==========

BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 30730310 B
Java, Flash, Steam htmlcache => 27850664 B
Windows/system/drivers => 688925 B
Edge => 179053 B
Chrome => 393147165 B
Firefox => 6868910 B
Opera => 23062030 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 6108 B
miro1 => 42987108 B
MSSQL$ADK => 0 B

RecycleBin => 0 B
EmptyTemp: => 506.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:36:38 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[miro1091]

Dakujem za vyriesenie problemu .
Velmi by ma zaujimalo, ako Ste prisli k tomu(preco prave dane riadky su zle ?): (potrebujem kompletne vymazat program a registre, ktore obsahuju vyraz: "comodo")

Start
C:\ProgramData\DP45977C.lfl
Task: C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job => C:\ProgramData\cis44.exe <==== ATTENTION
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\system32\winrm.vbs
C:\WINDOWS\SysWOW64\winrm.vbs
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
SearchScopes: HKU\S-1-5-80-4287524181-3401991209-718407576-1481970793-3068686015 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\miro1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
C:\Program Files\Bonjour
C:\Program Files (x86)\Bonjour
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\AutoKMS
C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job
Task: {30DF4E08-B621-42CB-A4E5-C1447B200D01} - System32\Tasks\wgf0h45y => C:\Program Files\Common Files\uz2zoyky\72938gvvd3zxb.exe <==== ATTENTION
Task: {73DDA105-C52D-4837-A116-4671BD3BBE5C} - System32\Tasks\ulpgrlzh => C:\Program Files\Common Files\3cn3ayoe\e82adom0afsxk.exe <==== ATTENTION
Task: {7B3F0377-0936-4632-8C3C-C98505188D94} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {81770684-33CB-433D-9C95-09165D143AB0} - System32\Tasks\{2352E982-583D-42FB-B004-CE9555697865} => pcalua.exe -a D:\Desktop\A-DATA-
Task: {8ECE3D46-EFDE-4AAA-9172-FEA72C3612D3} - \Microsoft\XblGameSave\XblGameSaveTask\Logon -> No File <==== ATTENTION
Task: {A5E48D44-6C1E-48D6-B966-8B5B44501F84} - System32\Tasks\737DA0E1-C41-4A8B-866D-594862EE57F => C:\Users\miro1\AppData\Local\737DA0E1-C41-4A8B-866D-594862EE57F\737DA0E1-C41-4A8B-866D-594862EE57F.exe <==== ATTENTION
Task: {C5C4105A-606B-4117-BD87-A5C7365EAB1F} - System32\Tasks\FF518342-7CAE-492A-905A-B13F51CAFC65 => C:\Users\miro1\AppData\Local\FF518342-7CAE-492A-905A-B13F51CAFC65\FF518342-7CAE-492A-905A-B13F51CAFC65.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job => C:\ProgramData\cis44.exe <==== ATTENTION

EmptyTemp:
End

[Rudy]

Tak mažou se všechny "Attention" a dále všechny známé šmejdy a zbytečnosti. Při kontrole a psaní skriptu to chce cvik. Na odinstalaci Comodo použijte odinstalátor: https://forums.comodo.com/install-setup ... 897.0.html . Kdyby byl nějaký problém, odinstalujte normálně z programů a nakonec ručně podle návodu: http://forum.viry.cz/viewtopic.php?f=46&t=2791 pomažte příslušné klíče a hodnoty.