Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Neodstranitelný multiexplorer virus
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Neodstranitelný multiexplorer virus
Dobrý den, už si opravdu nevím rady. Mohl byste mi prosím pomoci? Mám v PC virus, který mi bohužel nenašly ani ty nejlepší programy jako MBAM, MBAR, ADW Cleaner, JRT, KVRT a snad i všechny ostatní. AV Avast. Projeto AVG Rescue disk, Kaspersky Rescue disk, všemy možnými antirootkity v nouzovém režimu apod. Nic to nenachází. Jen díky programu Rogue Killer jsem se dopracoval k úloze CreateExplorerShellUnelevatedTask.job, která se i přes vymazání po nějaké době zase sama objeví. Myslím, že je toho víc než jen toto. V registrech se nevyznám, sice s PC umím celkem dost věcí, ale mám velké mezery. Také program REM VBSworm mi pokaždé něco najde, jakoby ukončí proces s nějakým id, ale výsledek žádný. Když už se mi po celém dni podaří některý bordel dohledat a vyčistit, chvíli to jede, ale druhý den ráno PC opět stávkuje. Spíše tedy internet. Jsem rád, že jsem se mohl jakš takš registrovat na Vašem fóru. Posílám log z RSIT a nějaké screeny pro lepší představu. Děkuji.
Re: Neodstranitelný multiexplorer virus
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marek at 2016-09-21 12:21:32
Microsoft Windows 10 Pro
System drive C: has 104 GB (68%) free of 152 GB
Total RAM: 3968 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:21:41, on 21.09.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0589)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\trend micro\Marek.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{6b7d8dea-76ca-4a97-be70-b20d251314be}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Unknown owner - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5832 bytes
======Listing Processes======
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k appmodel
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"fontdrvhost.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0x174
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3784.0.892949242\750931389" --mojo-application-channel-token=166FDE5B6FEAF0CCFC29847F771E80B0 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-medium/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,14,18,31,48,56 --gpu-vendor-id=0x8086 --gpu-device-id=0x2e32 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2702 --gpu-driver-date=3-11-2013 --mojo-platform-channel-handle=1260 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
"C:\Windows\system32\mmc.exe" C:\Windows\system32\taskschd.msc
C:\Windows\system32\DllHost.exe /Processid:{448AEE3B-DC65-4AF6-BF5F-DCE86D62B6C7}
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=0F144BAD698EB5CEDBF9F9E52ADD6C82 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=E2E9456394E0CE4E57AA70B7DBE26732 --mojo-application-channel-token=0F144BAD698EB5CEDBF9F9E52ADD6C82 --channel="3784.10.2015340960\533338511" --mojo-platform-channel-handle=5656 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=7B00A665B87883053140F0C24F000B42 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=1BD1FBFC5CADBF170C9B36DF94C1B869 --mojo-application-channel-token=7B00A665B87883053140F0C24F000B42 --channel="3784.13.1507836099\1138047014" --mojo-platform-channel-handle=4748 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=A687624DAC8626EA57179036393DEB95 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=5A191EFEA8EBC3439CC28EE65EDC3781 --mojo-application-channel-token=A687624DAC8626EA57179036393DEB95 --channel="3784.17.170178638\466876034" --mojo-platform-channel-handle=3536 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=27BBF0706CC6A9315B80EDBA1D3E24E5 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=8DD53232E32147FA94308E1D8B597C78 --mojo-application-channel-token=27BBF0706CC6A9315B80EDBA1D3E24E5 --channel="3784.18.3473368\344340663" --mojo-platform-channel-handle=2548 /prefetch:1
"C:\Windows\System32\Taskmgr.exe" /2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=CE82B7D3F6B49A8628FEA029D5C19490 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=215B71B7FB169D08DE487646D4AD2A9D --mojo-application-channel-token=CE82B7D3F6B49A8628FEA029D5C19490 --channel="3784.19.553554699\732478149" --mojo-platform-channel-handle=6196 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 624 628 636 8192 632
"C:\Users\Marek\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\CreateExplorerShellUnelevatedTask.job - C:\Windows\explorer.exe /NOUACCHECK
Run by Marek at 2016-09-21 12:21:32
Microsoft Windows 10 Pro
System drive C: has 104 GB (68%) free of 152 GB
Total RAM: 3968 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:21:41, on 21.09.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0589)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\trend micro\Marek.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{6b7d8dea-76ca-4a97-be70-b20d251314be}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Unknown owner - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5832 bytes
======Listing Processes======
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k appmodel
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"fontdrvhost.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0x174
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3784.0.892949242\750931389" --mojo-application-channel-token=166FDE5B6FEAF0CCFC29847F771E80B0 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-medium/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,14,18,31,48,56 --gpu-vendor-id=0x8086 --gpu-device-id=0x2e32 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2702 --gpu-driver-date=3-11-2013 --mojo-platform-channel-handle=1260 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
"C:\Windows\system32\mmc.exe" C:\Windows\system32\taskschd.msc
C:\Windows\system32\DllHost.exe /Processid:{448AEE3B-DC65-4AF6-BF5F-DCE86D62B6C7}
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=0F144BAD698EB5CEDBF9F9E52ADD6C82 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=E2E9456394E0CE4E57AA70B7DBE26732 --mojo-application-channel-token=0F144BAD698EB5CEDBF9F9E52ADD6C82 --channel="3784.10.2015340960\533338511" --mojo-platform-channel-handle=5656 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=7B00A665B87883053140F0C24F000B42 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=1BD1FBFC5CADBF170C9B36DF94C1B869 --mojo-application-channel-token=7B00A665B87883053140F0C24F000B42 --channel="3784.13.1507836099\1138047014" --mojo-platform-channel-handle=4748 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=A687624DAC8626EA57179036393DEB95 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=5A191EFEA8EBC3439CC28EE65EDC3781 --mojo-application-channel-token=A687624DAC8626EA57179036393DEB95 --channel="3784.17.170178638\466876034" --mojo-platform-channel-handle=3536 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=27BBF0706CC6A9315B80EDBA1D3E24E5 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=8DD53232E32147FA94308E1D8B597C78 --mojo-application-channel-token=27BBF0706CC6A9315B80EDBA1D3E24E5 --channel="3784.18.3473368\344340663" --mojo-platform-channel-handle=2548 /prefetch:1
"C:\Windows\System32\Taskmgr.exe" /2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_5/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=CE82B7D3F6B49A8628FEA029D5C19490 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=215B71B7FB169D08DE487646D4AD2A9D --mojo-application-channel-token=CE82B7D3F6B49A8628FEA029D5C19490 --channel="3784.19.553554699\732478149" --mojo-platform-channel-handle=6196 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 624 628 636 8192 632
"C:\Users\Marek\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\CreateExplorerShellUnelevatedTask.job - C:\Windows\explorer.exe /NOUACCHECK
Re: Neodstranitelný multiexplorer virus
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-09-13 9107616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-09-21 12:21:33 ----D---- C:\Program Files\trend micro
2016-09-21 12:21:32 ----D---- C:\rsit
2016-09-20 16:10:57 ----AD---- C:\Kaspersky Rescue Disk 10.0
2016-09-20 13:30:50 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2016-09-20 13:30:38 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2016-09-20 13:30:34 ----D---- C:\Program Files\DAEMON Tools Lite
2016-09-20 13:30:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2016-09-20 01:23:27 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-09-18 20:25:31 ----D---- C:\Windows\system32\MRT
2016-09-18 20:25:00 ----AC---- C:\Windows\system32\MRT.exe
2016-09-18 18:46:35 ----A---- C:\Windows\system32\mshtml.dll
2016-09-18 18:46:30 ----A---- C:\Windows\system32\edgehtml.dll
2016-09-18 18:46:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-09-18 18:46:26 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2016-09-18 18:46:24 ----A---- C:\Windows\system32\ieframe.dll
2016-09-18 18:46:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-09-18 18:46:23 ----A---- C:\Windows\system32\Chakra.dll
2016-09-18 18:46:21 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2016-09-18 18:46:21 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2016-09-18 18:46:20 ----A---- C:\Windows\system32\jscript9.dll
2016-09-18 18:46:19 ----A---- C:\Windows\system32\rdpcorets.dll
2016-09-18 18:46:18 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-09-18 18:46:18 ----A---- C:\Windows\system32\tquery.dll
2016-09-18 18:46:18 ----A---- C:\Windows\system32\mfcore.dll
2016-09-18 18:46:17 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\wuaueng.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\Windows.Media.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\MFMediaEngine.dll
2016-09-18 18:46:16 ----A---- C:\Windows\system32\Wpc.dll
2016-09-18 18:46:15 ----A---- C:\Windows\system32\CoreUIComponents.dll
2016-09-18 18:46:15 ----A---- C:\Windows\system32\CertEnroll.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2016-09-18 18:46:14 ----A---- C:\Windows\system32\mssrch.dll
2016-09-18 18:46:14 ----A---- C:\Windows\system32\mmcndmgr.dll
2016-09-18 18:46:13 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-09-18 18:46:13 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2016-09-18 18:46:12 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\schedsvc.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\OpcServices.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\dwmcore.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\Windows.AccountsControl.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\wevtsvc.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\combase.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\authui.dll
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\winmde.dll
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\mf.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\twinapi.appcore.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\mfsvr.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\mfnetsrc.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\AppContracts.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\vbscript.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\SHCore.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\mfplat.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\winipcsecproc.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Pimstore.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\wmdrmdev.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\uDWM.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\twinapi.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\gpprefcl.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\AppReadiness.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\xpsservices.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\WpcWebSync.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\WpcWebFilter.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\SearchIndexer.exe
2016-09-18 18:46:07 ----A---- C:\Windows\system32\MrmCoreR.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\modernexecserver.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\jscript.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\ieproxy.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\ActivationManager.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\wsp_health.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\wiaaut.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\XpsPrint.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\wuuhext.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\WpcMon.exe
2016-09-18 18:46:06 ----A---- C:\Windows\system32\PrintDialogs3D.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\msfeeds.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\hnetcfg.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\wpdshext.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\IKEEXT.DLL
2016-09-18 18:46:05 ----A---- C:\Windows\system32\dcomp.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\cscui.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\winmsipc.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\netshell.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\Windows.Globalization.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\StorSvc.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\shacct.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\msdtctm.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\wmdrmsdk.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\winhttp.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\Windows.Media.Editing.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\rpcss.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\drivers\sdport.sys
2016-09-18 18:46:02 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2016-09-18 18:46:02 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2016-09-18 18:46:02 ----A---- C:\Windows\system32\XpsDocumentTargetPrint.dll
2016-09-18 18:46:02 ----A---- C:\Windows\system32\taskeng.exe
2016-09-18 18:46:02 ----A---- C:\Windows\system32\drivers\sdbus.sys
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\WpcWebFilter.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\wuapi.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\wiaservc.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\tetheringservice.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\SharedStartModelShim.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2016-09-18 18:46:01 ----A---- C:\Windows\system32\propsys.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\nshwfp.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\mssphtb.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\wsp_fs.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\Windows.Web.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\SimCfg.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\rastls.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\msctfuimanager.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\msctf.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\ContactApis.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\wpdbusenum.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\Windows.Media.Audio.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\wevtutil.exe
2016-09-18 18:46:00 ----A---- C:\Windows\system32\webio.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\msctfuimanager.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\ExecModelClient.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\dxtrans.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\cdpsvc.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\UserDataTimeUtil.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\upnphost.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\AppointmentApis.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\shsetup.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\SensorService.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\mfps.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\WinTypes.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\Windows.Devices.PointOfService.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\PrintDialogs.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\edputil.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\comdlg32.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\XpsDocumentTargetPrint.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\tdh.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\SensorsNativeApi.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\mssprxy.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\gpscript.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\GlobCollationHost.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\facecredentialprovider.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\evr.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\dwminit.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\ClipUp.exe
2016-09-18 18:45:57 ----A---- C:\Windows\system32\apprepsync.dll
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Picker.dll
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\efswrt.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\wups.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\wuauclt.exe
2016-09-18 18:45:56 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\webcheck.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\tzautoupdate.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\rdpudd.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\phoneactivate.exe
2016-09-18 18:45:56 ----A---- C:\Windows\system32\mfnetcore.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\ieapfltr.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\drivers\pdc.sys
2016-09-18 18:45:56 ----A---- C:\Windows\system32\apprepapi.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\winipcfile.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\SimAuth.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\MiracastReceiver.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eappprxy.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\BluetoothApis.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\taskcomp.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\sti.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\LegacyNetUXHost.exe
2016-09-18 18:45:55 ----A---- C:\Windows\system32\LegacyNetUX.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\easwrt.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\azroleui.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\WmpDui.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\mssph.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\mshtmled.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\MrmIndexer.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\Chakradiag.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\DictationManager.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\ByteCodeGenerator.exe
2016-09-18 18:45:54 ----A---- C:\Windows\system32\bdechangepin.exe
2016-09-18 18:45:54 ----A---- C:\Windows\system32\authfwcfg.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\udhisapi.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\wiarpc.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\wiaaut.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\SearchFilterHost.exe
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msscntrs.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msi.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msdt.exe
2016-09-18 18:45:53 ----A---- C:\Windows\system32\iedkcs32.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\DiagCpl.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.ps.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\upnpcont.exe
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\sti.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\werui.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\SmartCardSimulator.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\prnntfy.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\pngfilt.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\MDEServer.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\ie4uinit.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\CheckNetIsolation.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\fwcfg.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2016-09-18 18:45:52 ----A---- C:\Windows\system32\cdpreference.exe
2016-09-18 18:45:50 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-09-18 18:45:50 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2016-09-18 18:45:49 ----A---- C:\Windows\system32\LicenseManager.dll
2016-09-18 18:45:49 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\LocationFramework.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2016-09-18 18:45:48 ----A---- C:\Windows\system32\InputService.dll
2016-09-18 18:45:48 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2016-09-18 18:45:47 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2016-09-18 18:45:47 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\wwansvc.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\wifinetworkmanager.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\SpeechPal.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\mf.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\localspl.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\CoreMessaging.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\mispace.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\Windows.UI.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\werconcpl.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\StructuredQuery.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\PlayToManager.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\crypt32.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\StoreAgent.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\CredProvDataModel.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\ActiveSyncProvider.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\wpncore.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\StoreAgent.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\ngcsvc.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\webservices.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\wifitask.exe
2016-09-18 18:45:44 ----A---- C:\Windows\system32\samsrv.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\MSAJApi.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\drivers\srv.sys
2016-09-18 18:45:43 ----A---- C:\Windows\SYSWOW64\wdc.dll
2016-09-18 18:45:43 ----A---- C:\Windows\SYSWOW64\MessagingDataModel2.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\wwanconn.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\wpnapps.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\PlayToDevice.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\lsasrv.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\tdlrecover.exe
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\SyncController.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\NetSetupEngine.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\Geolocation.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\AppxAllUserStore.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\wininit.exe
2016-09-18 18:45:42 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\SensorsApi.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\rdpcore.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\NgcCtnr.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\das.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\webio.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\dui70.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\WWanAPI.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\wmicmiplugin.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\Windows.Networking.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\win32spl.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\TSWorkspace.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\SubscriptionMgr.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\SearchFolder.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\NgcCtnrSvc.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\ngccredprov.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\InstallAgent.exe
2016-09-18 18:45:41 ----A---- C:\Windows\system32\AppxAllUserStore.dll
2016-09-18 18:45:40 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2016-09-18 18:45:40 ----A---- C:\Windows\SYSWOW64\InstallAgent.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\Windows.Web.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\schtasks.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\rsaenh.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-09-18 18:45:40 ----A---- C:\Windows\system32\drivers\fastfat.sys
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\VEDataLayerHelpers.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\duser.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\dmdskmgr.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\ngcpopkeysrv.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\netcenter.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\drivers\dumpsdport.sys
2016-09-18 18:45:39 ----A---- C:\Windows\system32\drivers\cng.sys
2016-09-18 18:45:39 ----A---- C:\Windows\system32\cryptsvc.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\SettingMonitor.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\sbe.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\Windows.Devices.Picker.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\ncryptsslp.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\drivers\ufx01000.sys
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\winipcsecproc_ssp.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\VEEventDispatcher.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\NetSetupApi.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\wwanmm.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\Windows.Cortana.Desktop.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\WebcamUi.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\NetworkUXBroker.exe
2016-09-18 18:45:37 ----A---- C:\Windows\system32\mfpmp.exe
2016-09-18 18:45:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-09-18 18:45:37 ----A---- C:\Windows\system32\dot3ui.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\rasgcw.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\BrowserSettingSync.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\spoolsv.exe
2016-09-18 18:45:36 ----A---- C:\Windows\system32\rasgcw.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\ntprint.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\cryptngc.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryClient.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryBroker.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\syncutil.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\SyncSettings.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\dlnashext.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\XboxNetApiSvc.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\netlogon.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\mscms.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\deviceassociation.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\CellularAPI.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\WsmAgent.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\PlayToReceiver.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\notepad.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\GamePanel.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\deviceassociation.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\bcastdvr.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\AppCapture.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\WUDFPlatform.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\Windows.Devices.AllJoyn.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\wificonnapi.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\SmsRouterSvc.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\RADCUI.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\OnDemandConnRouteHelper.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\offlinelsa.dll
2016-09-18 18:45:33 ----A---- C:\Windows\system32\sppsvc.exe
2016-09-18 18:45:32 ----A---- C:\Windows\system32\shell32.dll
2016-09-18 18:45:30 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2016-09-18 18:45:30 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2016-09-18 18:45:30 ----A---- C:\Windows\system32\mstscax.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\wininet.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\windows.storage.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\twinui.appcore.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\iertutil.dll
2016-09-18 18:45:28 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2016-09-18 18:45:28 ----A---- C:\Windows\system32\msxml6.dll
2016-09-18 18:45:28 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\mos.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\WsmSvc.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\drivers\tcpip.sys
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\mmc.exe
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\InputService.dll
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2016-09-18 18:45:26 ----A---- C:\Windows\system32\Windows.Media.Speech.dll
2016-09-18 18:45:26 ----A---- C:\Windows\system32\tdlrecover.exe
2016-09-18 18:45:26 ----A---- C:\Windows\system32\msxml3.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\TokenBroker.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\srmclient.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\WWAHost.exe
2016-09-18 18:45:25 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\tileobjserver.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\DeviceCensus.exe
2016-09-18 18:45:24 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2016-09-18 18:45:24 ----A---- C:\Windows\SYSWOW64\RemoteNaturalLanguage.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\webservices.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\urlmon.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\ole32.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\CredProvDataModel.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\ShareHost.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2016-09-18 18:45:23 ----A---- C:\Windows\system32\winresume.exe
2016-09-18 18:45:23 ----A---- C:\Windows\system32\UIRibbon.dll
2016-09-18 18:45:23 ----A---- C:\Windows\system32\rpcrt4.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\WLanConn.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\usocore.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\AppxPackaging.dll
2016-09-18 18:45:21 ----A---- C:\Windows\SYSWOW64\PhoneOm.dll
2016-09-18 18:45:21 ----A---- C:\Windows\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\Windows.Graphics.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2016-09-18 18:45:21 ----A---- C:\Windows\system32\dmenrollengine.dll
2016-09-18 18:45:20 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2016-09-18 18:45:20 ----A---- C:\Windows\SYSWOW64\MSAJApi.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\ws2_32.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\updatehandlers.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\ntshrui.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\enterprisecsps.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\drivers\nwifi.sys
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\propsys.dll
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\filemgmt.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\wscsvc.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\srmclient.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\nettrace.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\mdmmigrator.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\drivers\ufxsynopsys.sys
2016-09-18 18:45:19 ----A---- C:\Windows\system32\drivers\pci.sys
2016-09-18 18:45:19 ----A---- C:\Windows\system32\comuid.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Search.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\wevtutil.exe
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\mscms.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\wbemcomn.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\VEEventDispatcher.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\quartz.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\MusNotification.exe
2016-09-18 18:45:18 ----A---- C:\Windows\system32\mswsock.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\drivers\tpm.sys
2016-09-18 18:45:18 ----A---- C:\Windows\system32\drivers\hidclass.sys
2016-09-18 18:45:18 ----A---- C:\Windows\system32\dmcsps.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\dhcpcore.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\DeviceEnroller.exe
2016-09-18 18:45:17 ----A---- C:\Windows\SYSWOW64\newdev.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\WlanMM.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\WlanMediaManager.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\wlanapi.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\mstsc.exe
2016-09-18 18:45:17 ----A---- C:\Windows\system32\MiracastReceiver.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\MDMAppInstaller.exe
2016-09-18 18:45:17 ----A---- C:\Windows\system32\enrollmentapi.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\dhcpcore6.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\resutils.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\PeerDistSh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\wlansvc.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\VEDataLayerHelpers.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\sspicli.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\sbe.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\PeerDistSh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\omadmclient.exe
2016-09-18 18:45:16 ----A---- C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\WLanConn.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\MosHostClient.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\hmkd.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\winipcsecproc_ssp.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\wcnwiz.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\UIRibbonRes.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\srmscan.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\SensorDataService.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\MusNotificationUx.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\musdialoghandlers.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\lsass.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\hmkd.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\efswrt.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-09-18 18:45:15 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\wldp.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\Windows.Devices.LowLevel.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\MosStorage.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\mmcbase.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\gpscript.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\cryptngc.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\Clipc.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\cic.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\wlanui.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\Windows.Media.MediaControl.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\spcompat.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\drivers\ahcache.sys
2016-09-18 18:45:14 ----A---- C:\Windows\system32\azroles.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\AppxApplicabilityEngine.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SmartCards.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\wcnwiz.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\pla.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\mmcshext.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\WsmWmiPl.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\wdc.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\wcncsvc.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\dmdskmgr.dll
2016-09-18 18:45:12 ----A---- C:\Windows\SYSWOW64\MapsBtSvc.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\WsmAuto.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\WmpDui.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\Windows.Storage.Search.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\SettingsHandlers_Geolocation.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\DisplayManager.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\Windows.Cortana.ProxyStub.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\VoipRT.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\offlinelsa.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\oemlicense.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\licensingdiag.exe
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\fwcfg.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\AdmTmpl.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\workfolderssvc.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\WcnApi.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\WalletService.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\GamePanel.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\fdWCN.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\drivers\usbser.sys
2016-09-18 18:45:11 ----A---- C:\Windows\system32\drivers\MTConfig.sys
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dmcertinst.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dhcpcsvc.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\CPFilters.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\bthserv.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\bcastdvr.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\AdmTmpl.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\WlanMM.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\authfwcfg.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\wsmprovhost.exe
2016-09-18 18:45:10 ----A---- C:\Windows\system32\ieui.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\IconCodecService.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\dafWCN.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\comsvcs.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\AppCapture.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\NMAA.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\CheckNetIsolation.exe
2016-09-18 18:45:09 ----A---- C:\Windows\system32\WsmAgent.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\qdvd.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\odbcconf.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\mdmregistration.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\dialserver.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\cmintegrator.dll
2016-09-18 18:45:07 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-09-18 18:45:04 ----A---- C:\Windows\system32\mos.dll
2016-09-18 18:45:03 ----A---- C:\Windows\SYSWOW64\tquery.dll
2016-09-18 18:45:03 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2016-09-18 18:45:03 ----A---- C:\Windows\system32\d2d1.dll
2016-09-18 18:45:03 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-09-18 18:45:03 ----A---- C:\Windows\system32\appraiser.dll
2016-09-18 18:45:02 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2016-09-18 18:45:02 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-09-18 18:45:02 ----A---- C:\Windows\system32\BingMaps.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-09-18 18:45:00 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2016-09-18 18:45:00 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\msftedit.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\d3d11.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\d3d10warp.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\aeinv.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\acmigration.dll
2016-09-18 18:44:59 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2016-09-18 18:44:59 ----A---- C:\Windows\system32\win32kfull.sys
2016-09-18 18:44:58 ----A---- C:\Windows\system32\TokenBroker.dll
2016-09-18 18:44:58 ----A---- C:\Windows\system32\storagewmi.dll
2016-09-18 18:44:57 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\qmgr.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\generaltel.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\diagperf.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\devinv.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\d3d9.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.UI.Cred.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.AccountsControl.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2016-09-18 18:44:56 ----A---- C:\Windows\system32\VSSVC.exe
2016-09-18 18:44:56 ----A---- C:\Windows\system32\dxgi.dll
2016-09-18 18:44:56 ----A---- C:\Windows\system32\diagtrack.dll
2016-09-18 18:44:55 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2016-09-18 18:44:55 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\win32kbase.sys
2016-09-18 18:44:55 ----A---- C:\Windows\system32\wcmsvc.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\PhoneProviders.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\oleaut32.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\ntdll.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\msctf.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\LogonController.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\wmpmde.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\usercpl.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\PhoneService.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\MPSSVC.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\invagent.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\gdi32.dll
2016-09-18 18:44:53 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2016-09-18 18:44:53 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2016-09-18 18:44:53 ----A---- C:\Windows\system32\vssapi.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\NetSetupShim.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\NetSetupEngine.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\MapsStore.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\fontdrvhost.exe
2016-09-18 18:44:53 ----A---- C:\Windows\system32\AzureSettingSyncProvider.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\ActiveSyncProvider.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\aadtb.dll
2016-09-18 18:44:52 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2016-09-18 18:44:52 ----A---- C:\Windows\SYSWOW64\gameux.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\vpnike.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\termsrv.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\SyncController.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\RecoveryDrive.exe
2016-09-18 18:44:52 ----A---- C:\Windows\system32\PhoneOm.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\MessagingDataModel2.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\MapControlCore.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\IPSECSVC.DLL
2016-09-18 18:44:52 ----A---- C:\Windows\system32\eappcfg.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\atmfd.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\aepic.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\LockAppBroker.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\wlidsvc.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\wlidprov.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\winload.exe
2016-09-18 18:44:51 ----A---- C:\Windows\system32\provengine.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\directmanipulation.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\d3d10level9.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\clusapi.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\BCP47Langs.dll
2016-09-18 18:44:50 ----A---- C:\Windows\SYSWOW64\directmanipulation.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\xpsrchvw.exe
2016-09-18 18:44:50 ----A---- C:\Windows\system32\WMPDMC.exe
2016-09-18 18:44:50 ----A---- C:\Windows\system32\user32.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\hnetcfg.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\dui70.dll
2016-09-18 18:44:49 ----A---- C:\Windows\SYSWOW64\LockAppHost.exe
2016-09-18 18:44:49 ----A---- C:\Windows\system32\setupapi.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\provhandlers.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\msv1_0.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\MapConfiguration.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\internetmail.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\dlnashext.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\APHostService.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\wsp_fs.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\Taskmgr.exe
2016-09-18 18:44:48 ----A---- C:\Windows\system32\schannel.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\NMAA.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\MBMediaManager.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2016-09-18 18:44:48 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\D3D12.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\BrokerLib.dll
2016-09-18 18:44:47 ----A---- C:\Windows\SYSWOW64\shacct.dll
2016-09-18 18:44:47 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\wsp_health.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\wcmcsp.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\swprv.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\provops.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\mprddm.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\kerberos.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\drivers\fvevol.sys
2016-09-18 18:44:47 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\polstore.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\AzureSettingSyncProvider.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\vds.exe
2016-09-18 18:44:46 ----A---- C:\Windows\system32\systemreset.exe
2016-09-18 18:44:46 ----A---- C:\Windows\system32\netshell.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\NetSetupSvc.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\mispace.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\JpMapControl.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\defragsvc.dll
2016-09-18 18:44:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\resutils.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\rastls.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\pnidui.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\GdiPlus.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\apphelp.dll
2016-09-18 18:44:44 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2016-09-18 18:44:44 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\themeui.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\reseteng.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\polstore.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\comuid.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\certca.dll
2016-09-18 18:44:43 ----A---- C:\Windows\system32\WMPhoto.dll
2016-09-18 18:44:43 ----A---- C:\Windows\system32\moshostcore.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\XpsFilt.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\SimCfg.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\Windows.Media.Editing.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\sud.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\credprovs.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\Windows.Cortana.OneCore.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\wbengine.exe
2016-09-18 18:44:41 ----A---- C:\Windows\system32\kernel32.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\icsvc.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\fhcfg.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\drivers\partmgr.sys
2016-09-18 18:44:41 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-09-18 18:44:41 ----A---- C:\Windows\system32\DMRServer.dll
2016-09-18 18:44:40 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\upnphost.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\tdh.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\SimAuth.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\newdev.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\netman.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\MosHostClient.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\drivers\filecrypt.sys
2016-09-18 18:44:40 ----A---- C:\Windows\system32\d3d10.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\mssph.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\TpmTasks.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\StikyNot.exe
2016-09-18 18:44:39 ----A---- C:\Windows\system32\pcasvc.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\NetworkBindingEngineMigPlugin.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\netplwiz.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\moshost.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\drivers\Ndu.sys
2016-09-18 18:44:39 ----A---- C:\Windows\system32\csrsrv.dll
2016-09-18 18:44:38 ----A---- C:\Windows\SYSWOW64\updatepolicy.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\wusa.exe
2016-09-18 18:44:38 ----A---- C:\Windows\system32\Windows.Cortana.ProxyStub.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\sdengin2.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\NetSetupApi.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\netcfgx.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\MosStorage.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\MapsBtSvc.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\fhsettingsprovider.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\duser.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\drvstore.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\drivers\storport.sys
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.BioFeedback.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\evr.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Display.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\wldp.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\wimserv.exe
2016-09-18 18:44:37 ----A---- C:\Windows\system32\provisioningcsp.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\MicrosoftAccountCloudAP.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\FntCache.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\fdProxy.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\eapphost.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\BluetoothApis.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Midi.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\usbceip.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\themeui.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\IdCtrls.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\udhisapi.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\sdrsvc.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\eapp3hst.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\cdd.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\browserbroker.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\XpsFilt.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\winsrv.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\VoipRT.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\upnpcont.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\PlayToReceiver.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\mcbuilder.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\fhengine.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\eappgnui.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\autochk.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\adtschema.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\srpapi.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\vdsutil.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\UIAutomationCore.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\sdshext.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\scapi.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\pla.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\eappprxy.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\d3d10_1.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\aitstatic.exe
2016-09-18 18:44:34 ----A---- C:\Windows\system32\aadcloudap.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\Windows.Media.Audio.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\edputil.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\wshbth.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\vsstrace.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\vss_ps.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\syncutil.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\msobjs.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\ipsecsnp.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\eapsvc.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\diagtrack_win.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\configurationclient.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\IconCodecService.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\azroles.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\AppLockerCSP.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\XblAuthManager.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\rasapi32.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\NFCProvisioningPlugin.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\MicrosoftAccountExtension.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\mapsupdatetask.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\MapsCSP.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\fontsub.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\fhsvc.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\BootMenuUX.dll
2016-09-18 18:44:31 ----A---- C:\Windows\SYSWOW64\mspaint.exe
2016-09-18 18:44:31 ----A---- C:\Windows\system32\atmlib.dll
2016-09-18 18:44:28 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2016-09-18 18:44:27 ----A---- C:\Windows\system32\wmp.dll
2016-09-18 18:44:25 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-09-18 18:44:25 ----A---- C:\Windows\system32\twinui.dll
2016-09-18 18:44:24 ----A---- C:\Windows\system32\WSService.dll
2016-09-18 18:44:24 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2016-09-18 18:44:23 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-09-18 18:44:22 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2016-09-18 18:44:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-09-18 18:44:21 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2016-09-18 18:44:21 ----A---- C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\sppobjs.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\drivers\ClipSp.sys
2016-09-18 18:44:20 ----A---- C:\Windows\explorer.exe
2016-09-18 18:44:19 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2016-09-18 18:44:19 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2016-09-18 18:44:18 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2016-09-18 18:44:17 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2016-09-18 18:44:15 ----A---- C:\Windows\SYSWOW64\WindowsCodecsRaw.dll
2016-09-18 18:44:14 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-09-18 18:44:14 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2016-09-18 18:44:14 ----A---- C:\Windows\system32\LocationFramework.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\winmde.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\PeerDistSvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\gpsvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\dosvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\audiosrv.dll
2016-09-18 18:44:12 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\Windows.UI.Cred.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\SettingSyncCore.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\mmc.exe
2016-09-18 18:44:11 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-09-18 18:44:11 ----A---- C:\Windows\system32\SRHInproc.dll
2016-09-18 18:44:11 ----A---- C:\Windows\system32\iphlpsvc.dll
2016-09-18 18:44:10 ----A---- C:\Windows\SYSWOW64\SRHInproc.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\SharedStartModel.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\Pimstore.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\KernelBase.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\winipcsecproc.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\actxprxy.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\SRH.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\AppContracts.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\WSShared.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\winlogon.exe
2016-09-18 18:44:07 ----A---- C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\UserDataService.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\SRH.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\RemoteNaturalLanguage.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\LogonController.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\DWrite.dll
2016-09-18 18:44:06 ----A---- C:\Windows\system32\WindowsCodecsRaw.dll
2016-09-18 18:44:06 ----A---- C:\Windows\system32\bisrv.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\combase.dll
2016-09-18 18:44:04 ----A---- C:\Windows\system32\gameux.dll
2016-09-18 18:44:03 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\winmsipc.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\ShareHost.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\SettingSync.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\LockAppHost.exe
2016-09-18 18:44:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-09-18 18:44:03 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2016-09-18 18:44:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\dbgeng.dll
2016-09-18 18:44:01 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2016-09-18 18:44:01 ----A---- C:\Windows\system32\sppwinob.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\PsmServiceExtHost.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\NotificationController.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\LockAppBroker.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\drivers\netbt.sys
2016-09-18 18:44:01 ----A---- C:\Windows\system32\ClipSVC.dll
2016-09-18 18:44:00 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2016-09-18 18:44:00 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\themecpl.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\SyncCenter.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\RDXService.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\Geolocation.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\ApplicationFrame.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\w32time.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\SettingsHandlers_Maps.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\RDXTaskFactory.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\hgcpl.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\hevcdecoder.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\certca.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\DisplayManager.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\D3D12.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\SystemSettings.Handlers.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-09-18 18:43:58 ----A---- C:\Windows\system32\ContactApis.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\certcli.dll
2016-09-18 18:43:57 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmpps.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmploc.DLL
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmpeffects.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\ListSvc.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\inetpp.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\hal.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-09-18 18:43:56 ----A---- C:\Windows\SYSWOW64\ExecModelClient.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\WSSync.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\winipcfile.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SettingsHandlers_Privacy.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SettingMonitor.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SecureTimeAggregator.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\OneBackupHandler.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\GnssAdapter.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\EditionUpgradeManagerObj.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\BrowserSettingSync.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\bcryptprimitives.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\AppointmentApis.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\WSSync.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\updatepolicy.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\shutdownux.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SettingSyncHost.exe
2016-09-18 18:43:55 ----A---- C:\Windows\system32\pmcsnap.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\mbsmsapi.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\drivers\UcmCx.sys
2016-09-18 18:43:55 ----A---- C:\Windows\system32\DevicePairing.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\credprovs.dll
2016-09-18 18:43:54 ----A---- C:\Windows\SYSWOW64\SensorsNativeApi.dll
2016-09-18 18:43:54 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.UI.BioFeedback.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.Devices.LowLevel.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\UserDataTimeUtil.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\sppcext.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\NetworkDesktopSettings.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\gpapi.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\filemgmt.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-09-18 18:43:54 ----A---- C:\Windows\system32\domgmt.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\cryptui.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\prnntfy.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\zipfldr.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\WSClient.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Windows.Media.Streaming.ps.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Windows.Devices.Midi.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\sud.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mprdim.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mmcshext.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mmcbase.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\EmailApis.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\drivers\rdbss.sys
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Display.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Clipc.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\AudioEng.dll
2016-09-18 18:43:53 ----A---- C:\Windows\HelpPane.exe
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\Windows.Speech.Pal.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\ProximityCommon.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\PeerDist.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\licensingdiag.exe
2016-09-18 18:43:52 ----A---- C:\Windows\system32\ChatApis.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\gpedit.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\DbgModel.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\PeerDist.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\DbgModel.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\ByteCodeGenerator.exe
2016-09-18 18:43:51 ----A---- C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\usermgr.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\SyncSettings.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2016-09-18 18:43:51 ----A---- C:\Windows\system32\msieftp.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\IdCtrls.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\cic.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\WUDFx.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\Windows.Speech.Pal.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\oemlicense.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\httpprxp.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\deviceaccess.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\dbghelp.dll
2016-09-18 18:43:49 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\sppinst.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\PeerDistCleaner.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\mspaint.exe
2016-09-18 18:43:49 ----A---- C:\Windows\system32\mqsnap.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\ImplatSetup.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\httpprxm.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\FingerprintEnrollment.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\adhsvc.dll
2016-09-18 18:43:48 ----A---- C:\Windows\SYSWOW64\DictationManager.dll
2016-09-18 18:43:48 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2016-09-18 18:42:55 ----A---- C:\Windows\system32\mqcertui.dll
2016-09-18 14:44:27 ----RASHOT---- C:\Windows\winstart.bat
2016-09-18 12:43:15 ----D---- C:\Users\Marek\AppData\Roaming\uTorrent
2016-09-15 01:54:40 ----AD---- C:\Program Files\RogueKiller
2016-09-14 23:39:47 ----D---- C:\ProgramData\IObit
2016-09-14 23:39:46 ----D---- C:\Program Files (x86)\IObit
2016-09-14 20:34:27 ----D---- C:\Program Files (x86)\GUMA363.tmp
2016-09-14 03:06:37 ----D---- C:\Users\Marek\AppData\Roaming\Rainmeter
2016-09-14 03:06:33 ----D---- C:\Program Files\Rainmeter
2016-09-14 03:01:50 ----D---- C:\Windows\ERDNT
2016-09-13 23:33:20 ----D---- C:\Program Files (x86)\FileASSASSIN
2016-09-13 22:55:07 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-09-13 22:33:46 ----D---- C:\Users\Marek\AppData\Roaming\AVAST Software
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswStm.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswSP.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2016-09-13 22:32:58 ----A---- C:\Windows\system32\aswBoot.exe
2016-09-13 22:32:44 ----A---- C:\Windows\avastSS.scr
2016-09-13 22:21:39 ----D---- C:\Program Files\AVAST Software
2016-09-13 22:21:01 ----D---- C:\ProgramData\AVAST Software
2016-09-13 21:12:35 ----D---- C:\Users\Marek\AppData\Roaming\Boredom Software
2016-09-13 21:06:29 ----D---- C:\Program Files (x86)\Boredom Software
2016-09-13 20:12:24 ----D---- C:\Rem-VBSqt
2016-09-12 23:03:57 ----D---- C:\Program Files (x86)\SourceTec
2016-09-12 16:02:58 ----AD---- C:\AvgArlBackup
2016-09-12 12:00:44 ----HD---- C:\Windows\system32\GroupPolicy
2016-09-08 12:54:23 ----D---- C:\Users\Marek\AppData\Roaming\Glitch2
2016-09-07 17:44:24 ----D---- C:\Users\Marek\AppData\Roaming\Lexicon PCM Native
2016-09-07 16:32:51 ----D---- C:\ProgramData\AudioUTOPiA
2016-09-07 16:32:51 ----D---- C:\Program Files\Lexicon(64-bit)
2016-08-31 22:25:53 ----D---- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2016-08-29 23:13:11 ----D---- C:\Users\Marek\AppData\Roaming\Sonic Academy
2016-08-29 23:11:31 ----D---- C:\ProgramData\Sonic Academy
2016-08-29 23:10:16 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2016-08-29 23:10:16 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2016-08-29 22:48:48 ----D---- C:\Program Files (x86)\VstPlugins
======List of files/folders modified in the last 1 month======
2016-09-21 12:21:33 ----RD---- C:\Program Files
2016-09-21 12:14:07 ----D---- C:\Windows\Temp
2016-09-21 11:53:32 ----D---- C:\Windows\prefetch
2016-09-21 11:47:50 ----D---- C:\Windows\system32\config
2016-09-21 11:45:49 ----D---- C:\Windows\CbsTemp
2016-09-21 11:44:26 ----D---- C:\Windows\system32\Tasks
2016-09-21 11:29:00 ----D---- C:\Windows\system32\sru
2016-09-21 03:47:24 ----D---- C:\Windows\system32\WinBioDatabase
2016-09-21 00:09:28 ----SHD---- C:\System Volume Information
2016-09-20 23:07:08 ----D---- C:\Windows\SYSWOW64\config
2016-09-20 23:04:11 ----D---- C:\Windows\Minidump
2016-09-20 22:37:33 ----D---- C:\Windows\system32\NDF
2016-09-20 19:28:50 ----D---- C:\Windows\system32\drivers
2016-09-20 13:57:20 ----D---- C:\Windows\System32
2016-09-20 13:57:20 ----D---- C:\Windows\INF
2016-09-20 13:57:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-09-20 13:31:15 ----D---- C:\Windows\AppReadiness
2016-09-20 13:30:50 ----D---- C:\Windows\system32\DriverStore
2016-09-20 13:30:11 ----D---- C:\ProgramData
2016-09-20 13:30:07 ----RD---- C:\Program Files (x86)
2016-09-20 12:39:29 ----D---- C:\Windows\pss
2016-09-20 12:31:41 ----D---- C:\AdwCleaner
2016-09-20 12:30:03 ----D---- C:\Windows\Tasks
2016-09-20 01:35:27 ----SHD---- C:\Windows\Installer
2016-09-20 01:35:26 ----SHD---- C:\Config.Msi
2016-09-20 01:26:52 ----D---- C:\Windows\system32\drivers\etc
2016-09-20 01:01:48 ----D---- C:\Windows\syswow64
2016-09-20 00:25:16 ----HD---- C:\Program Files\WindowsApps
2016-09-19 23:54:52 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-19 20:44:07 ----D---- C:\Windows\WinSxS
2016-09-19 20:41:55 ----D---- C:\Windows\Microsoft.NET
2016-09-19 20:41:39 ----D---- C:\Windows\system32\catroot2
2016-09-19 20:38:33 ----RSD---- C:\Windows\assembly
2016-09-19 19:56:48 ----D---- C:\Windows\SYSWOW64\drivers
2016-09-19 18:58:47 ----D---- C:\Users\Marek\AppData\Roaming\Adobe
2016-09-19 18:50:17 ----SD---- C:\Windows\SYSWOW64\F12
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\wbem
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\migration
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\Dism
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2016-09-19 18:50:09 ----D---- C:\Windows\system32\WinBioPlugIns
2016-09-19 18:50:09 ----D---- C:\Windows\system32\wbem
2016-09-19 18:50:09 ----D---- C:\Windows\system32\SystemResetPlatform
2016-09-19 18:50:07 ----D---- C:\Windows\system32\setup
2016-09-19 18:50:07 ----D---- C:\Windows\system32\oobe
2016-09-19 18:50:07 ----D---- C:\Windows\system32\migwiz
2016-09-19 18:50:07 ----D---- C:\Windows\system32\migration
2016-09-19 18:50:06 ----SD---- C:\Windows\system32\F12
2016-09-19 18:50:06 ----SD---- C:\Windows\system32\DiagSvcs
2016-09-19 18:50:06 ----D---- C:\Windows\system32\en-US
2016-09-19 18:50:06 ----D---- C:\Windows\system32\drivers\UMDF
2016-09-19 18:50:06 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-09-19 18:50:06 ----D---- C:\Windows\system32\Dism
2016-09-19 18:50:06 ----D---- C:\Windows\system32\cs-CZ
2016-09-19 18:50:06 ----D---- C:\Windows\system32\Boot
2016-09-19 18:50:06 ----D---- C:\Windows\system32\appraiser
2016-09-19 18:50:02 ----D---- C:\Windows\system32\AdvancedInstallers
2016-09-19 18:49:51 ----RD---- C:\Windows\PurchaseDialog
2016-09-19 18:49:51 ----RD---- C:\Windows\PrintDialog
2016-09-19 18:49:51 ----D---- C:\Windows\Provisioning
2016-09-19 18:49:51 ----D---- C:\Windows\PolicyDefinitions
2016-09-19 18:49:50 ----RSD---- C:\Windows\Media
2016-09-19 18:49:50 ----RSD---- C:\Windows\Fonts
2016-09-19 18:49:50 ----RD---- C:\Windows\ImmersiveControlPanel
2016-09-19 18:49:50 ----RD---- C:\Windows\DevicesFlow
2016-09-19 18:49:50 ----D---- C:\Windows\bcastdvr
2016-09-19 18:49:50 ----D---- C:\Windows\AppPatch
2016-09-19 18:49:50 ----D---- C:\Windows
2016-09-19 18:49:50 ----D---- C:\Program Files (x86)\Windows Portable Devices
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Portable Devices
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Photo Viewer
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Multimedia Platform
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Media Player
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Mail
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Defender
2016-09-19 18:49:49 ----D---- C:\Program Files\Internet Explorer
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Defender
2016-09-18 20:36:54 ----D---- C:\Windows\rescache
2016-09-18 20:30:03 ----D---- C:\Windows\ShellNew
2016-09-18 20:25:31 ----D---- C:\Windows\debug
2016-09-18 18:18:59 ----A---- C:\Windows\SYSWOW64\mqsnap.dll
2016-09-18 18:18:59 ----A---- C:\Windows\SYSWOW64\mqcertui.dll
2016-09-18 15:51:14 ----D---- C:\ProgramData\Adobe
2016-09-15 12:04:02 ----SD---- C:\Users\Marek\AppData\Roaming\Microsoft
2016-09-15 00:15:05 ----D---- C:\Games
2016-09-14 20:50:23 ----D---- C:\Program Files (x86)\Google
2016-09-14 20:40:00 ----D---- C:\Program Files (x86)\Image-Line
2016-09-14 20:39:59 ----D---- C:\Program Files\Image-Line
2016-09-10 18:10:04 ----D---- C:\Windows\SYSWOW64\Macromed
2016-09-10 16:49:50 ----D---- C:\Windows\system32\WDI
2016-09-10 01:01:44 ----SD---- C:\Windows\Downloaded Program Files
2016-09-09 23:29:01 ----D---- C:\ProgramData\Microsoft Help
2016-09-09 23:29:00 ----AD---- C:\Program Files (x86)\Microsoft Office
2016-09-09 23:29:00 ----A---- C:\Windows\win.ini
2016-09-09 22:39:26 ----SH---- C:\Program Files (x86)\desktop.ini
2016-09-09 22:39:26 ----RD---- C:\Users
2016-09-07 08:04:35 ----A---- C:\Windows\SYSWOW64\PrintConfig.dll
2016-09-01 00:07:48 ----D---- C:\Windows\system32\CatRoot
2016-08-31 09:29:43 ----D---- C:\Program Files (x86)\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-09-13 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-09-13 292704]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-09-13 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-09-13 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-09-13 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-09-13 513496]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-09-13 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-09-13 163416]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2015-11-24 147968]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 dtlitescsibus;@oem6.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\System32\drivers\dtlitescsibus.sys [2016-09-20 30264]
R3 dtliteusbbus;@oem7.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\Windows\System32\drivers\dtliteusbbus.sys [2016-09-20 47672]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-03-23 10627744]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\System32\drivers\k57nd60a.sys [2015-10-30 446464]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2015-10-30 34144]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-09-13 37656]
S3 b57nd60a;@oem4.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys [2014-04-07 465176]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\Windows\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2015-11-22 117248]
S3 fcvsc;fcvsc; C:\Windows\System32\drivers\fcvsc.sys [2015-10-30 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\Windows\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 TrueSight;TrueSight; \??\C:\Windows\System32\drivers\TrueSight.sys [2016-09-19 28272]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\Windows\System32\Drivers\UcmCx.sys [2016-04-23 63488]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\Windows\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\Windows\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\Windows\system32\drivers\ufx01000.sys [2016-05-28 258912]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\Windows\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\Windows\System32\drivers\ufxsynopsys.sys [2016-09-07 131424]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2014-03-04 36944]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-09-13 9107616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-09-21 12:21:33 ----D---- C:\Program Files\trend micro
2016-09-21 12:21:32 ----D---- C:\rsit
2016-09-20 16:10:57 ----AD---- C:\Kaspersky Rescue Disk 10.0
2016-09-20 13:30:50 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2016-09-20 13:30:38 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2016-09-20 13:30:34 ----D---- C:\Program Files\DAEMON Tools Lite
2016-09-20 13:30:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2016-09-20 01:23:27 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-09-18 20:25:31 ----D---- C:\Windows\system32\MRT
2016-09-18 20:25:00 ----AC---- C:\Windows\system32\MRT.exe
2016-09-18 18:46:35 ----A---- C:\Windows\system32\mshtml.dll
2016-09-18 18:46:30 ----A---- C:\Windows\system32\edgehtml.dll
2016-09-18 18:46:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-09-18 18:46:26 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2016-09-18 18:46:24 ----A---- C:\Windows\system32\ieframe.dll
2016-09-18 18:46:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-09-18 18:46:23 ----A---- C:\Windows\system32\Chakra.dll
2016-09-18 18:46:21 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2016-09-18 18:46:21 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2016-09-18 18:46:20 ----A---- C:\Windows\system32\jscript9.dll
2016-09-18 18:46:19 ----A---- C:\Windows\system32\rdpcorets.dll
2016-09-18 18:46:18 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-09-18 18:46:18 ----A---- C:\Windows\system32\tquery.dll
2016-09-18 18:46:18 ----A---- C:\Windows\system32\mfcore.dll
2016-09-18 18:46:17 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\wuaueng.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\Windows.Media.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\MFMediaEngine.dll
2016-09-18 18:46:16 ----A---- C:\Windows\system32\Wpc.dll
2016-09-18 18:46:15 ----A---- C:\Windows\system32\CoreUIComponents.dll
2016-09-18 18:46:15 ----A---- C:\Windows\system32\CertEnroll.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2016-09-18 18:46:14 ----A---- C:\Windows\system32\mssrch.dll
2016-09-18 18:46:14 ----A---- C:\Windows\system32\mmcndmgr.dll
2016-09-18 18:46:13 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-09-18 18:46:13 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2016-09-18 18:46:12 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\schedsvc.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\OpcServices.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\dwmcore.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\Windows.AccountsControl.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\wevtsvc.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\combase.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\authui.dll
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\winmde.dll
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\mf.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\twinapi.appcore.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\mfsvr.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\mfnetsrc.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\AppContracts.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\vbscript.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\SHCore.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\mfplat.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\winipcsecproc.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Pimstore.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\wmdrmdev.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\uDWM.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\twinapi.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\gpprefcl.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\AppReadiness.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\xpsservices.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\WpcWebSync.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\WpcWebFilter.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\SearchIndexer.exe
2016-09-18 18:46:07 ----A---- C:\Windows\system32\MrmCoreR.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\modernexecserver.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\jscript.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\ieproxy.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\ActivationManager.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\wsp_health.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\wiaaut.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\XpsPrint.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\wuuhext.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\WpcMon.exe
2016-09-18 18:46:06 ----A---- C:\Windows\system32\PrintDialogs3D.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\msfeeds.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\hnetcfg.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\wpdshext.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\IKEEXT.DLL
2016-09-18 18:46:05 ----A---- C:\Windows\system32\dcomp.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\cscui.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\winmsipc.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\netshell.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\Windows.Globalization.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\StorSvc.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\shacct.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\msdtctm.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\wmdrmsdk.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\winhttp.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\Windows.Media.Editing.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\rpcss.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\drivers\sdport.sys
2016-09-18 18:46:02 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2016-09-18 18:46:02 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2016-09-18 18:46:02 ----A---- C:\Windows\system32\XpsDocumentTargetPrint.dll
2016-09-18 18:46:02 ----A---- C:\Windows\system32\taskeng.exe
2016-09-18 18:46:02 ----A---- C:\Windows\system32\drivers\sdbus.sys
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\WpcWebFilter.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\wuapi.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\wiaservc.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\tetheringservice.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\SharedStartModelShim.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2016-09-18 18:46:01 ----A---- C:\Windows\system32\propsys.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\nshwfp.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\mssphtb.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\wsp_fs.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\Windows.Web.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\SimCfg.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\rastls.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\msctfuimanager.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\msctf.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\ContactApis.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\wpdbusenum.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\Windows.Media.Audio.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\wevtutil.exe
2016-09-18 18:46:00 ----A---- C:\Windows\system32\webio.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\msctfuimanager.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\ExecModelClient.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\dxtrans.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\cdpsvc.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\UserDataTimeUtil.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\upnphost.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\AppointmentApis.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\shsetup.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\SensorService.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\mfps.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\WinTypes.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\Windows.Devices.PointOfService.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\PrintDialogs.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\edputil.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\comdlg32.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\XpsDocumentTargetPrint.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\tdh.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\SensorsNativeApi.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\mssprxy.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\gpscript.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\GlobCollationHost.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\facecredentialprovider.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\evr.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\dwminit.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\ClipUp.exe
2016-09-18 18:45:57 ----A---- C:\Windows\system32\apprepsync.dll
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Picker.dll
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\efswrt.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\wups.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\wuauclt.exe
2016-09-18 18:45:56 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\webcheck.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\tzautoupdate.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\rdpudd.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\phoneactivate.exe
2016-09-18 18:45:56 ----A---- C:\Windows\system32\mfnetcore.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\ieapfltr.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\drivers\pdc.sys
2016-09-18 18:45:56 ----A---- C:\Windows\system32\apprepapi.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\winipcfile.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\SimAuth.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\MiracastReceiver.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eappprxy.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\BluetoothApis.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\taskcomp.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\sti.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\LegacyNetUXHost.exe
2016-09-18 18:45:55 ----A---- C:\Windows\system32\LegacyNetUX.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\easwrt.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\azroleui.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\WmpDui.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\mssph.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\mshtmled.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\MrmIndexer.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\Chakradiag.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\DictationManager.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\ByteCodeGenerator.exe
2016-09-18 18:45:54 ----A---- C:\Windows\system32\bdechangepin.exe
2016-09-18 18:45:54 ----A---- C:\Windows\system32\authfwcfg.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\udhisapi.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\wiarpc.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\wiaaut.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\SearchFilterHost.exe
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msscntrs.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msi.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msdt.exe
2016-09-18 18:45:53 ----A---- C:\Windows\system32\iedkcs32.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\DiagCpl.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.ps.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\upnpcont.exe
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\sti.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\werui.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\SmartCardSimulator.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\prnntfy.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\pngfilt.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\MDEServer.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\ie4uinit.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\CheckNetIsolation.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\fwcfg.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2016-09-18 18:45:52 ----A---- C:\Windows\system32\cdpreference.exe
2016-09-18 18:45:50 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-09-18 18:45:50 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2016-09-18 18:45:49 ----A---- C:\Windows\system32\LicenseManager.dll
2016-09-18 18:45:49 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\LocationFramework.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2016-09-18 18:45:48 ----A---- C:\Windows\system32\InputService.dll
2016-09-18 18:45:48 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2016-09-18 18:45:47 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2016-09-18 18:45:47 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\wwansvc.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\wifinetworkmanager.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\SpeechPal.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\mf.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\localspl.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\CoreMessaging.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\mispace.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\Windows.UI.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\werconcpl.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\StructuredQuery.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\PlayToManager.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\crypt32.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\StoreAgent.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\CredProvDataModel.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\ActiveSyncProvider.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\wpncore.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\StoreAgent.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\ngcsvc.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\webservices.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\wifitask.exe
2016-09-18 18:45:44 ----A---- C:\Windows\system32\samsrv.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\MSAJApi.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\drivers\srv.sys
2016-09-18 18:45:43 ----A---- C:\Windows\SYSWOW64\wdc.dll
2016-09-18 18:45:43 ----A---- C:\Windows\SYSWOW64\MessagingDataModel2.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\wwanconn.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\wpnapps.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\PlayToDevice.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\lsasrv.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\tdlrecover.exe
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\SyncController.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\NetSetupEngine.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\Geolocation.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\AppxAllUserStore.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\wininit.exe
2016-09-18 18:45:42 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\SensorsApi.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\rdpcore.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\NgcCtnr.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\das.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\webio.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\dui70.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\WWanAPI.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\wmicmiplugin.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\Windows.Networking.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\win32spl.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\TSWorkspace.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\SubscriptionMgr.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\SearchFolder.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\NgcCtnrSvc.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\ngccredprov.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\InstallAgent.exe
2016-09-18 18:45:41 ----A---- C:\Windows\system32\AppxAllUserStore.dll
2016-09-18 18:45:40 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2016-09-18 18:45:40 ----A---- C:\Windows\SYSWOW64\InstallAgent.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\Windows.Web.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\schtasks.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\rsaenh.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-09-18 18:45:40 ----A---- C:\Windows\system32\drivers\fastfat.sys
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\VEDataLayerHelpers.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\duser.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\dmdskmgr.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\ngcpopkeysrv.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\netcenter.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\drivers\dumpsdport.sys
2016-09-18 18:45:39 ----A---- C:\Windows\system32\drivers\cng.sys
2016-09-18 18:45:39 ----A---- C:\Windows\system32\cryptsvc.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\SettingMonitor.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\sbe.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\Windows.Devices.Picker.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\ncryptsslp.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\drivers\ufx01000.sys
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\winipcsecproc_ssp.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\VEEventDispatcher.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\NetSetupApi.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\wwanmm.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\Windows.Cortana.Desktop.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\WebcamUi.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\NetworkUXBroker.exe
2016-09-18 18:45:37 ----A---- C:\Windows\system32\mfpmp.exe
2016-09-18 18:45:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-09-18 18:45:37 ----A---- C:\Windows\system32\dot3ui.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\rasgcw.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\BrowserSettingSync.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\spoolsv.exe
2016-09-18 18:45:36 ----A---- C:\Windows\system32\rasgcw.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\ntprint.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\cryptngc.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryClient.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryBroker.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\syncutil.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\SyncSettings.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\dlnashext.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\XboxNetApiSvc.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\netlogon.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\mscms.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\deviceassociation.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\CellularAPI.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\WsmAgent.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\PlayToReceiver.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\notepad.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\GamePanel.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\deviceassociation.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\bcastdvr.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\AppCapture.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\WUDFPlatform.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\Windows.Devices.AllJoyn.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\wificonnapi.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\SmsRouterSvc.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\RADCUI.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\OnDemandConnRouteHelper.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\offlinelsa.dll
2016-09-18 18:45:33 ----A---- C:\Windows\system32\sppsvc.exe
2016-09-18 18:45:32 ----A---- C:\Windows\system32\shell32.dll
2016-09-18 18:45:30 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2016-09-18 18:45:30 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2016-09-18 18:45:30 ----A---- C:\Windows\system32\mstscax.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\wininet.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\windows.storage.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\twinui.appcore.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\iertutil.dll
2016-09-18 18:45:28 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2016-09-18 18:45:28 ----A---- C:\Windows\system32\msxml6.dll
2016-09-18 18:45:28 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\mos.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\WsmSvc.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\drivers\tcpip.sys
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\mmc.exe
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\InputService.dll
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2016-09-18 18:45:26 ----A---- C:\Windows\system32\Windows.Media.Speech.dll
2016-09-18 18:45:26 ----A---- C:\Windows\system32\tdlrecover.exe
2016-09-18 18:45:26 ----A---- C:\Windows\system32\msxml3.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\TokenBroker.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\srmclient.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\WWAHost.exe
2016-09-18 18:45:25 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\tileobjserver.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\DeviceCensus.exe
2016-09-18 18:45:24 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2016-09-18 18:45:24 ----A---- C:\Windows\SYSWOW64\RemoteNaturalLanguage.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\webservices.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\urlmon.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\ole32.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\CredProvDataModel.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\ShareHost.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2016-09-18 18:45:23 ----A---- C:\Windows\system32\winresume.exe
2016-09-18 18:45:23 ----A---- C:\Windows\system32\UIRibbon.dll
2016-09-18 18:45:23 ----A---- C:\Windows\system32\rpcrt4.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\WLanConn.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\usocore.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\AppxPackaging.dll
2016-09-18 18:45:21 ----A---- C:\Windows\SYSWOW64\PhoneOm.dll
2016-09-18 18:45:21 ----A---- C:\Windows\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\Windows.Graphics.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2016-09-18 18:45:21 ----A---- C:\Windows\system32\dmenrollengine.dll
2016-09-18 18:45:20 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2016-09-18 18:45:20 ----A---- C:\Windows\SYSWOW64\MSAJApi.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\ws2_32.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\updatehandlers.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\ntshrui.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\enterprisecsps.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\drivers\nwifi.sys
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\propsys.dll
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\filemgmt.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\wscsvc.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\srmclient.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\nettrace.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\mdmmigrator.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\drivers\ufxsynopsys.sys
2016-09-18 18:45:19 ----A---- C:\Windows\system32\drivers\pci.sys
2016-09-18 18:45:19 ----A---- C:\Windows\system32\comuid.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Search.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\wevtutil.exe
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\mscms.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\wbemcomn.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\VEEventDispatcher.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\quartz.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\MusNotification.exe
2016-09-18 18:45:18 ----A---- C:\Windows\system32\mswsock.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\drivers\tpm.sys
2016-09-18 18:45:18 ----A---- C:\Windows\system32\drivers\hidclass.sys
2016-09-18 18:45:18 ----A---- C:\Windows\system32\dmcsps.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\dhcpcore.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\DeviceEnroller.exe
2016-09-18 18:45:17 ----A---- C:\Windows\SYSWOW64\newdev.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\WlanMM.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\WlanMediaManager.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\wlanapi.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\mstsc.exe
2016-09-18 18:45:17 ----A---- C:\Windows\system32\MiracastReceiver.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\MDMAppInstaller.exe
2016-09-18 18:45:17 ----A---- C:\Windows\system32\enrollmentapi.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\dhcpcore6.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\resutils.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\PeerDistSh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\wlansvc.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\VEDataLayerHelpers.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\sspicli.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\sbe.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\PeerDistSh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\omadmclient.exe
2016-09-18 18:45:16 ----A---- C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\WLanConn.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\MosHostClient.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\hmkd.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\winipcsecproc_ssp.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\wcnwiz.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\UIRibbonRes.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\srmscan.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\SensorDataService.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\MusNotificationUx.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\musdialoghandlers.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\lsass.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\hmkd.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\efswrt.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-09-18 18:45:15 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\wldp.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\Windows.Devices.LowLevel.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\MosStorage.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\mmcbase.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\gpscript.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\cryptngc.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\Clipc.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\cic.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\wlanui.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\Windows.Media.MediaControl.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\spcompat.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\drivers\ahcache.sys
2016-09-18 18:45:14 ----A---- C:\Windows\system32\azroles.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\AppxApplicabilityEngine.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SmartCards.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\wcnwiz.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\pla.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\mmcshext.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\WsmWmiPl.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\wdc.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\wcncsvc.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\dmdskmgr.dll
2016-09-18 18:45:12 ----A---- C:\Windows\SYSWOW64\MapsBtSvc.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\WsmAuto.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\WmpDui.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\Windows.Storage.Search.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\SettingsHandlers_Geolocation.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\DisplayManager.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\Windows.Cortana.ProxyStub.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\VoipRT.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\offlinelsa.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\oemlicense.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\licensingdiag.exe
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\fwcfg.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\AdmTmpl.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\workfolderssvc.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\WcnApi.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\WalletService.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\GamePanel.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\fdWCN.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\drivers\usbser.sys
2016-09-18 18:45:11 ----A---- C:\Windows\system32\drivers\MTConfig.sys
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dmcertinst.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dhcpcsvc.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\CPFilters.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\bthserv.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\bcastdvr.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\AdmTmpl.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\WlanMM.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\authfwcfg.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\wsmprovhost.exe
2016-09-18 18:45:10 ----A---- C:\Windows\system32\ieui.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\IconCodecService.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\dafWCN.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\comsvcs.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\AppCapture.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\NMAA.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\CheckNetIsolation.exe
2016-09-18 18:45:09 ----A---- C:\Windows\system32\WsmAgent.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\qdvd.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\odbcconf.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\mdmregistration.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\dialserver.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\cmintegrator.dll
2016-09-18 18:45:07 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-09-18 18:45:04 ----A---- C:\Windows\system32\mos.dll
2016-09-18 18:45:03 ----A---- C:\Windows\SYSWOW64\tquery.dll
2016-09-18 18:45:03 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2016-09-18 18:45:03 ----A---- C:\Windows\system32\d2d1.dll
2016-09-18 18:45:03 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-09-18 18:45:03 ----A---- C:\Windows\system32\appraiser.dll
2016-09-18 18:45:02 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2016-09-18 18:45:02 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-09-18 18:45:02 ----A---- C:\Windows\system32\BingMaps.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-09-18 18:45:00 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2016-09-18 18:45:00 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\msftedit.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\d3d11.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\d3d10warp.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\aeinv.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\acmigration.dll
2016-09-18 18:44:59 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2016-09-18 18:44:59 ----A---- C:\Windows\system32\win32kfull.sys
2016-09-18 18:44:58 ----A---- C:\Windows\system32\TokenBroker.dll
2016-09-18 18:44:58 ----A---- C:\Windows\system32\storagewmi.dll
2016-09-18 18:44:57 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\qmgr.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\generaltel.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\diagperf.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\devinv.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\d3d9.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.UI.Cred.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.AccountsControl.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2016-09-18 18:44:56 ----A---- C:\Windows\system32\VSSVC.exe
2016-09-18 18:44:56 ----A---- C:\Windows\system32\dxgi.dll
2016-09-18 18:44:56 ----A---- C:\Windows\system32\diagtrack.dll
2016-09-18 18:44:55 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2016-09-18 18:44:55 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\win32kbase.sys
2016-09-18 18:44:55 ----A---- C:\Windows\system32\wcmsvc.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\PhoneProviders.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\oleaut32.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\ntdll.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\msctf.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\LogonController.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\wmpmde.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\usercpl.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\PhoneService.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\MPSSVC.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\invagent.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\gdi32.dll
2016-09-18 18:44:53 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2016-09-18 18:44:53 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2016-09-18 18:44:53 ----A---- C:\Windows\system32\vssapi.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\NetSetupShim.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\NetSetupEngine.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\MapsStore.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\fontdrvhost.exe
2016-09-18 18:44:53 ----A---- C:\Windows\system32\AzureSettingSyncProvider.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\ActiveSyncProvider.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\aadtb.dll
2016-09-18 18:44:52 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2016-09-18 18:44:52 ----A---- C:\Windows\SYSWOW64\gameux.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\vpnike.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\termsrv.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\SyncController.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\RecoveryDrive.exe
2016-09-18 18:44:52 ----A---- C:\Windows\system32\PhoneOm.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\MessagingDataModel2.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\MapControlCore.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\IPSECSVC.DLL
2016-09-18 18:44:52 ----A---- C:\Windows\system32\eappcfg.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\atmfd.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\aepic.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\LockAppBroker.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\wlidsvc.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\wlidprov.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\winload.exe
2016-09-18 18:44:51 ----A---- C:\Windows\system32\provengine.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\directmanipulation.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\d3d10level9.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\clusapi.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\BCP47Langs.dll
2016-09-18 18:44:50 ----A---- C:\Windows\SYSWOW64\directmanipulation.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\xpsrchvw.exe
2016-09-18 18:44:50 ----A---- C:\Windows\system32\WMPDMC.exe
2016-09-18 18:44:50 ----A---- C:\Windows\system32\user32.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\hnetcfg.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\dui70.dll
2016-09-18 18:44:49 ----A---- C:\Windows\SYSWOW64\LockAppHost.exe
2016-09-18 18:44:49 ----A---- C:\Windows\system32\setupapi.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\provhandlers.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\msv1_0.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\MapConfiguration.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\internetmail.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\dlnashext.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\APHostService.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\wsp_fs.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\Taskmgr.exe
2016-09-18 18:44:48 ----A---- C:\Windows\system32\schannel.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\NMAA.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\MBMediaManager.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2016-09-18 18:44:48 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\D3D12.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\BrokerLib.dll
2016-09-18 18:44:47 ----A---- C:\Windows\SYSWOW64\shacct.dll
2016-09-18 18:44:47 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\wsp_health.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\wcmcsp.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\swprv.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\provops.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\mprddm.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\kerberos.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\drivers\fvevol.sys
2016-09-18 18:44:47 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\polstore.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\AzureSettingSyncProvider.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\vds.exe
2016-09-18 18:44:46 ----A---- C:\Windows\system32\systemreset.exe
2016-09-18 18:44:46 ----A---- C:\Windows\system32\netshell.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\NetSetupSvc.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\mispace.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\JpMapControl.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\defragsvc.dll
2016-09-18 18:44:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\resutils.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\rastls.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\pnidui.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\GdiPlus.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\apphelp.dll
2016-09-18 18:44:44 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2016-09-18 18:44:44 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\themeui.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\reseteng.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\polstore.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\comuid.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\certca.dll
2016-09-18 18:44:43 ----A---- C:\Windows\system32\WMPhoto.dll
2016-09-18 18:44:43 ----A---- C:\Windows\system32\moshostcore.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\XpsFilt.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\SimCfg.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\Windows.Media.Editing.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\sud.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\credprovs.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\Windows.Cortana.OneCore.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\wbengine.exe
2016-09-18 18:44:41 ----A---- C:\Windows\system32\kernel32.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\icsvc.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\fhcfg.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\drivers\partmgr.sys
2016-09-18 18:44:41 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-09-18 18:44:41 ----A---- C:\Windows\system32\DMRServer.dll
2016-09-18 18:44:40 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\upnphost.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\tdh.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\SimAuth.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\newdev.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\netman.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\MosHostClient.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\drivers\filecrypt.sys
2016-09-18 18:44:40 ----A---- C:\Windows\system32\d3d10.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\mssph.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\TpmTasks.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\StikyNot.exe
2016-09-18 18:44:39 ----A---- C:\Windows\system32\pcasvc.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\NetworkBindingEngineMigPlugin.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\netplwiz.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\moshost.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\drivers\Ndu.sys
2016-09-18 18:44:39 ----A---- C:\Windows\system32\csrsrv.dll
2016-09-18 18:44:38 ----A---- C:\Windows\SYSWOW64\updatepolicy.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\wusa.exe
2016-09-18 18:44:38 ----A---- C:\Windows\system32\Windows.Cortana.ProxyStub.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\sdengin2.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\NetSetupApi.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\netcfgx.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\MosStorage.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\MapsBtSvc.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\fhsettingsprovider.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\duser.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\drvstore.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\drivers\storport.sys
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.BioFeedback.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\evr.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Display.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\wldp.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\wimserv.exe
2016-09-18 18:44:37 ----A---- C:\Windows\system32\provisioningcsp.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\MicrosoftAccountCloudAP.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\FntCache.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\fdProxy.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\eapphost.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\BluetoothApis.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Midi.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\usbceip.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\themeui.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\IdCtrls.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\udhisapi.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\sdrsvc.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\eapp3hst.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\cdd.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\browserbroker.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\XpsFilt.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\winsrv.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\VoipRT.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\upnpcont.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\PlayToReceiver.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\mcbuilder.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\fhengine.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\eappgnui.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\autochk.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\adtschema.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\srpapi.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\vdsutil.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\UIAutomationCore.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\sdshext.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\scapi.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\pla.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\eappprxy.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\d3d10_1.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\aitstatic.exe
2016-09-18 18:44:34 ----A---- C:\Windows\system32\aadcloudap.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\Windows.Media.Audio.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\edputil.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\wshbth.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\vsstrace.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\vss_ps.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\syncutil.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\msobjs.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\ipsecsnp.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\eapsvc.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\diagtrack_win.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\configurationclient.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\IconCodecService.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\azroles.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\AppLockerCSP.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\XblAuthManager.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\rasapi32.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\NFCProvisioningPlugin.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\MicrosoftAccountExtension.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\mapsupdatetask.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\MapsCSP.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\fontsub.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\fhsvc.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\BootMenuUX.dll
2016-09-18 18:44:31 ----A---- C:\Windows\SYSWOW64\mspaint.exe
2016-09-18 18:44:31 ----A---- C:\Windows\system32\atmlib.dll
2016-09-18 18:44:28 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2016-09-18 18:44:27 ----A---- C:\Windows\system32\wmp.dll
2016-09-18 18:44:25 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-09-18 18:44:25 ----A---- C:\Windows\system32\twinui.dll
2016-09-18 18:44:24 ----A---- C:\Windows\system32\WSService.dll
2016-09-18 18:44:24 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2016-09-18 18:44:23 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-09-18 18:44:22 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2016-09-18 18:44:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-09-18 18:44:21 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2016-09-18 18:44:21 ----A---- C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\sppobjs.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\drivers\ClipSp.sys
2016-09-18 18:44:20 ----A---- C:\Windows\explorer.exe
2016-09-18 18:44:19 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2016-09-18 18:44:19 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2016-09-18 18:44:18 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2016-09-18 18:44:17 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2016-09-18 18:44:15 ----A---- C:\Windows\SYSWOW64\WindowsCodecsRaw.dll
2016-09-18 18:44:14 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-09-18 18:44:14 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2016-09-18 18:44:14 ----A---- C:\Windows\system32\LocationFramework.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\winmde.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\PeerDistSvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\gpsvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\dosvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\audiosrv.dll
2016-09-18 18:44:12 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\Windows.UI.Cred.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\SettingSyncCore.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\mmc.exe
2016-09-18 18:44:11 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-09-18 18:44:11 ----A---- C:\Windows\system32\SRHInproc.dll
2016-09-18 18:44:11 ----A---- C:\Windows\system32\iphlpsvc.dll
2016-09-18 18:44:10 ----A---- C:\Windows\SYSWOW64\SRHInproc.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\SharedStartModel.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\Pimstore.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\KernelBase.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\winipcsecproc.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\actxprxy.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\SRH.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\AppContracts.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\WSShared.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\winlogon.exe
2016-09-18 18:44:07 ----A---- C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\UserDataService.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\SRH.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\RemoteNaturalLanguage.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\LogonController.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\DWrite.dll
2016-09-18 18:44:06 ----A---- C:\Windows\system32\WindowsCodecsRaw.dll
2016-09-18 18:44:06 ----A---- C:\Windows\system32\bisrv.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\combase.dll
2016-09-18 18:44:04 ----A---- C:\Windows\system32\gameux.dll
2016-09-18 18:44:03 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\winmsipc.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\ShareHost.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\SettingSync.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\LockAppHost.exe
2016-09-18 18:44:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-09-18 18:44:03 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2016-09-18 18:44:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\dbgeng.dll
2016-09-18 18:44:01 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2016-09-18 18:44:01 ----A---- C:\Windows\system32\sppwinob.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\PsmServiceExtHost.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\NotificationController.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\LockAppBroker.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\drivers\netbt.sys
2016-09-18 18:44:01 ----A---- C:\Windows\system32\ClipSVC.dll
2016-09-18 18:44:00 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2016-09-18 18:44:00 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\themecpl.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\SyncCenter.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\RDXService.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\Geolocation.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\ApplicationFrame.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\w32time.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\SettingsHandlers_Maps.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\RDXTaskFactory.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\hgcpl.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\hevcdecoder.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\certca.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\DisplayManager.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\D3D12.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\SystemSettings.Handlers.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-09-18 18:43:58 ----A---- C:\Windows\system32\ContactApis.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\certcli.dll
2016-09-18 18:43:57 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmpps.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmploc.DLL
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmpeffects.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\ListSvc.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\inetpp.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\hal.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-09-18 18:43:56 ----A---- C:\Windows\SYSWOW64\ExecModelClient.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\WSSync.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\winipcfile.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SettingsHandlers_Privacy.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SettingMonitor.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SecureTimeAggregator.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\OneBackupHandler.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\GnssAdapter.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\EditionUpgradeManagerObj.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\BrowserSettingSync.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\bcryptprimitives.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\AppointmentApis.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\WSSync.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\updatepolicy.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\shutdownux.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SettingSyncHost.exe
2016-09-18 18:43:55 ----A---- C:\Windows\system32\pmcsnap.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\mbsmsapi.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\drivers\UcmCx.sys
2016-09-18 18:43:55 ----A---- C:\Windows\system32\DevicePairing.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\credprovs.dll
2016-09-18 18:43:54 ----A---- C:\Windows\SYSWOW64\SensorsNativeApi.dll
2016-09-18 18:43:54 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.UI.BioFeedback.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.Devices.LowLevel.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\UserDataTimeUtil.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\sppcext.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\NetworkDesktopSettings.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\gpapi.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\filemgmt.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-09-18 18:43:54 ----A---- C:\Windows\system32\domgmt.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\cryptui.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\prnntfy.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\zipfldr.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\WSClient.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Windows.Media.Streaming.ps.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Windows.Devices.Midi.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\sud.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mprdim.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mmcshext.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mmcbase.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\EmailApis.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\drivers\rdbss.sys
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Display.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Clipc.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\AudioEng.dll
2016-09-18 18:43:53 ----A---- C:\Windows\HelpPane.exe
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\Windows.Speech.Pal.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\ProximityCommon.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\PeerDist.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\licensingdiag.exe
2016-09-18 18:43:52 ----A---- C:\Windows\system32\ChatApis.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\gpedit.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\DbgModel.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\PeerDist.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\DbgModel.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\ByteCodeGenerator.exe
2016-09-18 18:43:51 ----A---- C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\usermgr.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\SyncSettings.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2016-09-18 18:43:51 ----A---- C:\Windows\system32\msieftp.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\IdCtrls.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\cic.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\WUDFx.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\Windows.Speech.Pal.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\oemlicense.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\httpprxp.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\deviceaccess.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\dbghelp.dll
2016-09-18 18:43:49 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\sppinst.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\PeerDistCleaner.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\mspaint.exe
2016-09-18 18:43:49 ----A---- C:\Windows\system32\mqsnap.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\ImplatSetup.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\httpprxm.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\FingerprintEnrollment.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\adhsvc.dll
2016-09-18 18:43:48 ----A---- C:\Windows\SYSWOW64\DictationManager.dll
2016-09-18 18:43:48 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2016-09-18 18:42:55 ----A---- C:\Windows\system32\mqcertui.dll
2016-09-18 14:44:27 ----RASHOT---- C:\Windows\winstart.bat
2016-09-18 12:43:15 ----D---- C:\Users\Marek\AppData\Roaming\uTorrent
2016-09-15 01:54:40 ----AD---- C:\Program Files\RogueKiller
2016-09-14 23:39:47 ----D---- C:\ProgramData\IObit
2016-09-14 23:39:46 ----D---- C:\Program Files (x86)\IObit
2016-09-14 20:34:27 ----D---- C:\Program Files (x86)\GUMA363.tmp
2016-09-14 03:06:37 ----D---- C:\Users\Marek\AppData\Roaming\Rainmeter
2016-09-14 03:06:33 ----D---- C:\Program Files\Rainmeter
2016-09-14 03:01:50 ----D---- C:\Windows\ERDNT
2016-09-13 23:33:20 ----D---- C:\Program Files (x86)\FileASSASSIN
2016-09-13 22:55:07 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-09-13 22:33:46 ----D---- C:\Users\Marek\AppData\Roaming\AVAST Software
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswStm.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswSP.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2016-09-13 22:32:58 ----A---- C:\Windows\system32\aswBoot.exe
2016-09-13 22:32:44 ----A---- C:\Windows\avastSS.scr
2016-09-13 22:21:39 ----D---- C:\Program Files\AVAST Software
2016-09-13 22:21:01 ----D---- C:\ProgramData\AVAST Software
2016-09-13 21:12:35 ----D---- C:\Users\Marek\AppData\Roaming\Boredom Software
2016-09-13 21:06:29 ----D---- C:\Program Files (x86)\Boredom Software
2016-09-13 20:12:24 ----D---- C:\Rem-VBSqt
2016-09-12 23:03:57 ----D---- C:\Program Files (x86)\SourceTec
2016-09-12 16:02:58 ----AD---- C:\AvgArlBackup
2016-09-12 12:00:44 ----HD---- C:\Windows\system32\GroupPolicy
2016-09-08 12:54:23 ----D---- C:\Users\Marek\AppData\Roaming\Glitch2
2016-09-07 17:44:24 ----D---- C:\Users\Marek\AppData\Roaming\Lexicon PCM Native
2016-09-07 16:32:51 ----D---- C:\ProgramData\AudioUTOPiA
2016-09-07 16:32:51 ----D---- C:\Program Files\Lexicon(64-bit)
2016-08-31 22:25:53 ----D---- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2016-08-29 23:13:11 ----D---- C:\Users\Marek\AppData\Roaming\Sonic Academy
2016-08-29 23:11:31 ----D---- C:\ProgramData\Sonic Academy
2016-08-29 23:10:16 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2016-08-29 23:10:16 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2016-08-29 22:48:48 ----D---- C:\Program Files (x86)\VstPlugins
======List of files/folders modified in the last 1 month======
2016-09-21 12:21:33 ----RD---- C:\Program Files
2016-09-21 12:14:07 ----D---- C:\Windows\Temp
2016-09-21 11:53:32 ----D---- C:\Windows\prefetch
2016-09-21 11:47:50 ----D---- C:\Windows\system32\config
2016-09-21 11:45:49 ----D---- C:\Windows\CbsTemp
2016-09-21 11:44:26 ----D---- C:\Windows\system32\Tasks
2016-09-21 11:29:00 ----D---- C:\Windows\system32\sru
2016-09-21 03:47:24 ----D---- C:\Windows\system32\WinBioDatabase
2016-09-21 00:09:28 ----SHD---- C:\System Volume Information
2016-09-20 23:07:08 ----D---- C:\Windows\SYSWOW64\config
2016-09-20 23:04:11 ----D---- C:\Windows\Minidump
2016-09-20 22:37:33 ----D---- C:\Windows\system32\NDF
2016-09-20 19:28:50 ----D---- C:\Windows\system32\drivers
2016-09-20 13:57:20 ----D---- C:\Windows\System32
2016-09-20 13:57:20 ----D---- C:\Windows\INF
2016-09-20 13:57:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-09-20 13:31:15 ----D---- C:\Windows\AppReadiness
2016-09-20 13:30:50 ----D---- C:\Windows\system32\DriverStore
2016-09-20 13:30:11 ----D---- C:\ProgramData
2016-09-20 13:30:07 ----RD---- C:\Program Files (x86)
2016-09-20 12:39:29 ----D---- C:\Windows\pss
2016-09-20 12:31:41 ----D---- C:\AdwCleaner
2016-09-20 12:30:03 ----D---- C:\Windows\Tasks
2016-09-20 01:35:27 ----SHD---- C:\Windows\Installer
2016-09-20 01:35:26 ----SHD---- C:\Config.Msi
2016-09-20 01:26:52 ----D---- C:\Windows\system32\drivers\etc
2016-09-20 01:01:48 ----D---- C:\Windows\syswow64
2016-09-20 00:25:16 ----HD---- C:\Program Files\WindowsApps
2016-09-19 23:54:52 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-19 20:44:07 ----D---- C:\Windows\WinSxS
2016-09-19 20:41:55 ----D---- C:\Windows\Microsoft.NET
2016-09-19 20:41:39 ----D---- C:\Windows\system32\catroot2
2016-09-19 20:38:33 ----RSD---- C:\Windows\assembly
2016-09-19 19:56:48 ----D---- C:\Windows\SYSWOW64\drivers
2016-09-19 18:58:47 ----D---- C:\Users\Marek\AppData\Roaming\Adobe
2016-09-19 18:50:17 ----SD---- C:\Windows\SYSWOW64\F12
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\wbem
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\migration
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\Dism
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2016-09-19 18:50:09 ----D---- C:\Windows\system32\WinBioPlugIns
2016-09-19 18:50:09 ----D---- C:\Windows\system32\wbem
2016-09-19 18:50:09 ----D---- C:\Windows\system32\SystemResetPlatform
2016-09-19 18:50:07 ----D---- C:\Windows\system32\setup
2016-09-19 18:50:07 ----D---- C:\Windows\system32\oobe
2016-09-19 18:50:07 ----D---- C:\Windows\system32\migwiz
2016-09-19 18:50:07 ----D---- C:\Windows\system32\migration
2016-09-19 18:50:06 ----SD---- C:\Windows\system32\F12
2016-09-19 18:50:06 ----SD---- C:\Windows\system32\DiagSvcs
2016-09-19 18:50:06 ----D---- C:\Windows\system32\en-US
2016-09-19 18:50:06 ----D---- C:\Windows\system32\drivers\UMDF
2016-09-19 18:50:06 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-09-19 18:50:06 ----D---- C:\Windows\system32\Dism
2016-09-19 18:50:06 ----D---- C:\Windows\system32\cs-CZ
2016-09-19 18:50:06 ----D---- C:\Windows\system32\Boot
2016-09-19 18:50:06 ----D---- C:\Windows\system32\appraiser
2016-09-19 18:50:02 ----D---- C:\Windows\system32\AdvancedInstallers
2016-09-19 18:49:51 ----RD---- C:\Windows\PurchaseDialog
2016-09-19 18:49:51 ----RD---- C:\Windows\PrintDialog
2016-09-19 18:49:51 ----D---- C:\Windows\Provisioning
2016-09-19 18:49:51 ----D---- C:\Windows\PolicyDefinitions
2016-09-19 18:49:50 ----RSD---- C:\Windows\Media
2016-09-19 18:49:50 ----RSD---- C:\Windows\Fonts
2016-09-19 18:49:50 ----RD---- C:\Windows\ImmersiveControlPanel
2016-09-19 18:49:50 ----RD---- C:\Windows\DevicesFlow
2016-09-19 18:49:50 ----D---- C:\Windows\bcastdvr
2016-09-19 18:49:50 ----D---- C:\Windows\AppPatch
2016-09-19 18:49:50 ----D---- C:\Windows
2016-09-19 18:49:50 ----D---- C:\Program Files (x86)\Windows Portable Devices
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Portable Devices
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Photo Viewer
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Multimedia Platform
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Media Player
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Mail
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Defender
2016-09-19 18:49:49 ----D---- C:\Program Files\Internet Explorer
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Defender
2016-09-18 20:36:54 ----D---- C:\Windows\rescache
2016-09-18 20:30:03 ----D---- C:\Windows\ShellNew
2016-09-18 20:25:31 ----D---- C:\Windows\debug
2016-09-18 18:18:59 ----A---- C:\Windows\SYSWOW64\mqsnap.dll
2016-09-18 18:18:59 ----A---- C:\Windows\SYSWOW64\mqcertui.dll
2016-09-18 15:51:14 ----D---- C:\ProgramData\Adobe
2016-09-15 12:04:02 ----SD---- C:\Users\Marek\AppData\Roaming\Microsoft
2016-09-15 00:15:05 ----D---- C:\Games
2016-09-14 20:50:23 ----D---- C:\Program Files (x86)\Google
2016-09-14 20:40:00 ----D---- C:\Program Files (x86)\Image-Line
2016-09-14 20:39:59 ----D---- C:\Program Files\Image-Line
2016-09-10 18:10:04 ----D---- C:\Windows\SYSWOW64\Macromed
2016-09-10 16:49:50 ----D---- C:\Windows\system32\WDI
2016-09-10 01:01:44 ----SD---- C:\Windows\Downloaded Program Files
2016-09-09 23:29:01 ----D---- C:\ProgramData\Microsoft Help
2016-09-09 23:29:00 ----AD---- C:\Program Files (x86)\Microsoft Office
2016-09-09 23:29:00 ----A---- C:\Windows\win.ini
2016-09-09 22:39:26 ----SH---- C:\Program Files (x86)\desktop.ini
2016-09-09 22:39:26 ----RD---- C:\Users
2016-09-07 08:04:35 ----A---- C:\Windows\SYSWOW64\PrintConfig.dll
2016-09-01 00:07:48 ----D---- C:\Windows\system32\CatRoot
2016-08-31 09:29:43 ----D---- C:\Program Files (x86)\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-09-13 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-09-13 292704]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-09-13 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-09-13 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-09-13 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-09-13 513496]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-09-13 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-09-13 163416]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2015-11-24 147968]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 dtlitescsibus;@oem6.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\System32\drivers\dtlitescsibus.sys [2016-09-20 30264]
R3 dtliteusbbus;@oem7.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\Windows\System32\drivers\dtliteusbbus.sys [2016-09-20 47672]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-03-23 10627744]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\System32\drivers\k57nd60a.sys [2015-10-30 446464]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2015-10-30 34144]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-09-13 37656]
S3 b57nd60a;@oem4.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys [2014-04-07 465176]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\Windows\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2015-11-22 117248]
S3 fcvsc;fcvsc; C:\Windows\System32\drivers\fcvsc.sys [2015-10-30 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\Windows\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 TrueSight;TrueSight; \??\C:\Windows\System32\drivers\TrueSight.sys [2016-09-19 28272]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\Windows\System32\Drivers\UcmCx.sys [2016-04-23 63488]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\Windows\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\Windows\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\Windows\system32\drivers\ufx01000.sys [2016-05-28 258912]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\Windows\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\Windows\System32\drivers\ufxsynopsys.sys [2016-09-07 131424]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2014-03-04 36944]
Re: Neodstranitelný multiexplorer virus
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-13 197128]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 OneSyncSvc_1c6e4;Hostitel synchronizace_1c6e4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_17d98;Hostitel synchronizace_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1c160;Hostitel synchronizace_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1dca2;Hostitel synchronizace_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1e4a4;Hostitel synchronizace_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1fcfb;Hostitel synchronizace_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_21d42;Hostitel synchronizace_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_23a86;Hostitel synchronizace_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_250cd;Hostitel synchronizace_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_bd4e;Hostitel synchronizace_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-08-29 1467072]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14 153752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_17d98;Služba zasílání zpráv_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1c160;Služba zasílání zpráv_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1c6e4;Služba zasílání zpráv_1c6e4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1dca2;Služba zasílání zpráv_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1e4a4;Služba zasílání zpráv_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1fcfb;Služba zasílání zpráv_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_21d42;Služba zasílání zpráv_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_23a86;Služba zasílání zpráv_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_250cd;Služba zasílání zpráv_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_bd4e;Služba zasílání zpráv_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_17d98;Data kontaktů_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1c160;Data kontaktů_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1c6e4;Data kontaktů_1c6e4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1dca2;Data kontaktů_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1e4a4;Data kontaktů_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1fcfb;Data kontaktů_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_21d42;Data kontaktů_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_23a86;Data kontaktů_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_250cd;Data kontaktů_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_bd4e;Data kontaktů_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2016-09-07 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\Windows\system32\TieringEngineService.exe [2015-10-30 290304]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_17d98;Úložiště uživatelských dat_17d98; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\Windows\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-13 197128]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 OneSyncSvc_1c6e4;Hostitel synchronizace_1c6e4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_17d98;Hostitel synchronizace_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1c160;Hostitel synchronizace_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1dca2;Hostitel synchronizace_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1e4a4;Hostitel synchronizace_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1fcfb;Hostitel synchronizace_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_21d42;Hostitel synchronizace_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_23a86;Hostitel synchronizace_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_250cd;Hostitel synchronizace_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_bd4e;Hostitel synchronizace_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-08-29 1467072]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14 153752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_17d98;Služba zasílání zpráv_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1c160;Služba zasílání zpráv_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1c6e4;Služba zasílání zpráv_1c6e4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1dca2;Služba zasílání zpráv_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1e4a4;Služba zasílání zpráv_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1fcfb;Služba zasílání zpráv_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_21d42;Služba zasílání zpráv_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_23a86;Služba zasílání zpráv_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_250cd;Služba zasílání zpráv_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_bd4e;Služba zasílání zpráv_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_17d98;Data kontaktů_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1c160;Data kontaktů_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1c6e4;Data kontaktů_1c6e4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1dca2;Data kontaktů_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1e4a4;Data kontaktů_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1fcfb;Data kontaktů_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_21d42;Data kontaktů_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_23a86;Data kontaktů_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_250cd;Data kontaktů_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_bd4e;Data kontaktů_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2016-09-07 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\Windows\system32\TieringEngineService.exe [2015-10-30 290304]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 UnistoreSvc_17d98;Úložiště uživatelských dat_17d98; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\Windows\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
Re: Neodstranitelný multiexplorer virus
info.txt logfile of random's system information tool 1.10 2016-09-21 12:21:45
======MBR======
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
======Uninstall list======
Adobe AIR-->C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}
Adobe Photoshop CS5.1-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{9158FF30-78D7-40EF-B83E-451AC5334640}"
ASIO4ALL-->C:\Program Files (x86)\ASIO4ALL v2\uninstall.exe
Avast Free Antivirus-->C:\Program Files\AVAST Software\Avast\Setup\Instup.exe /control_panel
DAEMON Tools Lite-->C:\Program Files\DAEMON Tools Lite\uninst.exe
FileASSASSIN-->C:\Program Files (x86)\FileASSASSIN\uninst.exe
FL Studio 12-->C:\Program Files (x86)\Image-Line\FL Studio 12\uninstall.exe
FL Studio ASIO-->C:\Program Files (x86)\Image-Line\FL Studio ASIO\uninstall.exe
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
IObit Unlocker-->"C:\Program Files (x86)\IObit\IObit Unlocker\unins000.exe"
Malwarebytes Anti-Malware verze 2.2.1.1043-->"C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe"
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2007-->MsiExec.exe /X{90120000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (Czech) 2007-->MsiExec.exe /X{90120000-002A-0405-1000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022-->MsiExec.exe /X{350AA351-21FA-3270-8B7A-835434E766AD}
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft_VC80_ATL_x86_x64-->MsiExec.exe /I{925D058B-564A-443A-B4B2-7E90C6432E55}
Microsoft_VC80_ATL_x86-->MsiExec.exe /I{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}
Microsoft_VC80_CRT_x86_x64-->MsiExec.exe /I{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}
Microsoft_VC80_CRT_x86-->MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
Microsoft_VC80_MFC_x86_x64-->MsiExec.exe /I{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}
Microsoft_VC80_MFC_x86-->MsiExec.exe /I{D1A19B02-817E-4296-A45B-07853FD74D57}
Microsoft_VC80_MFCLOC_x86_x64-->MsiExec.exe /I{1E9FC118-651D-4934-97BE-E53CAE5C7D45}
Microsoft_VC80_MFCLOC_x86-->MsiExec.exe /I{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
Microsoft_VC90_ATL_x86_x64-->MsiExec.exe /I{8557397C-A42D-486F-97B3-A2CBC2372593}
Microsoft_VC90_ATL_x86-->MsiExec.exe /I{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
Microsoft_VC90_CRT_x86_x64-->MsiExec.exe /I{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}
Microsoft_VC90_CRT_x86-->MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Microsoft_VC90_MFC_x86_x64-->MsiExec.exe /I{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}
Microsoft_VC90_MFC_x86-->MsiExec.exe /I{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
Microsoft_VC90_MFCLOC_x86_x64-->MsiExec.exe /I{90BF0360-A1DB-4599-A643-95AB90A52C1E}
Microsoft_VC90_MFCLOC_x86-->MsiExec.exe /I{B6D38690-755E-4F40-A35A-23F8BC2B86AC}
Rainmeter-->C:\Program Files\Rainmeter\uninst.exe
RogueKiller verze 12-->"C:\Program Files\RogueKiller\unins000.exe"
SafeZone Stable 1.51.2220.62-->"C:\Program Files\AVAST Software\SZBrowser\Launcher.exe" /uninstall
Sonic Academy KICK 2-->"C:\Program Files (x86)\Image-Line\FL Studio 12\Plugins\VST\KICK 2\uninstall.exe"
Sothink Logo Maker Professional-->"C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\unins000.exe"
VT Hash Check 1.57-->"C:\Program Files (x86)\Boredom Software\VT Hash Check\unins000.exe"
WinRAR 5.31 (64-bit)-->C:\Program Files\WinRAR\uninstall.exe
======System event log======
Computer Name: MINWINPC
Event Code: 25
Message: Zásada spouštěcí nabídky byla 0x1.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20160429030955.527147-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: MINWINPC
Event Code: 27
Message: Typ spuštění byl 0x0.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20160429030955.527146-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: MINWINPC
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 3
Source Name: EventLog
Time Written: 20160429031047.635527-000
Event Type: Informace
User:
Computer Name: MINWINPC
Event Code: 6009
Message: Microsoft (R) Windows (R) 10.00. 10586 Multiprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20160429031047.635527-000
Event Type: Informace
User:
Computer Name: MINWINPC
Event Code: 12
Message: Operační systém se spustil v systémovém čase 2016-04-29T03:09:55.487609600Z.
Record Number: 1
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20160429030955.527021-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
=====Application event log=====
Computer Name: MINWINPC
Event Code: 1004
Message: Služba Ochrana softwaru úspěšně nainstalovala licenci.
Název licence=ClipService Component PPD License
ID licence=8f2a5247-8b75-c861-e6fc-881d7732791b
Record Number: 5
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20160429031337.463693-000
Event Type: Informace
User:
Computer Name: MINWINPC
Event Code: 8227
Message: Platnost existujících dat plánu vypršela. Plán bude přehodnocen.
Důvod:0x80070002
Record Number: 4
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20160429031058.135529-000
Event Type: Upozornění
User:
Computer Name: MINWINPC
Event Code: 1066
Message: Inicializační stav pro objekty služby
C:\Windows\system32\sppwinob.dll, msft:spp/windowsfunctionality/agent/7.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/inherited/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/phone/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/pkey/detect, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/ActionScheduler/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/TaskScheduler/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/statecollector/pkey, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/activationinfo/1.0, 0x00000000, 0x00000000
Record Number: 3
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20160429031058.135529-000
Event Type: Informace
User:
Computer Name: MINWINPC
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20160429031049.418835-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: MINWINPC
Event Code: 900
Message: Služba Ochrana softwaru se spouští.
Parametry:<none>
Record Number: 1
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20160429031051.573027-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21569
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.916743-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-544
Název skupiny: Administrators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21568
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.916273-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-544
Název skupiny: Administrators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21567
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.916137-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21566
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.915200-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21565
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.915138-000
Event Type: Úspěšný audit
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\RogueKiller;
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"PSModulePath"=%ProgramFiles%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
-----------------EOF-----------------
======MBR======
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
======Uninstall list======
Adobe AIR-->C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}
Adobe Photoshop CS5.1-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{9158FF30-78D7-40EF-B83E-451AC5334640}"
ASIO4ALL-->C:\Program Files (x86)\ASIO4ALL v2\uninstall.exe
Avast Free Antivirus-->C:\Program Files\AVAST Software\Avast\Setup\Instup.exe /control_panel
DAEMON Tools Lite-->C:\Program Files\DAEMON Tools Lite\uninst.exe
FileASSASSIN-->C:\Program Files (x86)\FileASSASSIN\uninst.exe
FL Studio 12-->C:\Program Files (x86)\Image-Line\FL Studio 12\uninstall.exe
FL Studio ASIO-->C:\Program Files (x86)\Image-Line\FL Studio ASIO\uninstall.exe
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
IObit Unlocker-->"C:\Program Files (x86)\IObit\IObit Unlocker\unins000.exe"
Malwarebytes Anti-Malware verze 2.2.1.1043-->"C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe"
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2007-->MsiExec.exe /X{90120000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (Czech) 2007-->MsiExec.exe /X{90120000-002A-0405-1000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022-->MsiExec.exe /X{350AA351-21FA-3270-8B7A-835434E766AD}
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft_VC80_ATL_x86_x64-->MsiExec.exe /I{925D058B-564A-443A-B4B2-7E90C6432E55}
Microsoft_VC80_ATL_x86-->MsiExec.exe /I{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}
Microsoft_VC80_CRT_x86_x64-->MsiExec.exe /I{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}
Microsoft_VC80_CRT_x86-->MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
Microsoft_VC80_MFC_x86_x64-->MsiExec.exe /I{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}
Microsoft_VC80_MFC_x86-->MsiExec.exe /I{D1A19B02-817E-4296-A45B-07853FD74D57}
Microsoft_VC80_MFCLOC_x86_x64-->MsiExec.exe /I{1E9FC118-651D-4934-97BE-E53CAE5C7D45}
Microsoft_VC80_MFCLOC_x86-->MsiExec.exe /I{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
Microsoft_VC90_ATL_x86_x64-->MsiExec.exe /I{8557397C-A42D-486F-97B3-A2CBC2372593}
Microsoft_VC90_ATL_x86-->MsiExec.exe /I{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
Microsoft_VC90_CRT_x86_x64-->MsiExec.exe /I{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}
Microsoft_VC90_CRT_x86-->MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Microsoft_VC90_MFC_x86_x64-->MsiExec.exe /I{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}
Microsoft_VC90_MFC_x86-->MsiExec.exe /I{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
Microsoft_VC90_MFCLOC_x86_x64-->MsiExec.exe /I{90BF0360-A1DB-4599-A643-95AB90A52C1E}
Microsoft_VC90_MFCLOC_x86-->MsiExec.exe /I{B6D38690-755E-4F40-A35A-23F8BC2B86AC}
Rainmeter-->C:\Program Files\Rainmeter\uninst.exe
RogueKiller verze 12-->"C:\Program Files\RogueKiller\unins000.exe"
SafeZone Stable 1.51.2220.62-->"C:\Program Files\AVAST Software\SZBrowser\Launcher.exe" /uninstall
Sonic Academy KICK 2-->"C:\Program Files (x86)\Image-Line\FL Studio 12\Plugins\VST\KICK 2\uninstall.exe"
Sothink Logo Maker Professional-->"C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\unins000.exe"
VT Hash Check 1.57-->"C:\Program Files (x86)\Boredom Software\VT Hash Check\unins000.exe"
WinRAR 5.31 (64-bit)-->C:\Program Files\WinRAR\uninstall.exe
======System event log======
Computer Name: MINWINPC
Event Code: 25
Message: Zásada spouštěcí nabídky byla 0x1.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20160429030955.527147-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: MINWINPC
Event Code: 27
Message: Typ spuštění byl 0x0.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20160429030955.527146-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: MINWINPC
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 3
Source Name: EventLog
Time Written: 20160429031047.635527-000
Event Type: Informace
User:
Computer Name: MINWINPC
Event Code: 6009
Message: Microsoft (R) Windows (R) 10.00. 10586 Multiprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20160429031047.635527-000
Event Type: Informace
User:
Computer Name: MINWINPC
Event Code: 12
Message: Operační systém se spustil v systémovém čase 2016-04-29T03:09:55.487609600Z.
Record Number: 1
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20160429030955.527021-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
=====Application event log=====
Computer Name: MINWINPC
Event Code: 1004
Message: Služba Ochrana softwaru úspěšně nainstalovala licenci.
Název licence=ClipService Component PPD License
ID licence=8f2a5247-8b75-c861-e6fc-881d7732791b
Record Number: 5
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20160429031337.463693-000
Event Type: Informace
User:
Computer Name: MINWINPC
Event Code: 8227
Message: Platnost existujících dat plánu vypršela. Plán bude přehodnocen.
Důvod:0x80070002
Record Number: 4
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20160429031058.135529-000
Event Type: Upozornění
User:
Computer Name: MINWINPC
Event Code: 1066
Message: Inicializační stav pro objekty služby
C:\Windows\system32\sppwinob.dll, msft:spp/windowsfunctionality/agent/7.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/inherited/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/phone/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/pkey/detect, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/ActionScheduler/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/TaskScheduler/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/statecollector/pkey, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/activationinfo/1.0, 0x00000000, 0x00000000
Record Number: 3
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20160429031058.135529-000
Event Type: Informace
User:
Computer Name: MINWINPC
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20160429031049.418835-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: MINWINPC
Event Code: 900
Message: Služba Ochrana softwaru se spouští.
Parametry:<none>
Record Number: 1
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20160429031051.573027-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21569
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.916743-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-544
Název skupiny: Administrators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21568
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.916273-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-544
Název skupiny: Administrators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21567
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.916137-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21566
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.915200-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-0VEG266
Event Code: 4799
Message: Bylo vyhodnoceno členství v místní skupině podporující zabezpečení.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-0VEG266$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Informace o procesu:
ID procesu: 0x1134
Název procesu: C:\Windows\System32\VSSVC.exe
Record Number: 21565
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160716070506.915138-000
Event Type: Úspěšný audit
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\RogueKiller;
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"PSModulePath"=%ProgramFiles%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
-----------------EOF-----------------
Re: Neodstranitelný multiexplorer virus
Můžu vědět, pro mě jedinému nikdo neodpověděl?
Re: Neodstranitelný multiexplorer virus
Krasny den Vam preju 
Pokud je Vas log dlouhy a nevejde se do jednoho prispevku (je delsi nez 100.000 znaku), pridejte do nazvu tematu informaci o tom, ze je log dlouhy a je rozdelen do vice casti (napr. "virus, 3 posty"). Primarne resime temata bez odpovedi, takze ve Vasem pripade to vypada, ze se Vam jiz nektery z kolegu venuje a tema snadno zapadne.
Popiste prosim, jake konkretni problemy na PC pozorujete. Jste k internetu pripojen kabelem nebo pres Wi-Fi?
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).
Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101
Pozn. pri druhem a dalsim spusteni FRST je pro vytvoreni logu Addition.txt nutne tuto volbu explicitne zatrhnout pred zacatkem skenu. Zatrhnete i moznost List BCD.
Pokud je Vas log dlouhy a nevejde se do jednoho prispevku (je delsi nez 100.000 znaku), pridejte do nazvu tematu informaci o tom, ze je log dlouhy a je rozdelen do vice casti (napr. "virus, 3 posty"). Primarne resime temata bez odpovedi, takze ve Vasem pripade to vypada, ze se Vam jiz nektery z kolegu venuje a tema snadno zapadne. Popiste prosim, jake konkretni problemy na PC pozorujete. Jste k internetu pripojen kabelem nebo pres Wi-Fi? V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose). Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101Pozn. pri druhem a dalsim spusteni FRST je pro vytvoreni logu Addition.txt nutne tuto volbu explicitne zatrhnout pred zacatkem skenu. Zatrhnete i moznost List BCD.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Neodstranitelný multiexplorer virus
Dobrý den i Vám Aha, už tomu rozumím. Díky za info.
Jsem připojen kabelem. Ono se toho od včera dost změnilo, protože jsem od včera spoustu potenciálně nebezpečných programů odinstaloval, vymazal a dokonce jsem se pustil i do mazání stop po nich v regeditu. Takže se to relativně dost zlepšilo, nicméně po nějaké době se děje to, že se mi opět výrazně zpomalí procházení internetem. Takže občas čekám i minutu, než se mi nějaká stránka vůbec načte. Všechny výše jmenované programy nic nenalézají. Jeden z nich mi dříve hlásil něco o FAKE HDD rogues. Také jsem si všiml, že při zdlouhavém načítání stránek, vlevo dole, jak vyskakuje takový ten šedivý řádeček který informuje např. waiting for youtube.com atd., ukazuje mi to tam zahraniční adresy většinou obsahujících výraz "ad", který má velmi podezřelou koncovku atd., nebo pubmatic px.adhigh.net a tak dále. Takže mě to evidentně přesměrovává přes tyhle weby. Jenže žádný z bezpečnostních programů ani utilit nic nenacházejí. Reset nastavení, prohlížečů, routeru, nic nepomáhá. Ještě včera jsem měl spuštěný proces svchost třeba patnáctkrát, také se mi několikrát ve správci objevuje proces comsurrogate, pak to zničeho nic zmizí. Zkrátka mám pocit, že se infekce vysloveně zmocnila systému a vydává se za něj. Něco jako fake explorer, nevím jak to nazvat. Možná proto běží jako regulérní procesy Microsoftu a nedá se odhalit..
Jelikož jsem celou noc na dnešek mazal a mazal, pošlu Vám nové logy, protože tamty už nebudou aktuální. Podívejte se na to prosím, zkusíme něco vymyslet. Děkuju, Mára
Aha, už tomu rozumím. Díky za info. Jsem připojen kabelem. Ono se toho od včera dost změnilo, protože jsem od včera spoustu potenciálně nebezpečných programů odinstaloval, vymazal a dokonce jsem se pustil i do mazání stop po nich v regeditu. Takže se to relativně dost zlepšilo, nicméně po nějaké době se děje to, že se mi opět výrazně zpomalí procházení internetem. Takže občas čekám i minutu, než se mi nějaká stránka vůbec načte. Všechny výše jmenované programy nic nenalézají. Jeden z nich mi dříve hlásil něco o FAKE HDD rogues. Také jsem si všiml, že při zdlouhavém načítání stránek, vlevo dole, jak vyskakuje takový ten šedivý řádeček který informuje např. waiting for youtube.com atd., ukazuje mi to tam zahraniční adresy většinou obsahujících výraz "ad", který má velmi podezřelou koncovku atd., nebo pubmatic px.adhigh.net a tak dále. Takže mě to evidentně přesměrovává přes tyhle weby. Jenže žádný z bezpečnostních programů ani utilit nic nenacházejí. Reset nastavení, prohlížečů, routeru, nic nepomáhá. Ještě včera jsem měl spuštěný proces svchost třeba patnáctkrát, také se mi několikrát ve správci objevuje proces comsurrogate, pak to zničeho nic zmizí. Zkrátka mám pocit, že se infekce vysloveně zmocnila systému a vydává se za něj. Něco jako fake explorer, nevím jak to nazvat. Možná proto běží jako regulérní procesy Microsoftu a nedá se odhalit.. Jelikož jsem celou noc na dnešek mazal a mazal, pošlu Vám nové logy, protože tamty už nebudou aktuální. Podívejte se na to prosím, zkusíme něco vymyslet. Děkuju, MáraRe: Neodstranitelný multiexplorer virus
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marek at 2016-09-22 20:57:27
Microsoft Windows 10 Pro
System drive C: has 103 GB (67%) free of 152 GB
Total RAM: 3968 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:57:31, on 22.09.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0589)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\trend micro\Marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE03DHP
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: errorlog.txt
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - (no file)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5460 bytes
======Listing Processes======
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k appmodel
C:\Windows\system32\svchost.exe -k imgsvc
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\Explorer.EXE
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
Notepad.exe C:\Users\Marek\Desktop\Rkill.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0x174
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4436.0.540746344\952854642" --mojo-application-channel-token=144D44003DC6AE50D7EE9410461019DA --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-medium/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,14,18,31,48,56 --gpu-vendor-id=0x8086 --gpu-device-id=0x2e32 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2702 --gpu-driver-date=3-11-2013 --mojo-platform-channel-handle=1364 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=E7EB955AD257D7C76F572AEFAA55A609 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=4EF9FEA088D3B18D3CEF02F437BF7501 --mojo-application-channel-token=E7EB955AD257D7C76F572AEFAA55A609 --channel="4436.8.1566262988\2048105963" --mojo-platform-channel-handle=5408 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=125A200730FB91C8398CE2D14072AC1A --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=49E5BD7943F4D9FC347FB02976F0C629 --mojo-application-channel-token=125A200730FB91C8398CE2D14072AC1A --channel="4436.13.638437080\528902032" --mojo-platform-channel-handle=3832 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=BE685DBF125B5099F6447102AB644913 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=B264A3188CE21D39FCE6A9DFF455F50F --mojo-application-channel-token=BE685DBF125B5099F6447102AB644913 --channel="4436.15.553937981\1283609689" --mojo-platform-channel-handle=4312 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=9F07F57B6CD58C7D6AE968D86D4F1529 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=8D6B578ACE17D54D42B1C75A4E9B6FA5 --mojo-application-channel-token=9F07F57B6CD58C7D6AE968D86D4F1529 --channel="4436.19.1291281476\181810700" --mojo-platform-channel-handle=2576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=7F75B4104B3734A4D4F03F5EDE732BDA --lang=en-US --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=23B9FA6F967D037153C1CAD482075121 --mojo-application-channel-token=7F75B4104B3734A4D4F03F5EDE732BDA --channel="4436.21.1306136668\850817273" --mojo-platform-channel-handle=3760 /prefetch:1
"C:\Windows\System32\Taskmgr.exe" /2
"C:\Users\Marek\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-09-13 9107616]
"TrojanScanner"=C:\Program Files (x86)\Trojan Remover\Trjscan.exe [2016-02-19 3753016]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
errorlog.txt
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - "%1" %*
======List of files/folders created in the last 1 month======
2016-09-22 13:43:53 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-09-22 13:43:53 ----D---- C:\Program Files (x86)\CMAK
2016-09-22 13:43:52 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-09-22 13:43:52 ----D---- C:\Program Files\CMAK
2016-09-22 01:08:53 ----D---- C:\AdwCleaner
2016-09-22 00:39:47 ----D---- C:\ProgramData\HitmanPro
2016-09-21 17:58:43 ----D---- C:\Users\Marek\AppData\Roaming\Macromedia
2016-09-21 16:31:34 ----D---- C:\Users\Marek\AppData\Roaming\Lexicon PCM Native
2016-09-21 15:48:51 ----D---- C:\ProgramData\Licenses
2016-09-21 15:48:51 ----AD---- C:\ProgramData\TEMP
2016-09-21 15:46:42 ----D---- C:\Users\Marek\AppData\Roaming\Simply Super Software
2016-09-21 15:46:31 ----D---- C:\ProgramData\Simply Super Software
2016-09-21 15:46:31 ----D---- C:\Program Files (x86)\Trojan Remover
2016-09-21 12:21:33 ----D---- C:\Program Files\trend micro
2016-09-21 12:21:32 ----D---- C:\rsit
2016-09-20 16:10:57 ----AD---- C:\Kaspersky Rescue Disk 10.0
2016-09-20 13:30:50 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2016-09-20 13:30:38 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2016-09-20 13:30:34 ----D---- C:\Program Files\DAEMON Tools Lite
2016-09-20 13:30:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2016-09-20 01:23:27 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-09-18 20:25:31 ----D---- C:\Windows\system32\MRT
2016-09-18 20:25:00 ----AC---- C:\Windows\system32\MRT.exe
2016-09-18 18:46:35 ----A---- C:\Windows\system32\mshtml.dll
2016-09-18 18:46:30 ----A---- C:\Windows\system32\edgehtml.dll
2016-09-18 18:46:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-09-18 18:46:26 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2016-09-18 18:46:24 ----A---- C:\Windows\system32\ieframe.dll
2016-09-18 18:46:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-09-18 18:46:23 ----A---- C:\Windows\system32\Chakra.dll
2016-09-18 18:46:21 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2016-09-18 18:46:21 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2016-09-18 18:46:20 ----A---- C:\Windows\system32\jscript9.dll
2016-09-18 18:46:19 ----A---- C:\Windows\system32\rdpcorets.dll
2016-09-18 18:46:18 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-09-18 18:46:18 ----A---- C:\Windows\system32\tquery.dll
2016-09-18 18:46:18 ----A---- C:\Windows\system32\mfcore.dll
2016-09-18 18:46:17 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\wuaueng.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\Windows.Media.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\MFMediaEngine.dll
2016-09-18 18:46:16 ----A---- C:\Windows\system32\Wpc.dll
2016-09-18 18:46:15 ----A---- C:\Windows\system32\CoreUIComponents.dll
2016-09-18 18:46:15 ----A---- C:\Windows\system32\CertEnroll.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2016-09-18 18:46:14 ----A---- C:\Windows\system32\mssrch.dll
2016-09-18 18:46:14 ----A---- C:\Windows\system32\mmcndmgr.dll
2016-09-18 18:46:13 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-09-18 18:46:13 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2016-09-18 18:46:12 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\schedsvc.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\OpcServices.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\dwmcore.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\Windows.AccountsControl.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\wevtsvc.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\combase.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\authui.dll
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\winmde.dll
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\mf.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\twinapi.appcore.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\mfsvr.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\mfnetsrc.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\AppContracts.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\vbscript.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\SHCore.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\mfplat.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\winipcsecproc.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Pimstore.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\wmdrmdev.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\uDWM.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\twinapi.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\gpprefcl.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\AppReadiness.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\xpsservices.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\WpcWebSync.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\WpcWebFilter.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\SearchIndexer.exe
2016-09-18 18:46:07 ----A---- C:\Windows\system32\MrmCoreR.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\modernexecserver.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\jscript.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\ieproxy.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\ActivationManager.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\wsp_health.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\wiaaut.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\XpsPrint.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\wuuhext.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\WpcMon.exe
2016-09-18 18:46:06 ----A---- C:\Windows\system32\PrintDialogs3D.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\msfeeds.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\hnetcfg.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\wpdshext.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\IKEEXT.DLL
2016-09-18 18:46:05 ----A---- C:\Windows\system32\dcomp.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\cscui.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\winmsipc.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\netshell.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\Windows.Globalization.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\StorSvc.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\shacct.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\msdtctm.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\wmdrmsdk.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\winhttp.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\Windows.Media.Editing.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\rpcss.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\drivers\sdport.sys
2016-09-18 18:46:02 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2016-09-18 18:46:02 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2016-09-18 18:46:02 ----A---- C:\Windows\system32\XpsDocumentTargetPrint.dll
2016-09-18 18:46:02 ----A---- C:\Windows\system32\taskeng.exe
2016-09-18 18:46:02 ----A---- C:\Windows\system32\drivers\sdbus.sys
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\WpcWebFilter.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\wuapi.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\wiaservc.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\tetheringservice.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\SharedStartModelShim.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2016-09-18 18:46:01 ----A---- C:\Windows\system32\propsys.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\nshwfp.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\mssphtb.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\wsp_fs.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\Windows.Web.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\SimCfg.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\rastls.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\msctfuimanager.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\msctf.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\ContactApis.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\wpdbusenum.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\Windows.Media.Audio.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\wevtutil.exe
2016-09-18 18:46:00 ----A---- C:\Windows\system32\webio.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\msctfuimanager.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\ExecModelClient.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\dxtrans.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\cdpsvc.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\UserDataTimeUtil.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\upnphost.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\AppointmentApis.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\shsetup.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\SensorService.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\mfps.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\WinTypes.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\Windows.Devices.PointOfService.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\PrintDialogs.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\edputil.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\comdlg32.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\XpsDocumentTargetPrint.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\tdh.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\SensorsNativeApi.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\mssprxy.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\gpscript.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\GlobCollationHost.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\facecredentialprovider.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\evr.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\dwminit.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\ClipUp.exe
2016-09-18 18:45:57 ----A---- C:\Windows\system32\apprepsync.dll
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Picker.dll
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\efswrt.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\wups.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\wuauclt.exe
2016-09-18 18:45:56 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\webcheck.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\tzautoupdate.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\rdpudd.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\phoneactivate.exe
2016-09-18 18:45:56 ----A---- C:\Windows\system32\mfnetcore.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\ieapfltr.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\drivers\pdc.sys
2016-09-18 18:45:56 ----A---- C:\Windows\system32\apprepapi.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\winipcfile.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\SimAuth.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\MiracastReceiver.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eappprxy.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\BluetoothApis.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\taskcomp.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\sti.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\LegacyNetUXHost.exe
2016-09-18 18:45:55 ----A---- C:\Windows\system32\LegacyNetUX.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\easwrt.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\azroleui.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\WmpDui.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\mssph.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\mshtmled.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\MrmIndexer.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\Chakradiag.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\DictationManager.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\ByteCodeGenerator.exe
2016-09-18 18:45:54 ----A---- C:\Windows\system32\bdechangepin.exe
2016-09-18 18:45:54 ----A---- C:\Windows\system32\authfwcfg.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\udhisapi.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\wiarpc.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\wiaaut.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\SearchFilterHost.exe
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msscntrs.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msi.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msdt.exe
2016-09-18 18:45:53 ----A---- C:\Windows\system32\iedkcs32.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\DiagCpl.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.ps.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\upnpcont.exe
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\sti.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\werui.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\SmartCardSimulator.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\prnntfy.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\pngfilt.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\MDEServer.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\ie4uinit.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\CheckNetIsolation.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\fwcfg.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2016-09-18 18:45:52 ----A---- C:\Windows\system32\cdpreference.exe
2016-09-18 18:45:50 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-09-18 18:45:50 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2016-09-18 18:45:49 ----A---- C:\Windows\system32\LicenseManager.dll
2016-09-18 18:45:49 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\LocationFramework.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2016-09-18 18:45:48 ----A---- C:\Windows\system32\InputService.dll
2016-09-18 18:45:48 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2016-09-18 18:45:47 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2016-09-18 18:45:47 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\wwansvc.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\wifinetworkmanager.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\SpeechPal.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\mf.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\localspl.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\CoreMessaging.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\mispace.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\Windows.UI.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\werconcpl.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\StructuredQuery.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\PlayToManager.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\crypt32.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\StoreAgent.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\CredProvDataModel.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\ActiveSyncProvider.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\wpncore.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\StoreAgent.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\ngcsvc.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\webservices.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\wifitask.exe
2016-09-18 18:45:44 ----A---- C:\Windows\system32\samsrv.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\MSAJApi.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\drivers\srv.sys
2016-09-18 18:45:43 ----A---- C:\Windows\SYSWOW64\wdc.dll
2016-09-18 18:45:43 ----A---- C:\Windows\SYSWOW64\MessagingDataModel2.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\wwanconn.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\wpnapps.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\PlayToDevice.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\lsasrv.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\tdlrecover.exe
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\SyncController.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\NetSetupEngine.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\Geolocation.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\AppxAllUserStore.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\wininit.exe
2016-09-18 18:45:42 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\SensorsApi.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\rdpcore.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\NgcCtnr.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\das.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\webio.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\dui70.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\WWanAPI.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\wmicmiplugin.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\Windows.Networking.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\win32spl.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\TSWorkspace.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\SubscriptionMgr.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\SearchFolder.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\NgcCtnrSvc.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\ngccredprov.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\InstallAgent.exe
2016-09-18 18:45:41 ----A---- C:\Windows\system32\AppxAllUserStore.dll
2016-09-18 18:45:40 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2016-09-18 18:45:40 ----A---- C:\Windows\SYSWOW64\InstallAgent.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\Windows.Web.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\schtasks.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\rsaenh.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-09-18 18:45:40 ----A---- C:\Windows\system32\drivers\fastfat.sys
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\VEDataLayerHelpers.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\duser.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\dmdskmgr.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\ngcpopkeysrv.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\netcenter.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\drivers\dumpsdport.sys
2016-09-18 18:45:39 ----A---- C:\Windows\system32\drivers\cng.sys
2016-09-18 18:45:39 ----A---- C:\Windows\system32\cryptsvc.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\SettingMonitor.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\sbe.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\Windows.Devices.Picker.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\ncryptsslp.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\drivers\ufx01000.sys
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\winipcsecproc_ssp.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\VEEventDispatcher.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\NetSetupApi.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\wwanmm.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\Windows.Cortana.Desktop.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\WebcamUi.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\NetworkUXBroker.exe
2016-09-18 18:45:37 ----A---- C:\Windows\system32\mfpmp.exe
2016-09-18 18:45:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-09-18 18:45:37 ----A---- C:\Windows\system32\dot3ui.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\rasgcw.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\BrowserSettingSync.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\spoolsv.exe
2016-09-18 18:45:36 ----A---- C:\Windows\system32\rasgcw.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\ntprint.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\cryptngc.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryClient.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryBroker.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\syncutil.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\SyncSettings.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\dlnashext.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\XboxNetApiSvc.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\netlogon.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\mscms.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\deviceassociation.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\CellularAPI.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\WsmAgent.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\PlayToReceiver.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\notepad.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\GamePanel.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\deviceassociation.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\bcastdvr.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\AppCapture.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\WUDFPlatform.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\Windows.Devices.AllJoyn.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\wificonnapi.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\SmsRouterSvc.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\RADCUI.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\OnDemandConnRouteHelper.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\offlinelsa.dll
2016-09-18 18:45:33 ----A---- C:\Windows\system32\sppsvc.exe
2016-09-18 18:45:32 ----A---- C:\Windows\system32\shell32.dll
2016-09-18 18:45:30 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2016-09-18 18:45:30 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2016-09-18 18:45:30 ----A---- C:\Windows\system32\mstscax.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\wininet.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\windows.storage.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\twinui.appcore.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\iertutil.dll
2016-09-18 18:45:28 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2016-09-18 18:45:28 ----A---- C:\Windows\system32\msxml6.dll
2016-09-18 18:45:28 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\mos.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\WsmSvc.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\drivers\tcpip.sys
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\mmc.exe
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\InputService.dll
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2016-09-18 18:45:26 ----A---- C:\Windows\system32\Windows.Media.Speech.dll
2016-09-18 18:45:26 ----A---- C:\Windows\system32\tdlrecover.exe
2016-09-18 18:45:26 ----A---- C:\Windows\system32\msxml3.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\TokenBroker.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\srmclient.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\WWAHost.exe
2016-09-18 18:45:25 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\tileobjserver.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\DeviceCensus.exe
2016-09-18 18:45:24 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2016-09-18 18:45:24 ----A---- C:\Windows\SYSWOW64\RemoteNaturalLanguage.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\webservices.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\urlmon.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\ole32.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\CredProvDataModel.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\ShareHost.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2016-09-18 18:45:23 ----A---- C:\Windows\system32\winresume.exe
2016-09-18 18:45:23 ----A---- C:\Windows\system32\UIRibbon.dll
2016-09-18 18:45:23 ----A---- C:\Windows\system32\rpcrt4.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\WLanConn.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\usocore.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\AppxPackaging.dll
2016-09-18 18:45:21 ----A---- C:\Windows\SYSWOW64\PhoneOm.dll
2016-09-18 18:45:21 ----A---- C:\Windows\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\Windows.Graphics.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2016-09-18 18:45:21 ----A---- C:\Windows\system32\dmenrollengine.dll
2016-09-18 18:45:20 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2016-09-18 18:45:20 ----A---- C:\Windows\SYSWOW64\MSAJApi.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\ws2_32.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\updatehandlers.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\ntshrui.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\enterprisecsps.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\drivers\nwifi.sys
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\propsys.dll
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\filemgmt.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\wscsvc.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\srmclient.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\nettrace.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\mdmmigrator.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\drivers\ufxsynopsys.sys
2016-09-18 18:45:19 ----A---- C:\Windows\system32\drivers\pci.sys
2016-09-18 18:45:19 ----A---- C:\Windows\system32\comuid.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Search.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\wevtutil.exe
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\mscms.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\wbemcomn.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\VEEventDispatcher.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\quartz.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\MusNotification.exe
2016-09-18 18:45:18 ----A---- C:\Windows\system32\mswsock.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\drivers\tpm.sys
2016-09-18 18:45:18 ----A---- C:\Windows\system32\drivers\hidclass.sys
2016-09-18 18:45:18 ----A---- C:\Windows\system32\dmcsps.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\dhcpcore.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\DeviceEnroller.exe
2016-09-18 18:45:17 ----A---- C:\Windows\SYSWOW64\newdev.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\WlanMM.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\WlanMediaManager.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\wlanapi.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\mstsc.exe
2016-09-18 18:45:17 ----A---- C:\Windows\system32\MiracastReceiver.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\MDMAppInstaller.exe
2016-09-18 18:45:17 ----A---- C:\Windows\system32\enrollmentapi.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\dhcpcore6.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\resutils.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\PeerDistSh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\wlansvc.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\VEDataLayerHelpers.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\sspicli.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\sbe.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\PeerDistSh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\omadmclient.exe
2016-09-18 18:45:16 ----A---- C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\WLanConn.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\MosHostClient.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\hmkd.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\winipcsecproc_ssp.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\wcnwiz.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\UIRibbonRes.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\srmscan.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\SensorDataService.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\MusNotificationUx.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\musdialoghandlers.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\lsass.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\hmkd.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\efswrt.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-09-18 18:45:15 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\wldp.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\Windows.Devices.LowLevel.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\MosStorage.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\mmcbase.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\gpscript.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\cryptngc.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\Clipc.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\cic.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\wlanui.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\Windows.Media.MediaControl.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\spcompat.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\drivers\ahcache.sys
2016-09-18 18:45:14 ----A---- C:\Windows\system32\azroles.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\AppxApplicabilityEngine.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SmartCards.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\wcnwiz.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\pla.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\mmcshext.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\WsmWmiPl.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\wdc.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\wcncsvc.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\dmdskmgr.dll
2016-09-18 18:45:12 ----A---- C:\Windows\SYSWOW64\MapsBtSvc.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\WsmAuto.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\WmpDui.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\Windows.Storage.Search.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\SettingsHandlers_Geolocation.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\DisplayManager.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\Windows.Cortana.ProxyStub.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\VoipRT.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\offlinelsa.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\oemlicense.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\licensingdiag.exe
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\fwcfg.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\AdmTmpl.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\workfolderssvc.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\WcnApi.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\WalletService.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\GamePanel.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\fdWCN.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\drivers\usbser.sys
2016-09-18 18:45:11 ----A---- C:\Windows\system32\drivers\MTConfig.sys
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dmcertinst.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dhcpcsvc.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\CPFilters.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\bthserv.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\bcastdvr.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\AdmTmpl.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\WlanMM.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\authfwcfg.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\wsmprovhost.exe
2016-09-18 18:45:10 ----A---- C:\Windows\system32\ieui.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\IconCodecService.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\dafWCN.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\comsvcs.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\AppCapture.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\NMAA.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\CheckNetIsolation.exe
2016-09-18 18:45:09 ----A---- C:\Windows\system32\WsmAgent.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\qdvd.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\odbcconf.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\mdmregistration.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\dialserver.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\cmintegrator.dll
2016-09-18 18:45:07 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-09-18 18:45:04 ----A---- C:\Windows\system32\mos.dll
2016-09-18 18:45:03 ----A---- C:\Windows\SYSWOW64\tquery.dll
2016-09-18 18:45:03 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2016-09-18 18:45:03 ----A---- C:\Windows\system32\d2d1.dll
2016-09-18 18:45:03 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-09-18 18:45:03 ----A---- C:\Windows\system32\appraiser.dll
2016-09-18 18:45:02 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2016-09-18 18:45:02 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-09-18 18:45:02 ----A---- C:\Windows\system32\BingMaps.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-09-18 18:45:00 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2016-09-18 18:45:00 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\msftedit.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\d3d11.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\d3d10warp.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\aeinv.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\acmigration.dll
2016-09-18 18:44:59 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2016-09-18 18:44:59 ----A---- C:\Windows\system32\win32kfull.sys
2016-09-18 18:44:58 ----A---- C:\Windows\system32\TokenBroker.dll
2016-09-18 18:44:58 ----A---- C:\Windows\system32\storagewmi.dll
2016-09-18 18:44:57 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\qmgr.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\generaltel.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\diagperf.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\devinv.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\d3d9.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.UI.Cred.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.AccountsControl.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2016-09-18 18:44:56 ----A---- C:\Windows\system32\VSSVC.exe
2016-09-18 18:44:56 ----A---- C:\Windows\system32\dxgi.dll
2016-09-18 18:44:56 ----A---- C:\Windows\system32\diagtrack.dll
2016-09-18 18:44:55 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2016-09-18 18:44:55 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\win32kbase.sys
2016-09-18 18:44:55 ----A---- C:\Windows\system32\wcmsvc.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\PhoneProviders.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\oleaut32.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\ntdll.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\msctf.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\LogonController.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\wmpmde.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\usercpl.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\PhoneService.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\MPSSVC.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\invagent.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\gdi32.dll
2016-09-18 18:44:53 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2016-09-18 18:44:53 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2016-09-18 18:44:53 ----A---- C:\Windows\system32\vssapi.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\NetSetupShim.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\NetSetupEngine.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\MapsStore.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\fontdrvhost.exe
2016-09-18 18:44:53 ----A---- C:\Windows\system32\AzureSettingSyncProvider.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\ActiveSyncProvider.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\aadtb.dll
2016-09-18 18:44:52 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2016-09-18 18:44:52 ----A---- C:\Windows\SYSWOW64\gameux.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\vpnike.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\termsrv.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\SyncController.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\RecoveryDrive.exe
2016-09-18 18:44:52 ----A---- C:\Windows\system32\PhoneOm.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\MessagingDataModel2.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\MapControlCore.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\IPSECSVC.DLL
2016-09-18 18:44:52 ----A---- C:\Windows\system32\eappcfg.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\atmfd.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\aepic.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\LockAppBroker.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\wlidsvc.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\wlidprov.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\winload.exe
2016-09-18 18:44:51 ----A---- C:\Windows\system32\provengine.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\directmanipulation.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\d3d10level9.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\clusapi.dll
Run by Marek at 2016-09-22 20:57:27
Microsoft Windows 10 Pro
System drive C: has 103 GB (67%) free of 152 GB
Total RAM: 3968 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:57:31, on 22.09.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0589)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\trend micro\Marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE03DHP
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: errorlog.txt
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - (no file)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5460 bytes
======Listing Processes======
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k appmodel
C:\Windows\system32\svchost.exe -k imgsvc
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\Explorer.EXE
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
Notepad.exe C:\Users\Marek\Desktop\Rkill.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0x174
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4436.0.540746344\952854642" --mojo-application-channel-token=144D44003DC6AE50D7EE9410461019DA --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-medium/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,14,18,31,48,56 --gpu-vendor-id=0x8086 --gpu-device-id=0x2e32 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2702 --gpu-driver-date=3-11-2013 --mojo-platform-channel-handle=1364 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=E7EB955AD257D7C76F572AEFAA55A609 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=4EF9FEA088D3B18D3CEF02F437BF7501 --mojo-application-channel-token=E7EB955AD257D7C76F572AEFAA55A609 --channel="4436.8.1566262988\2048105963" --mojo-platform-channel-handle=5408 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=125A200730FB91C8398CE2D14072AC1A --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=49E5BD7943F4D9FC347FB02976F0C629 --mojo-application-channel-token=125A200730FB91C8398CE2D14072AC1A --channel="4436.13.638437080\528902032" --mojo-platform-channel-handle=3832 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=BE685DBF125B5099F6447102AB644913 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=B264A3188CE21D39FCE6A9DFF455F50F --mojo-application-channel-token=BE685DBF125B5099F6447102AB644913 --channel="4436.15.553937981\1283609689" --mojo-platform-channel-handle=4312 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=9F07F57B6CD58C7D6AE968D86D4F1529 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=8D6B578ACE17D54D42B1C75A4E9B6FA5 --mojo-application-channel-token=9F07F57B6CD58C7D6AE968D86D4F1529 --channel="4436.19.1291281476\181810700" --mojo-platform-channel-handle=2576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_20/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=7F75B4104B3734A4D4F03F5EDE732BDA --lang=en-US --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=23B9FA6F967D037153C1CAD482075121 --mojo-application-channel-token=7F75B4104B3734A4D4F03F5EDE732BDA --channel="4436.21.1306136668\850817273" --mojo-platform-channel-handle=3760 /prefetch:1
"C:\Windows\System32\Taskmgr.exe" /2
"C:\Users\Marek\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-09-13 9107616]
"TrojanScanner"=C:\Program Files (x86)\Trojan Remover\Trjscan.exe [2016-02-19 3753016]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
errorlog.txt
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - "%1" %*
======List of files/folders created in the last 1 month======
2016-09-22 13:43:53 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-09-22 13:43:53 ----D---- C:\Program Files (x86)\CMAK
2016-09-22 13:43:52 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-09-22 13:43:52 ----D---- C:\Program Files\CMAK
2016-09-22 01:08:53 ----D---- C:\AdwCleaner
2016-09-22 00:39:47 ----D---- C:\ProgramData\HitmanPro
2016-09-21 17:58:43 ----D---- C:\Users\Marek\AppData\Roaming\Macromedia
2016-09-21 16:31:34 ----D---- C:\Users\Marek\AppData\Roaming\Lexicon PCM Native
2016-09-21 15:48:51 ----D---- C:\ProgramData\Licenses
2016-09-21 15:48:51 ----AD---- C:\ProgramData\TEMP
2016-09-21 15:46:42 ----D---- C:\Users\Marek\AppData\Roaming\Simply Super Software
2016-09-21 15:46:31 ----D---- C:\ProgramData\Simply Super Software
2016-09-21 15:46:31 ----D---- C:\Program Files (x86)\Trojan Remover
2016-09-21 12:21:33 ----D---- C:\Program Files\trend micro
2016-09-21 12:21:32 ----D---- C:\rsit
2016-09-20 16:10:57 ----AD---- C:\Kaspersky Rescue Disk 10.0
2016-09-20 13:30:50 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2016-09-20 13:30:38 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2016-09-20 13:30:34 ----D---- C:\Program Files\DAEMON Tools Lite
2016-09-20 13:30:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2016-09-20 01:23:27 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-09-18 20:25:31 ----D---- C:\Windows\system32\MRT
2016-09-18 20:25:00 ----AC---- C:\Windows\system32\MRT.exe
2016-09-18 18:46:35 ----A---- C:\Windows\system32\mshtml.dll
2016-09-18 18:46:30 ----A---- C:\Windows\system32\edgehtml.dll
2016-09-18 18:46:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-09-18 18:46:26 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2016-09-18 18:46:24 ----A---- C:\Windows\system32\ieframe.dll
2016-09-18 18:46:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-09-18 18:46:23 ----A---- C:\Windows\system32\Chakra.dll
2016-09-18 18:46:21 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2016-09-18 18:46:21 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2016-09-18 18:46:20 ----A---- C:\Windows\system32\jscript9.dll
2016-09-18 18:46:19 ----A---- C:\Windows\system32\rdpcorets.dll
2016-09-18 18:46:18 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-09-18 18:46:18 ----A---- C:\Windows\system32\tquery.dll
2016-09-18 18:46:18 ----A---- C:\Windows\system32\mfcore.dll
2016-09-18 18:46:17 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\wuaueng.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\Windows.Media.dll
2016-09-18 18:46:17 ----A---- C:\Windows\system32\MFMediaEngine.dll
2016-09-18 18:46:16 ----A---- C:\Windows\system32\Wpc.dll
2016-09-18 18:46:15 ----A---- C:\Windows\system32\CoreUIComponents.dll
2016-09-18 18:46:15 ----A---- C:\Windows\system32\CertEnroll.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2016-09-18 18:46:14 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2016-09-18 18:46:14 ----A---- C:\Windows\system32\mssrch.dll
2016-09-18 18:46:14 ----A---- C:\Windows\system32\mmcndmgr.dll
2016-09-18 18:46:13 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-09-18 18:46:13 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2016-09-18 18:46:12 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\schedsvc.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\OpcServices.dll
2016-09-18 18:46:12 ----A---- C:\Windows\system32\dwmcore.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\Windows.AccountsControl.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\wevtsvc.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\combase.dll
2016-09-18 18:46:11 ----A---- C:\Windows\system32\authui.dll
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\winmde.dll
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2016-09-18 18:46:10 ----A---- C:\Windows\SYSWOW64\mf.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\twinapi.appcore.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\mfsvr.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\mfnetsrc.dll
2016-09-18 18:46:10 ----A---- C:\Windows\system32\AppContracts.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-09-18 18:46:09 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\vbscript.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\SHCore.dll
2016-09-18 18:46:09 ----A---- C:\Windows\system32\mfplat.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\winipcsecproc.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2016-09-18 18:46:08 ----A---- C:\Windows\SYSWOW64\Pimstore.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\wmdrmdev.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\uDWM.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\twinapi.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\gpprefcl.dll
2016-09-18 18:46:08 ----A---- C:\Windows\system32\AppReadiness.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\xpsservices.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\WpcWebSync.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\WpcWebFilter.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\SearchIndexer.exe
2016-09-18 18:46:07 ----A---- C:\Windows\system32\MrmCoreR.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\modernexecserver.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\jscript.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\ieproxy.dll
2016-09-18 18:46:07 ----A---- C:\Windows\system32\ActivationManager.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\wsp_health.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\wiaaut.dll
2016-09-18 18:46:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\XpsPrint.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\wuuhext.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\WpcMon.exe
2016-09-18 18:46:06 ----A---- C:\Windows\system32\PrintDialogs3D.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\msfeeds.dll
2016-09-18 18:46:06 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\hnetcfg.dll
2016-09-18 18:46:05 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\wpdshext.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\IKEEXT.DLL
2016-09-18 18:46:05 ----A---- C:\Windows\system32\dcomp.dll
2016-09-18 18:46:05 ----A---- C:\Windows\system32\cscui.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\winmsipc.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\netshell.dll
2016-09-18 18:46:04 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\Windows.Globalization.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\StorSvc.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\shacct.dll
2016-09-18 18:46:04 ----A---- C:\Windows\system32\msdtctm.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2016-09-18 18:46:03 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\wmdrmsdk.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\winhttp.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\Windows.Media.Editing.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\rpcss.dll
2016-09-18 18:46:03 ----A---- C:\Windows\system32\drivers\sdport.sys
2016-09-18 18:46:02 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2016-09-18 18:46:02 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2016-09-18 18:46:02 ----A---- C:\Windows\system32\XpsDocumentTargetPrint.dll
2016-09-18 18:46:02 ----A---- C:\Windows\system32\taskeng.exe
2016-09-18 18:46:02 ----A---- C:\Windows\system32\drivers\sdbus.sys
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\WpcWebFilter.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-09-18 18:46:01 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\wuapi.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\wiaservc.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\tetheringservice.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\SharedStartModelShim.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2016-09-18 18:46:01 ----A---- C:\Windows\system32\propsys.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\nshwfp.dll
2016-09-18 18:46:01 ----A---- C:\Windows\system32\mssphtb.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\wsp_fs.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\Windows.Web.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\SimCfg.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\rastls.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\msctfuimanager.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\msctf.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-09-18 18:46:00 ----A---- C:\Windows\SYSWOW64\ContactApis.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\wpdbusenum.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\Windows.Media.Audio.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\wevtutil.exe
2016-09-18 18:46:00 ----A---- C:\Windows\system32\webio.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\msctfuimanager.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\ExecModelClient.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\dxtrans.dll
2016-09-18 18:46:00 ----A---- C:\Windows\system32\cdpsvc.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\UserDataTimeUtil.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\upnphost.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-09-18 18:45:59 ----A---- C:\Windows\SYSWOW64\AppointmentApis.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\shsetup.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\SensorService.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:45:59 ----A---- C:\Windows\system32\mfps.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\WinTypes.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\Windows.Devices.PointOfService.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\PrintDialogs.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\edputil.dll
2016-09-18 18:45:58 ----A---- C:\Windows\system32\comdlg32.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\XpsDocumentTargetPrint.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\tdh.dll
2016-09-18 18:45:57 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\SensorsNativeApi.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\mssprxy.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\gpscript.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\GlobCollationHost.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\facecredentialprovider.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\evr.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\dwminit.dll
2016-09-18 18:45:57 ----A---- C:\Windows\system32\ClipUp.exe
2016-09-18 18:45:57 ----A---- C:\Windows\system32\apprepsync.dll
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Picker.dll
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2016-09-18 18:45:56 ----A---- C:\Windows\SYSWOW64\efswrt.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\wups.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\wuauclt.exe
2016-09-18 18:45:56 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\webcheck.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\tzautoupdate.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\rdpudd.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\phoneactivate.exe
2016-09-18 18:45:56 ----A---- C:\Windows\system32\mfnetcore.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\ieapfltr.dll
2016-09-18 18:45:56 ----A---- C:\Windows\system32\drivers\pdc.sys
2016-09-18 18:45:56 ----A---- C:\Windows\system32\apprepapi.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\winipcfile.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\SimAuth.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\MiracastReceiver.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eappprxy.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2016-09-18 18:45:55 ----A---- C:\Windows\SYSWOW64\BluetoothApis.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\taskcomp.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\sti.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\LegacyNetUXHost.exe
2016-09-18 18:45:55 ----A---- C:\Windows\system32\LegacyNetUX.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\easwrt.dll
2016-09-18 18:45:55 ----A---- C:\Windows\system32\azroleui.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\WmpDui.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-09-18 18:45:54 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\mssph.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\mshtmled.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\MrmIndexer.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\Chakradiag.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\DictationManager.dll
2016-09-18 18:45:54 ----A---- C:\Windows\system32\ByteCodeGenerator.exe
2016-09-18 18:45:54 ----A---- C:\Windows\system32\bdechangepin.exe
2016-09-18 18:45:54 ----A---- C:\Windows\system32\authfwcfg.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\udhisapi.dll
2016-09-18 18:45:53 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\wiarpc.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\wiaaut.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\SearchFilterHost.exe
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msscntrs.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msi.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\msdt.exe
2016-09-18 18:45:53 ----A---- C:\Windows\system32\iedkcs32.dll
2016-09-18 18:45:53 ----A---- C:\Windows\system32\DiagCpl.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.ps.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\upnpcont.exe
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\sti.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2016-09-18 18:45:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\werui.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\SmartCardSimulator.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\prnntfy.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\pngfilt.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\MDEServer.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\ie4uinit.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\CheckNetIsolation.exe
2016-09-18 18:45:52 ----A---- C:\Windows\system32\fwcfg.dll
2016-09-18 18:45:52 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2016-09-18 18:45:52 ----A---- C:\Windows\system32\cdpreference.exe
2016-09-18 18:45:50 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-09-18 18:45:50 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-09-18 18:45:49 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2016-09-18 18:45:49 ----A---- C:\Windows\system32\LicenseManager.dll
2016-09-18 18:45:49 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\LocationFramework.dll
2016-09-18 18:45:48 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2016-09-18 18:45:48 ----A---- C:\Windows\system32\InputService.dll
2016-09-18 18:45:48 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2016-09-18 18:45:47 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2016-09-18 18:45:47 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\wwansvc.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\wifinetworkmanager.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\SpeechPal.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\mf.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\localspl.dll
2016-09-18 18:45:47 ----A---- C:\Windows\system32\CoreMessaging.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\mispace.dll
2016-09-18 18:45:46 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\Windows.UI.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\werconcpl.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\StructuredQuery.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\PlayToManager.dll
2016-09-18 18:45:46 ----A---- C:\Windows\system32\crypt32.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\StoreAgent.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\CredProvDataModel.dll
2016-09-18 18:45:45 ----A---- C:\Windows\SYSWOW64\ActiveSyncProvider.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\wpncore.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\StoreAgent.dll
2016-09-18 18:45:45 ----A---- C:\Windows\system32\ngcsvc.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\webservices.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2016-09-18 18:45:44 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\wifitask.exe
2016-09-18 18:45:44 ----A---- C:\Windows\system32\samsrv.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\MSAJApi.dll
2016-09-18 18:45:44 ----A---- C:\Windows\system32\drivers\srv.sys
2016-09-18 18:45:43 ----A---- C:\Windows\SYSWOW64\wdc.dll
2016-09-18 18:45:43 ----A---- C:\Windows\SYSWOW64\MessagingDataModel2.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\wwanconn.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\wpnapps.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\PlayToDevice.dll
2016-09-18 18:45:43 ----A---- C:\Windows\system32\lsasrv.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\tdlrecover.exe
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\SyncController.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\NetSetupEngine.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\Geolocation.dll
2016-09-18 18:45:42 ----A---- C:\Windows\SYSWOW64\AppxAllUserStore.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\wininit.exe
2016-09-18 18:45:42 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\SensorsApi.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\rdpcore.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\NgcCtnr.dll
2016-09-18 18:45:42 ----A---- C:\Windows\system32\das.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\webio.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\dui70.dll
2016-09-18 18:45:41 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\WWanAPI.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\wmicmiplugin.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\Windows.Networking.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\win32spl.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\TSWorkspace.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\SubscriptionMgr.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\SearchFolder.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\NgcCtnrSvc.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\ngccredprov.dll
2016-09-18 18:45:41 ----A---- C:\Windows\system32\InstallAgent.exe
2016-09-18 18:45:41 ----A---- C:\Windows\system32\AppxAllUserStore.dll
2016-09-18 18:45:40 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2016-09-18 18:45:40 ----A---- C:\Windows\SYSWOW64\InstallAgent.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\Windows.Web.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\schtasks.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\rsaenh.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2016-09-18 18:45:40 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2016-09-18 18:45:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-09-18 18:45:40 ----A---- C:\Windows\system32\drivers\fastfat.sys
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\VEDataLayerHelpers.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\duser.dll
2016-09-18 18:45:39 ----A---- C:\Windows\SYSWOW64\dmdskmgr.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\ngcpopkeysrv.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\netcenter.dll
2016-09-18 18:45:39 ----A---- C:\Windows\system32\drivers\dumpsdport.sys
2016-09-18 18:45:39 ----A---- C:\Windows\system32\drivers\cng.sys
2016-09-18 18:45:39 ----A---- C:\Windows\system32\cryptsvc.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\SettingMonitor.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\sbe.dll
2016-09-18 18:45:38 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\Windows.Devices.Picker.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\ncryptsslp.dll
2016-09-18 18:45:38 ----A---- C:\Windows\system32\drivers\ufx01000.sys
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\winipcsecproc_ssp.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\VEEventDispatcher.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\NetSetupApi.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2016-09-18 18:45:37 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\wwanmm.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\Windows.Cortana.Desktop.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\WebcamUi.dll
2016-09-18 18:45:37 ----A---- C:\Windows\system32\NetworkUXBroker.exe
2016-09-18 18:45:37 ----A---- C:\Windows\system32\mfpmp.exe
2016-09-18 18:45:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-09-18 18:45:37 ----A---- C:\Windows\system32\dot3ui.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\rasgcw.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2016-09-18 18:45:36 ----A---- C:\Windows\SYSWOW64\BrowserSettingSync.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\spoolsv.exe
2016-09-18 18:45:36 ----A---- C:\Windows\system32\rasgcw.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\ntprint.dll
2016-09-18 18:45:36 ----A---- C:\Windows\system32\cryptngc.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryClient.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryBroker.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\syncutil.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\SyncSettings.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2016-09-18 18:45:35 ----A---- C:\Windows\SYSWOW64\dlnashext.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\XboxNetApiSvc.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\netlogon.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\mscms.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\deviceassociation.dll
2016-09-18 18:45:35 ----A---- C:\Windows\system32\CellularAPI.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\WsmAgent.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\PlayToReceiver.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\notepad.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\GamePanel.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\deviceassociation.dll
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\bcastdvr.exe
2016-09-18 18:45:34 ----A---- C:\Windows\SYSWOW64\AppCapture.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\WUDFPlatform.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\Windows.Devices.AllJoyn.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\wificonnapi.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\SmsRouterSvc.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\RADCUI.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\OnDemandConnRouteHelper.dll
2016-09-18 18:45:34 ----A---- C:\Windows\system32\offlinelsa.dll
2016-09-18 18:45:33 ----A---- C:\Windows\system32\sppsvc.exe
2016-09-18 18:45:32 ----A---- C:\Windows\system32\shell32.dll
2016-09-18 18:45:30 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2016-09-18 18:45:30 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2016-09-18 18:45:30 ----A---- C:\Windows\system32\mstscax.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\wininet.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\windows.storage.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\twinui.appcore.dll
2016-09-18 18:45:29 ----A---- C:\Windows\system32\iertutil.dll
2016-09-18 18:45:28 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2016-09-18 18:45:28 ----A---- C:\Windows\system32\msxml6.dll
2016-09-18 18:45:28 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\mos.dll
2016-09-18 18:45:27 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\WsmSvc.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2016-09-18 18:45:27 ----A---- C:\Windows\system32\drivers\tcpip.sys
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\mmc.exe
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\InputService.dll
2016-09-18 18:45:26 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2016-09-18 18:45:26 ----A---- C:\Windows\system32\Windows.Media.Speech.dll
2016-09-18 18:45:26 ----A---- C:\Windows\system32\tdlrecover.exe
2016-09-18 18:45:26 ----A---- C:\Windows\system32\msxml3.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\TokenBroker.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\srmclient.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2016-09-18 18:45:25 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\WWAHost.exe
2016-09-18 18:45:25 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\tileobjserver.dll
2016-09-18 18:45:25 ----A---- C:\Windows\system32\DeviceCensus.exe
2016-09-18 18:45:24 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2016-09-18 18:45:24 ----A---- C:\Windows\SYSWOW64\RemoteNaturalLanguage.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\webservices.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\urlmon.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\ole32.dll
2016-09-18 18:45:24 ----A---- C:\Windows\system32\CredProvDataModel.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\ShareHost.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll
2016-09-18 18:45:23 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2016-09-18 18:45:23 ----A---- C:\Windows\system32\winresume.exe
2016-09-18 18:45:23 ----A---- C:\Windows\system32\UIRibbon.dll
2016-09-18 18:45:23 ----A---- C:\Windows\system32\rpcrt4.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2016-09-18 18:45:22 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\WLanConn.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\usocore.dll
2016-09-18 18:45:22 ----A---- C:\Windows\system32\AppxPackaging.dll
2016-09-18 18:45:21 ----A---- C:\Windows\SYSWOW64\PhoneOm.dll
2016-09-18 18:45:21 ----A---- C:\Windows\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\Windows.Graphics.dll
2016-09-18 18:45:21 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2016-09-18 18:45:21 ----A---- C:\Windows\system32\dmenrollengine.dll
2016-09-18 18:45:20 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2016-09-18 18:45:20 ----A---- C:\Windows\SYSWOW64\MSAJApi.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\ws2_32.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\updatehandlers.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\ntshrui.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\enterprisecsps.dll
2016-09-18 18:45:20 ----A---- C:\Windows\system32\drivers\nwifi.sys
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\propsys.dll
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2016-09-18 18:45:19 ----A---- C:\Windows\SYSWOW64\filemgmt.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\wscsvc.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\srmclient.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\nettrace.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\mdmmigrator.dll
2016-09-18 18:45:19 ----A---- C:\Windows\system32\drivers\ufxsynopsys.sys
2016-09-18 18:45:19 ----A---- C:\Windows\system32\drivers\pci.sys
2016-09-18 18:45:19 ----A---- C:\Windows\system32\comuid.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Search.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\wevtutil.exe
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\mscms.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2016-09-18 18:45:18 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\wbemcomn.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\VEEventDispatcher.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\quartz.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\MusNotification.exe
2016-09-18 18:45:18 ----A---- C:\Windows\system32\mswsock.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\drivers\tpm.sys
2016-09-18 18:45:18 ----A---- C:\Windows\system32\drivers\hidclass.sys
2016-09-18 18:45:18 ----A---- C:\Windows\system32\dmcsps.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\dhcpcore.dll
2016-09-18 18:45:18 ----A---- C:\Windows\system32\DeviceEnroller.exe
2016-09-18 18:45:17 ----A---- C:\Windows\SYSWOW64\newdev.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\WlanMM.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\WlanMediaManager.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\wlanapi.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\mstsc.exe
2016-09-18 18:45:17 ----A---- C:\Windows\system32\MiracastReceiver.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\MDMAppInstaller.exe
2016-09-18 18:45:17 ----A---- C:\Windows\system32\enrollmentapi.dll
2016-09-18 18:45:17 ----A---- C:\Windows\system32\dhcpcore6.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\resutils.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\PeerDistSh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2016-09-18 18:45:16 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\wlansvc.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\VEDataLayerHelpers.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\sspicli.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\sbe.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\PeerDistSh.dll
2016-09-18 18:45:16 ----A---- C:\Windows\system32\omadmclient.exe
2016-09-18 18:45:16 ----A---- C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\WLanConn.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\MosHostClient.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\hmkd.dll
2016-09-18 18:45:15 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\winipcsecproc_ssp.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\wcnwiz.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\UIRibbonRes.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\srmscan.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\SensorDataService.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\MusNotificationUx.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\musdialoghandlers.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\lsass.exe
2016-09-18 18:45:15 ----A---- C:\Windows\system32\hmkd.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\efswrt.dll
2016-09-18 18:45:15 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-09-18 18:45:15 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\wldp.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\Windows.Devices.LowLevel.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\MosStorage.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\mmcbase.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\gpscript.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\cryptngc.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\Clipc.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\cic.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-09-18 18:45:14 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\wlanui.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\Windows.Media.MediaControl.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\spcompat.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\drivers\ahcache.sys
2016-09-18 18:45:14 ----A---- C:\Windows\system32\azroles.dll
2016-09-18 18:45:14 ----A---- C:\Windows\system32\AppxApplicabilityEngine.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SmartCards.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\wcnwiz.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\pla.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\mmcshext.dll
2016-09-18 18:45:13 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\WsmWmiPl.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\wdc.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\wcncsvc.dll
2016-09-18 18:45:13 ----A---- C:\Windows\system32\dmdskmgr.dll
2016-09-18 18:45:12 ----A---- C:\Windows\SYSWOW64\MapsBtSvc.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\WsmAuto.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\WmpDui.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\Windows.Storage.Search.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\SettingsHandlers_Geolocation.dll
2016-09-18 18:45:12 ----A---- C:\Windows\system32\DisplayManager.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\Windows.Cortana.ProxyStub.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\VoipRT.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\offlinelsa.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\oemlicense.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\licensingdiag.exe
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\fwcfg.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-09-18 18:45:11 ----A---- C:\Windows\SYSWOW64\AdmTmpl.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\workfolderssvc.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\WcnApi.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\WalletService.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\GamePanel.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\fdWCN.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\drivers\usbser.sys
2016-09-18 18:45:11 ----A---- C:\Windows\system32\drivers\MTConfig.sys
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dmcertinst.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\dhcpcsvc.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\CPFilters.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\bthserv.dll
2016-09-18 18:45:11 ----A---- C:\Windows\system32\bcastdvr.exe
2016-09-18 18:45:11 ----A---- C:\Windows\system32\AdmTmpl.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\WlanMM.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2016-09-18 18:45:10 ----A---- C:\Windows\SYSWOW64\authfwcfg.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\wsmprovhost.exe
2016-09-18 18:45:10 ----A---- C:\Windows\system32\ieui.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\IconCodecService.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\dafWCN.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\comsvcs.dll
2016-09-18 18:45:10 ----A---- C:\Windows\system32\AppCapture.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\NMAA.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-09-18 18:45:09 ----A---- C:\Windows\SYSWOW64\CheckNetIsolation.exe
2016-09-18 18:45:09 ----A---- C:\Windows\system32\WsmAgent.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\qdvd.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\odbcconf.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\mdmregistration.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\dialserver.dll
2016-09-18 18:45:09 ----A---- C:\Windows\system32\cmintegrator.dll
2016-09-18 18:45:07 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-09-18 18:45:04 ----A---- C:\Windows\system32\mos.dll
2016-09-18 18:45:03 ----A---- C:\Windows\SYSWOW64\tquery.dll
2016-09-18 18:45:03 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2016-09-18 18:45:03 ----A---- C:\Windows\system32\d2d1.dll
2016-09-18 18:45:03 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-09-18 18:45:03 ----A---- C:\Windows\system32\appraiser.dll
2016-09-18 18:45:02 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2016-09-18 18:45:02 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-09-18 18:45:02 ----A---- C:\Windows\system32\BingMaps.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2016-09-18 18:45:01 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-09-18 18:45:00 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2016-09-18 18:45:00 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\msftedit.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\d3d11.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\d3d10warp.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\aeinv.dll
2016-09-18 18:45:00 ----A---- C:\Windows\system32\acmigration.dll
2016-09-18 18:44:59 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2016-09-18 18:44:59 ----A---- C:\Windows\system32\win32kfull.sys
2016-09-18 18:44:58 ----A---- C:\Windows\system32\TokenBroker.dll
2016-09-18 18:44:58 ----A---- C:\Windows\system32\storagewmi.dll
2016-09-18 18:44:57 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\qmgr.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\generaltel.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\diagperf.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\devinv.dll
2016-09-18 18:44:57 ----A---- C:\Windows\system32\d3d9.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.UI.Cred.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\Windows.AccountsControl.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2016-09-18 18:44:56 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2016-09-18 18:44:56 ----A---- C:\Windows\system32\VSSVC.exe
2016-09-18 18:44:56 ----A---- C:\Windows\system32\dxgi.dll
2016-09-18 18:44:56 ----A---- C:\Windows\system32\diagtrack.dll
2016-09-18 18:44:55 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2016-09-18 18:44:55 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\win32kbase.sys
2016-09-18 18:44:55 ----A---- C:\Windows\system32\wcmsvc.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\PhoneProviders.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\oleaut32.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\ntdll.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2016-09-18 18:44:55 ----A---- C:\Windows\system32\msctf.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2016-09-18 18:44:54 ----A---- C:\Windows\SYSWOW64\LogonController.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\wmpmde.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\usercpl.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\PhoneService.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\MPSSVC.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\invagent.dll
2016-09-18 18:44:54 ----A---- C:\Windows\system32\gdi32.dll
2016-09-18 18:44:53 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2016-09-18 18:44:53 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2016-09-18 18:44:53 ----A---- C:\Windows\system32\vssapi.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\NetSetupShim.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\NetSetupEngine.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\MapsStore.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\fontdrvhost.exe
2016-09-18 18:44:53 ----A---- C:\Windows\system32\AzureSettingSyncProvider.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\ActiveSyncProvider.dll
2016-09-18 18:44:53 ----A---- C:\Windows\system32\aadtb.dll
2016-09-18 18:44:52 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2016-09-18 18:44:52 ----A---- C:\Windows\SYSWOW64\gameux.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\vpnike.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\termsrv.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\SyncController.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\RecoveryDrive.exe
2016-09-18 18:44:52 ----A---- C:\Windows\system32\PhoneOm.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\MessagingDataModel2.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\MapControlCore.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\IPSECSVC.DLL
2016-09-18 18:44:52 ----A---- C:\Windows\system32\eappcfg.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\atmfd.dll
2016-09-18 18:44:52 ----A---- C:\Windows\system32\aepic.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\LockAppBroker.dll
2016-09-18 18:44:51 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\wlidsvc.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\wlidprov.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\winload.exe
2016-09-18 18:44:51 ----A---- C:\Windows\system32\provengine.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\directmanipulation.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\d3d10level9.dll
2016-09-18 18:44:51 ----A---- C:\Windows\system32\clusapi.dll
Re: Neodstranitelný multiexplorer virus
2016-09-18 18:44:51 ----A---- C:\Windows\system32\BCP47Langs.dll
2016-09-18 18:44:50 ----A---- C:\Windows\SYSWOW64\directmanipulation.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\xpsrchvw.exe
2016-09-18 18:44:50 ----A---- C:\Windows\system32\WMPDMC.exe
2016-09-18 18:44:50 ----A---- C:\Windows\system32\user32.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\hnetcfg.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\dui70.dll
2016-09-18 18:44:49 ----A---- C:\Windows\SYSWOW64\LockAppHost.exe
2016-09-18 18:44:49 ----A---- C:\Windows\system32\setupapi.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\provhandlers.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\msv1_0.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\MapConfiguration.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\internetmail.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\dlnashext.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\APHostService.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\wsp_fs.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\Taskmgr.exe
2016-09-18 18:44:48 ----A---- C:\Windows\system32\schannel.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\NMAA.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\MBMediaManager.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2016-09-18 18:44:48 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\D3D12.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\BrokerLib.dll
2016-09-18 18:44:47 ----A---- C:\Windows\SYSWOW64\shacct.dll
2016-09-18 18:44:47 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\wsp_health.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\wcmcsp.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\swprv.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\provops.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\mprddm.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\kerberos.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\drivers\fvevol.sys
2016-09-18 18:44:47 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\polstore.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\AzureSettingSyncProvider.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\vds.exe
2016-09-18 18:44:46 ----A---- C:\Windows\system32\systemreset.exe
2016-09-18 18:44:46 ----A---- C:\Windows\system32\netshell.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\NetSetupSvc.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\mispace.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\JpMapControl.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\defragsvc.dll
2016-09-18 18:44:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\resutils.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\rastls.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\pnidui.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\GdiPlus.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\apphelp.dll
2016-09-18 18:44:44 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2016-09-18 18:44:44 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\themeui.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\reseteng.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\polstore.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\comuid.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\certca.dll
2016-09-18 18:44:43 ----A---- C:\Windows\system32\WMPhoto.dll
2016-09-18 18:44:43 ----A---- C:\Windows\system32\moshostcore.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\XpsFilt.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\SimCfg.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\Windows.Media.Editing.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\sud.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\credprovs.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\Windows.Cortana.OneCore.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\wbengine.exe
2016-09-18 18:44:41 ----A---- C:\Windows\system32\kernel32.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\icsvc.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\fhcfg.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\drivers\partmgr.sys
2016-09-18 18:44:41 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-09-18 18:44:41 ----A---- C:\Windows\system32\DMRServer.dll
2016-09-18 18:44:40 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\upnphost.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\tdh.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\SimAuth.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\newdev.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\netman.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\MosHostClient.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\drivers\filecrypt.sys
2016-09-18 18:44:40 ----A---- C:\Windows\system32\d3d10.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\mssph.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\TpmTasks.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\StikyNot.exe
2016-09-18 18:44:39 ----A---- C:\Windows\system32\pcasvc.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\NetworkBindingEngineMigPlugin.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\netplwiz.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\moshost.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\drivers\Ndu.sys
2016-09-18 18:44:39 ----A---- C:\Windows\system32\csrsrv.dll
2016-09-18 18:44:38 ----A---- C:\Windows\SYSWOW64\updatepolicy.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\wusa.exe
2016-09-18 18:44:38 ----A---- C:\Windows\system32\Windows.Cortana.ProxyStub.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\sdengin2.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\NetSetupApi.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\netcfgx.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\MosStorage.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\MapsBtSvc.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\fhsettingsprovider.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\duser.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\drvstore.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\drivers\storport.sys
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.BioFeedback.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\evr.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Display.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\wldp.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\wimserv.exe
2016-09-18 18:44:37 ----A---- C:\Windows\system32\provisioningcsp.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\MicrosoftAccountCloudAP.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\FntCache.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\fdProxy.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\eapphost.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\BluetoothApis.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Midi.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\usbceip.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\themeui.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\IdCtrls.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\udhisapi.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\sdrsvc.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\eapp3hst.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\cdd.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\browserbroker.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\XpsFilt.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\winsrv.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\VoipRT.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\upnpcont.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\PlayToReceiver.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\mcbuilder.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\fhengine.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\eappgnui.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\autochk.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\adtschema.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\srpapi.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\vdsutil.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\UIAutomationCore.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\sdshext.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\scapi.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\pla.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\eappprxy.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\d3d10_1.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\aitstatic.exe
2016-09-18 18:44:34 ----A---- C:\Windows\system32\aadcloudap.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\Windows.Media.Audio.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\edputil.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\wshbth.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\vsstrace.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\vss_ps.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\syncutil.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\msobjs.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\ipsecsnp.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\eapsvc.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\diagtrack_win.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\configurationclient.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\IconCodecService.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\azroles.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\AppLockerCSP.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\XblAuthManager.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\rasapi32.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\NFCProvisioningPlugin.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\MicrosoftAccountExtension.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\mapsupdatetask.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\MapsCSP.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\fontsub.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\fhsvc.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\BootMenuUX.dll
2016-09-18 18:44:31 ----A---- C:\Windows\SYSWOW64\mspaint.exe
2016-09-18 18:44:31 ----A---- C:\Windows\system32\atmlib.dll
2016-09-18 18:44:28 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2016-09-18 18:44:27 ----A---- C:\Windows\system32\wmp.dll
2016-09-18 18:44:25 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-09-18 18:44:25 ----A---- C:\Windows\system32\twinui.dll
2016-09-18 18:44:24 ----A---- C:\Windows\system32\WSService.dll
2016-09-18 18:44:24 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2016-09-18 18:44:23 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-09-18 18:44:22 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2016-09-18 18:44:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-09-18 18:44:21 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2016-09-18 18:44:21 ----A---- C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\sppobjs.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\drivers\ClipSp.sys
2016-09-18 18:44:20 ----A---- C:\Windows\explorer.exe
2016-09-18 18:44:19 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2016-09-18 18:44:19 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2016-09-18 18:44:18 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2016-09-18 18:44:17 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2016-09-18 18:44:15 ----A---- C:\Windows\SYSWOW64\WindowsCodecsRaw.dll
2016-09-18 18:44:14 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-09-18 18:44:14 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2016-09-18 18:44:14 ----A---- C:\Windows\system32\LocationFramework.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\winmde.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\PeerDistSvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\gpsvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\dosvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\audiosrv.dll
2016-09-18 18:44:12 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\Windows.UI.Cred.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\SettingSyncCore.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\mmc.exe
2016-09-18 18:44:11 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-09-18 18:44:11 ----A---- C:\Windows\system32\SRHInproc.dll
2016-09-18 18:44:11 ----A---- C:\Windows\system32\iphlpsvc.dll
2016-09-18 18:44:10 ----A---- C:\Windows\SYSWOW64\SRHInproc.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\SharedStartModel.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\Pimstore.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\KernelBase.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\winipcsecproc.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\actxprxy.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\SRH.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\AppContracts.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\WSShared.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\winlogon.exe
2016-09-18 18:44:07 ----A---- C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\UserDataService.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\SRH.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\RemoteNaturalLanguage.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\LogonController.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\DWrite.dll
2016-09-18 18:44:06 ----A---- C:\Windows\system32\WindowsCodecsRaw.dll
2016-09-18 18:44:06 ----A---- C:\Windows\system32\bisrv.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\combase.dll
2016-09-18 18:44:04 ----A---- C:\Windows\system32\gameux.dll
2016-09-18 18:44:03 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\winmsipc.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\ShareHost.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\SettingSync.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\LockAppHost.exe
2016-09-18 18:44:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-09-18 18:44:03 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2016-09-18 18:44:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\dbgeng.dll
2016-09-18 18:44:01 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2016-09-18 18:44:01 ----A---- C:\Windows\system32\sppwinob.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\PsmServiceExtHost.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\NotificationController.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\LockAppBroker.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\drivers\netbt.sys
2016-09-18 18:44:01 ----A---- C:\Windows\system32\ClipSVC.dll
2016-09-18 18:44:00 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2016-09-18 18:44:00 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\themecpl.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\SyncCenter.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\RDXService.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\Geolocation.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\ApplicationFrame.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\w32time.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\SettingsHandlers_Maps.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\RDXTaskFactory.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\hgcpl.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\hevcdecoder.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\certca.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\DisplayManager.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\D3D12.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\SystemSettings.Handlers.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-09-18 18:43:58 ----A---- C:\Windows\system32\ContactApis.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\certcli.dll
2016-09-18 18:43:57 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmpps.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmploc.DLL
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmpeffects.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\ListSvc.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\inetpp.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\hal.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-09-18 18:43:56 ----A---- C:\Windows\SYSWOW64\ExecModelClient.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\WSSync.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\winipcfile.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SettingsHandlers_Privacy.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SettingMonitor.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SecureTimeAggregator.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\OneBackupHandler.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\GnssAdapter.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\EditionUpgradeManagerObj.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\BrowserSettingSync.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\bcryptprimitives.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\AppointmentApis.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\WSSync.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\updatepolicy.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\shutdownux.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SettingSyncHost.exe
2016-09-18 18:43:55 ----A---- C:\Windows\system32\pmcsnap.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\mbsmsapi.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\drivers\UcmCx.sys
2016-09-18 18:43:55 ----A---- C:\Windows\system32\DevicePairing.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\credprovs.dll
2016-09-18 18:43:54 ----A---- C:\Windows\SYSWOW64\SensorsNativeApi.dll
2016-09-18 18:43:54 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.UI.BioFeedback.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.Devices.LowLevel.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\UserDataTimeUtil.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\sppcext.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\NetworkDesktopSettings.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\gpapi.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\filemgmt.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-09-18 18:43:54 ----A---- C:\Windows\system32\domgmt.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\cryptui.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\prnntfy.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\zipfldr.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\WSClient.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Windows.Media.Streaming.ps.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Windows.Devices.Midi.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\sud.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mprdim.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mmcshext.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mmcbase.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\EmailApis.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\drivers\rdbss.sys
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Display.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Clipc.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\AudioEng.dll
2016-09-18 18:43:53 ----A---- C:\Windows\HelpPane.exe
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\Windows.Speech.Pal.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\ProximityCommon.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\PeerDist.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\licensingdiag.exe
2016-09-18 18:43:52 ----A---- C:\Windows\system32\ChatApis.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\gpedit.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\DbgModel.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\PeerDist.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\DbgModel.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\ByteCodeGenerator.exe
2016-09-18 18:43:51 ----A---- C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\usermgr.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\SyncSettings.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2016-09-18 18:43:51 ----A---- C:\Windows\system32\msieftp.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\IdCtrls.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\cic.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\WUDFx.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\Windows.Speech.Pal.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\oemlicense.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\httpprxp.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\deviceaccess.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\dbghelp.dll
2016-09-18 18:43:49 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\sppinst.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\PeerDistCleaner.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\mspaint.exe
2016-09-18 18:43:49 ----A---- C:\Windows\system32\mqsnap.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\ImplatSetup.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\httpprxm.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\FingerprintEnrollment.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\adhsvc.dll
2016-09-18 18:43:48 ----A---- C:\Windows\SYSWOW64\DictationManager.dll
2016-09-18 18:43:48 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2016-09-18 18:42:55 ----A---- C:\Windows\system32\mqcertui.dll
2016-09-18 14:44:27 ----RASHOT---- C:\Windows\winstart.bat
2016-09-15 01:54:40 ----AD---- C:\Program Files\RogueKiller
2016-09-14 23:39:47 ----D---- C:\ProgramData\IObit
2016-09-14 23:39:46 ----D---- C:\Program Files (x86)\IObit
2016-09-14 20:34:27 ----D---- C:\Program Files (x86)\GUMA363.tmp
2016-09-14 03:01:50 ----D---- C:\Windows\ERDNT
2016-09-13 23:33:20 ----D---- C:\Program Files (x86)\FileASSASSIN
2016-09-13 22:55:07 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-09-13 22:33:46 ----D---- C:\Users\Marek\AppData\Roaming\AVAST Software
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswStm.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswsp.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2016-09-13 22:32:58 ----A---- C:\Windows\system32\aswBoot.exe
2016-09-13 22:32:44 ----A---- C:\Windows\avastSS.scr
2016-09-13 22:21:39 ----D---- C:\Program Files\AVAST Software
2016-09-13 22:21:01 ----D---- C:\ProgramData\AVAST Software
2016-09-13 21:12:35 ----D---- C:\Users\Marek\AppData\Roaming\Boredom Software
2016-09-13 20:12:24 ----D---- C:\Rem-VBSqt
2016-09-12 23:03:57 ----D---- C:\Program Files (x86)\SourceTec
2016-09-12 16:02:58 ----AD---- C:\AvgArlBackup
2016-09-08 12:54:23 ----D---- C:\Users\Marek\AppData\Roaming\Glitch2
2016-09-07 16:32:51 ----D---- C:\ProgramData\AudioUTOPiA
2016-09-07 16:32:51 ----D---- C:\Program Files\Lexicon(64-bit)
2016-08-31 22:25:53 ----D---- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2016-08-29 23:13:11 ----D---- C:\Users\Marek\AppData\Roaming\Sonic Academy
2016-08-29 23:11:31 ----D---- C:\ProgramData\Sonic Academy
2016-08-29 23:10:16 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2016-08-29 23:10:16 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2016-08-29 22:48:48 ----D---- C:\Program Files (x86)\VstPlugins
======List of files/folders modified in the last 1 month======
2016-09-22 20:46:25 ----D---- C:\Windows\prefetch
2016-09-22 20:45:00 ----D---- C:\Windows\system32\sru
2016-09-22 20:20:03 ----D---- C:\Windows\Temp
2016-09-22 19:56:01 ----SHD---- C:\System Volume Information
2016-09-22 19:47:56 ----D---- C:\Windows\system32\config
2016-09-22 19:46:46 ----RD---- C:\Program Files (x86)
2016-09-22 19:45:56 ----D---- C:\Windows\CbsTemp
2016-09-22 19:44:11 ----D---- C:\Windows\system32\drivers
2016-09-22 19:39:38 ----D---- C:\ProgramData
2016-09-22 19:21:07 ----D---- C:\Windows\System32
2016-09-22 13:43:53 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-22 13:43:52 ----RD---- C:\Program Files
2016-09-22 12:41:16 ----D---- C:\Windows\Minidump
2016-09-22 12:40:49 ----D---- C:\Windows
2016-09-22 04:18:27 ----D---- C:\Windows\Tasks
2016-09-21 22:40:14 ----D---- C:\Windows\system32\NDF
2016-09-21 22:26:27 ----D---- C:\Windows\system32\Tasks
2016-09-21 21:49:11 ----D---- C:\Windows\rescache
2016-09-21 20:03:02 ----SHD---- C:\Windows\Installer
2016-09-21 20:03:02 ----SHD---- C:\Config.Msi
2016-09-21 20:03:02 ----D---- C:\ProgramData\Microsoft Help
2016-09-21 19:22:14 ----D---- C:\Windows\pss
2016-09-21 18:58:09 ----D---- C:\ProgramData\Adobe
2016-09-21 18:57:34 ----D---- C:\Windows\syswow64
2016-09-21 18:56:48 ----D---- C:\Program Files\Common Files
2016-09-21 17:59:02 ----D---- C:\Program Files (x86)\Common Files
2016-09-21 03:47:24 ----D---- C:\Windows\system32\WinBioDatabase
2016-09-20 23:07:08 ----D---- C:\Windows\SYSWOW64\config
2016-09-20 13:57:20 ----D---- C:\Windows\INF
2016-09-20 13:57:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-09-20 13:31:15 ----D---- C:\Windows\AppReadiness
2016-09-20 13:30:50 ----D---- C:\Windows\system32\DriverStore
2016-09-20 01:26:52 ----D---- C:\Windows\system32\drivers\etc
2016-09-20 00:25:16 ----HD---- C:\Program Files\WindowsApps
2016-09-19 20:44:07 ----D---- C:\Windows\WinSxS
2016-09-19 20:41:55 ----D---- C:\Windows\Microsoft.NET
2016-09-19 20:41:39 ----D---- C:\Windows\system32\catroot2
2016-09-19 20:38:33 ----RSD---- C:\Windows\assembly
2016-09-19 19:56:48 ----D---- C:\Windows\SYSWOW64\drivers
2016-09-19 18:58:47 ----D---- C:\Users\Marek\AppData\Roaming\Adobe
2016-09-19 18:50:17 ----SD---- C:\Windows\SYSWOW64\F12
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\wbem
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\migration
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\Dism
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2016-09-19 18:50:09 ----D---- C:\Windows\system32\WinBioPlugIns
2016-09-19 18:50:09 ----D---- C:\Windows\system32\wbem
2016-09-19 18:50:09 ----D---- C:\Windows\system32\SystemResetPlatform
2016-09-19 18:50:07 ----D---- C:\Windows\system32\setup
2016-09-19 18:50:07 ----D---- C:\Windows\system32\oobe
2016-09-19 18:50:07 ----D---- C:\Windows\system32\migwiz
2016-09-19 18:50:07 ----D---- C:\Windows\system32\migration
2016-09-19 18:50:06 ----SD---- C:\Windows\system32\F12
2016-09-19 18:50:06 ----SD---- C:\Windows\system32\DiagSvcs
2016-09-19 18:50:06 ----D---- C:\Windows\system32\en-US
2016-09-19 18:50:06 ----D---- C:\Windows\system32\drivers\UMDF
2016-09-19 18:50:06 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-09-19 18:50:06 ----D---- C:\Windows\system32\Dism
2016-09-19 18:50:06 ----D---- C:\Windows\system32\cs-CZ
2016-09-19 18:50:06 ----D---- C:\Windows\system32\Boot
2016-09-19 18:50:06 ----D---- C:\Windows\system32\appraiser
2016-09-19 18:50:02 ----D---- C:\Windows\system32\AdvancedInstallers
2016-09-19 18:49:51 ----RD---- C:\Windows\PurchaseDialog
2016-09-19 18:49:51 ----RD---- C:\Windows\PrintDialog
2016-09-19 18:49:51 ----D---- C:\Windows\Provisioning
2016-09-19 18:49:51 ----D---- C:\Windows\PolicyDefinitions
2016-09-19 18:49:50 ----RSD---- C:\Windows\Media
2016-09-19 18:49:50 ----RSD---- C:\Windows\Fonts
2016-09-19 18:49:50 ----RD---- C:\Windows\ImmersiveControlPanel
2016-09-19 18:49:50 ----RD---- C:\Windows\DevicesFlow
2016-09-19 18:49:50 ----D---- C:\Windows\bcastdvr
2016-09-19 18:49:50 ----D---- C:\Windows\AppPatch
2016-09-19 18:49:50 ----D---- C:\Program Files (x86)\Windows Portable Devices
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Portable Devices
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Photo Viewer
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Multimedia Platform
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Media Player
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Mail
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Defender
2016-09-19 18:49:49 ----D---- C:\Program Files\Internet Explorer
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Defender
2016-09-18 20:30:03 ----D---- C:\Windows\ShellNew
2016-09-18 20:25:31 ----D---- C:\Windows\debug
2016-09-18 18:18:59 ----A---- C:\Windows\SYSWOW64\mqsnap.dll
2016-09-18 18:18:59 ----A---- C:\Windows\SYSWOW64\mqcertui.dll
2016-09-15 12:04:02 ----SD---- C:\Users\Marek\AppData\Roaming\Microsoft
2016-09-15 00:15:05 ----D---- C:\Games
2016-09-14 20:50:23 ----D---- C:\Program Files (x86)\Google
2016-09-14 20:40:00 ----D---- C:\Program Files (x86)\Image-Line
2016-09-14 20:39:59 ----D---- C:\Program Files\Image-Line
2016-09-10 18:10:04 ----D---- C:\Windows\SYSWOW64\Macromed
2016-09-10 16:49:50 ----D---- C:\Windows\system32\WDI
2016-09-10 01:01:44 ----SD---- C:\Windows\Downloaded Program Files
2016-09-09 23:29:00 ----A---- C:\Windows\win.ini
2016-09-09 22:39:26 ----SH---- C:\Program Files (x86)\desktop.ini
2016-09-09 22:39:26 ----RD---- C:\Users
2016-09-07 08:04:35 ----A---- C:\Windows\SYSWOW64\PrintConfig.dll
2016-09-01 00:07:48 ----D---- C:\Windows\system32\CatRoot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-09-13 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-09-13 292704]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-09-13 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-09-13 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-09-13 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-09-22 513632]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-09-13 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-09-13 163416]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2015-11-24 147968]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 dtlitescsibus;@oem6.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\System32\drivers\dtlitescsibus.sys [2016-09-20 30264]
R3 dtliteusbbus;@oem7.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\Windows\System32\drivers\dtliteusbbus.sys [2016-09-20 47672]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-03-23 10627744]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\System32\drivers\k57nd60a.sys [2015-10-30 446464]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2015-10-30 34144]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-09-13 37656]
S3 b57nd60a;@oem4.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys [2014-04-07 465176]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\Windows\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2015-11-22 117248]
S3 fcvsc;fcvsc; C:\Windows\System32\drivers\fcvsc.sys [2015-10-30 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\Windows\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-09-22 192216]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 TrueSight;TrueSight; \??\C:\Windows\System32\drivers\TrueSight.sys [2016-09-21 28272]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\Windows\System32\Drivers\UcmCx.sys [2016-04-23 63488]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\Windows\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\Windows\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\Windows\system32\drivers\ufx01000.sys [2016-05-28 258912]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\Windows\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\Windows\System32\drivers\ufxsynopsys.sys [2016-09-07 131424]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2014-03-04 36944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-13 197128]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 OneSyncSvc_1abc6;Hostitel synchronizace_1abc6; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_17d98;Hostitel synchronizace_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1c160;Hostitel synchronizace_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1dca2;Hostitel synchronizace_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1e4a4;Hostitel synchronizace_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1fcfb;Hostitel synchronizace_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_21d42;Hostitel synchronizace_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_23a86;Hostitel synchronizace_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_250cd;Hostitel synchronizace_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3df44;Hostitel synchronizace_3df44; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_bd4e;Hostitel synchronizace_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-08-29 1467072]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14 153752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_17d98;Služba zasílání zpráv_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1abc6;Služba zasílání zpráv_1abc6; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1c160;Služba zasílání zpráv_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1dca2;Služba zasílání zpráv_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1e4a4;Služba zasílání zpráv_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1fcfb;Služba zasílání zpráv_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_21d42;Služba zasílání zpráv_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_23a86;Služba zasílání zpráv_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_250cd;Služba zasílání zpráv_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3df44;Služba zasílání zpráv_3df44; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_bd4e;Služba zasílání zpráv_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_17d98;Data kontaktů_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1abc6;Data kontaktů_1abc6; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1c160;Data kontaktů_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1dca2;Data kontaktů_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1e4a4;Data kontaktů_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1fcfb;Data kontaktů_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_21d42;Data kontaktů_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_23a86;Data kontaktů_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_250cd;Data kontaktů_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3df44;Data kontaktů_3df44; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_bd4e;Data kontaktů_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2016-09-07 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\Windows\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\Windows\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
2016-09-18 18:44:50 ----A---- C:\Windows\SYSWOW64\directmanipulation.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\xpsrchvw.exe
2016-09-18 18:44:50 ----A---- C:\Windows\system32\WMPDMC.exe
2016-09-18 18:44:50 ----A---- C:\Windows\system32\user32.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\hnetcfg.dll
2016-09-18 18:44:50 ----A---- C:\Windows\system32\dui70.dll
2016-09-18 18:44:49 ----A---- C:\Windows\SYSWOW64\LockAppHost.exe
2016-09-18 18:44:49 ----A---- C:\Windows\system32\setupapi.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\provhandlers.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\msv1_0.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\MapConfiguration.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\internetmail.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\dlnashext.dll
2016-09-18 18:44:49 ----A---- C:\Windows\system32\APHostService.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\wsp_fs.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\Taskmgr.exe
2016-09-18 18:44:48 ----A---- C:\Windows\system32\schannel.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\NMAA.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\MBMediaManager.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2016-09-18 18:44:48 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\D3D12.dll
2016-09-18 18:44:48 ----A---- C:\Windows\system32\BrokerLib.dll
2016-09-18 18:44:47 ----A---- C:\Windows\SYSWOW64\shacct.dll
2016-09-18 18:44:47 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\wsp_health.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\wcmcsp.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\swprv.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\provops.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\mprddm.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\kerberos.dll
2016-09-18 18:44:47 ----A---- C:\Windows\system32\drivers\fvevol.sys
2016-09-18 18:44:47 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\polstore.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2016-09-18 18:44:46 ----A---- C:\Windows\SYSWOW64\AzureSettingSyncProvider.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\vds.exe
2016-09-18 18:44:46 ----A---- C:\Windows\system32\systemreset.exe
2016-09-18 18:44:46 ----A---- C:\Windows\system32\netshell.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\NetSetupSvc.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\mispace.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\JpMapControl.dll
2016-09-18 18:44:46 ----A---- C:\Windows\system32\defragsvc.dll
2016-09-18 18:44:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\resutils.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\rastls.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\pnidui.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\GdiPlus.dll
2016-09-18 18:44:45 ----A---- C:\Windows\system32\apphelp.dll
2016-09-18 18:44:44 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2016-09-18 18:44:44 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\themeui.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\reseteng.dll
2016-09-18 18:44:44 ----A---- C:\Windows\system32\polstore.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\comuid.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2016-09-18 18:44:43 ----A---- C:\Windows\SYSWOW64\certca.dll
2016-09-18 18:44:43 ----A---- C:\Windows\system32\WMPhoto.dll
2016-09-18 18:44:43 ----A---- C:\Windows\system32\moshostcore.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\XpsFilt.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\SimCfg.dll
2016-09-18 18:44:42 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\Windows.Media.Editing.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\sud.dll
2016-09-18 18:44:41 ----A---- C:\Windows\SYSWOW64\credprovs.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\Windows.Cortana.OneCore.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\wbengine.exe
2016-09-18 18:44:41 ----A---- C:\Windows\system32\kernel32.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\icsvc.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\fhcfg.dll
2016-09-18 18:44:41 ----A---- C:\Windows\system32\drivers\partmgr.sys
2016-09-18 18:44:41 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-09-18 18:44:41 ----A---- C:\Windows\system32\DMRServer.dll
2016-09-18 18:44:40 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\upnphost.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\tdh.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\SimAuth.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\newdev.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\netman.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\MosHostClient.dll
2016-09-18 18:44:40 ----A---- C:\Windows\system32\drivers\filecrypt.sys
2016-09-18 18:44:40 ----A---- C:\Windows\system32\d3d10.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2016-09-18 18:44:39 ----A---- C:\Windows\SYSWOW64\mssph.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\TpmTasks.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\StikyNot.exe
2016-09-18 18:44:39 ----A---- C:\Windows\system32\pcasvc.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\NetworkBindingEngineMigPlugin.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\netplwiz.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\moshost.dll
2016-09-18 18:44:39 ----A---- C:\Windows\system32\drivers\Ndu.sys
2016-09-18 18:44:39 ----A---- C:\Windows\system32\csrsrv.dll
2016-09-18 18:44:38 ----A---- C:\Windows\SYSWOW64\updatepolicy.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\wusa.exe
2016-09-18 18:44:38 ----A---- C:\Windows\system32\Windows.Cortana.ProxyStub.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\sdengin2.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\NetSetupApi.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\netcfgx.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\MosStorage.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\MapsBtSvc.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\fhsettingsprovider.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\duser.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\drvstore.dll
2016-09-18 18:44:38 ----A---- C:\Windows\system32\drivers\storport.sys
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.BioFeedback.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\evr.dll
2016-09-18 18:44:37 ----A---- C:\Windows\SYSWOW64\Display.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\wldp.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\wimserv.exe
2016-09-18 18:44:37 ----A---- C:\Windows\system32\provisioningcsp.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\MicrosoftAccountCloudAP.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\FntCache.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\fdProxy.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\eapphost.dll
2016-09-18 18:44:37 ----A---- C:\Windows\system32\BluetoothApis.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Midi.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\usbceip.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\themeui.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\IdCtrls.dll
2016-09-18 18:44:36 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\udhisapi.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\sdrsvc.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\eapp3hst.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\cdd.dll
2016-09-18 18:44:36 ----A---- C:\Windows\system32\browserbroker.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\XpsFilt.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2016-09-18 18:44:35 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\winsrv.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\VoipRT.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\upnpcont.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\PlayToReceiver.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\mcbuilder.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\fhengine.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\eappgnui.dll
2016-09-18 18:44:35 ----A---- C:\Windows\system32\autochk.exe
2016-09-18 18:44:35 ----A---- C:\Windows\system32\adtschema.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\srpapi.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2016-09-18 18:44:34 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\vdsutil.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\UIAutomationCore.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\sdshext.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\scapi.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\pla.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\eappprxy.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\d3d10_1.dll
2016-09-18 18:44:34 ----A---- C:\Windows\system32\aitstatic.exe
2016-09-18 18:44:34 ----A---- C:\Windows\system32\aadcloudap.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\Windows.Media.Audio.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\edputil.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2016-09-18 18:44:33 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\wshbth.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\vsstrace.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\vss_ps.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\syncutil.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\msobjs.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\ipsecsnp.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\eapsvc.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\diagtrack_win.dll
2016-09-18 18:44:33 ----A---- C:\Windows\system32\configurationclient.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\IconCodecService.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\azroles.dll
2016-09-18 18:44:32 ----A---- C:\Windows\SYSWOW64\AppLockerCSP.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\XblAuthManager.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\rasapi32.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\NFCProvisioningPlugin.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\MicrosoftAccountExtension.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\mapsupdatetask.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\MapsCSP.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\fontsub.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\fhsvc.dll
2016-09-18 18:44:32 ----A---- C:\Windows\system32\BootMenuUX.dll
2016-09-18 18:44:31 ----A---- C:\Windows\SYSWOW64\mspaint.exe
2016-09-18 18:44:31 ----A---- C:\Windows\system32\atmlib.dll
2016-09-18 18:44:28 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2016-09-18 18:44:27 ----A---- C:\Windows\system32\wmp.dll
2016-09-18 18:44:25 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-09-18 18:44:25 ----A---- C:\Windows\system32\twinui.dll
2016-09-18 18:44:24 ----A---- C:\Windows\system32\WSService.dll
2016-09-18 18:44:24 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2016-09-18 18:44:23 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-09-18 18:44:22 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2016-09-18 18:44:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-09-18 18:44:21 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2016-09-18 18:44:21 ----A---- C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\sppobjs.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2016-09-18 18:44:20 ----A---- C:\Windows\system32\drivers\ClipSp.sys
2016-09-18 18:44:20 ----A---- C:\Windows\explorer.exe
2016-09-18 18:44:19 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2016-09-18 18:44:19 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2016-09-18 18:44:18 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2016-09-18 18:44:17 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2016-09-18 18:44:15 ----A---- C:\Windows\SYSWOW64\WindowsCodecsRaw.dll
2016-09-18 18:44:14 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-09-18 18:44:14 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2016-09-18 18:44:14 ----A---- C:\Windows\system32\LocationFramework.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\winmde.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\PeerDistSvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\gpsvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\dosvc.dll
2016-09-18 18:44:13 ----A---- C:\Windows\system32\audiosrv.dll
2016-09-18 18:44:12 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\Windows.UI.Cred.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\SettingSyncCore.dll
2016-09-18 18:44:12 ----A---- C:\Windows\system32\mmc.exe
2016-09-18 18:44:11 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-09-18 18:44:11 ----A---- C:\Windows\system32\SRHInproc.dll
2016-09-18 18:44:11 ----A---- C:\Windows\system32\iphlpsvc.dll
2016-09-18 18:44:10 ----A---- C:\Windows\SYSWOW64\SRHInproc.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\SharedStartModel.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\Pimstore.dll
2016-09-18 18:44:10 ----A---- C:\Windows\system32\KernelBase.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\winipcsecproc.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2016-09-18 18:44:09 ----A---- C:\Windows\system32\actxprxy.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\SRH.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2016-09-18 18:44:07 ----A---- C:\Windows\SYSWOW64\AppContracts.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\WSShared.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\winlogon.exe
2016-09-18 18:44:07 ----A---- C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\UserDataService.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\SRH.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\RemoteNaturalLanguage.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\LogonController.dll
2016-09-18 18:44:07 ----A---- C:\Windows\system32\DWrite.dll
2016-09-18 18:44:06 ----A---- C:\Windows\system32\WindowsCodecsRaw.dll
2016-09-18 18:44:06 ----A---- C:\Windows\system32\bisrv.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44:04 ----A---- C:\Windows\SYSWOW64\combase.dll
2016-09-18 18:44:04 ----A---- C:\Windows\system32\gameux.dll
2016-09-18 18:44:03 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\winmsipc.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\ShareHost.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\SettingSync.dll
2016-09-18 18:44:03 ----A---- C:\Windows\system32\LockAppHost.exe
2016-09-18 18:44:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-09-18 18:44:03 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2016-09-18 18:44:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44:02 ----A---- C:\Windows\system32\dbgeng.dll
2016-09-18 18:44:01 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2016-09-18 18:44:01 ----A---- C:\Windows\system32\sppwinob.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\PsmServiceExtHost.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\NotificationController.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\LockAppBroker.dll
2016-09-18 18:44:01 ----A---- C:\Windows\system32\drivers\netbt.sys
2016-09-18 18:44:01 ----A---- C:\Windows\system32\ClipSVC.dll
2016-09-18 18:44:00 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2016-09-18 18:44:00 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\themecpl.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\SyncCenter.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\RDXService.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\Geolocation.dll
2016-09-18 18:44:00 ----A---- C:\Windows\system32\ApplicationFrame.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2016-09-18 18:43:59 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\w32time.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\SettingsHandlers_Maps.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\RDXTaskFactory.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\hgcpl.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\hevcdecoder.dll
2016-09-18 18:43:59 ----A---- C:\Windows\system32\certca.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\DisplayManager.dll
2016-09-18 18:43:58 ----A---- C:\Windows\SYSWOW64\D3D12.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\SystemSettings.Handlers.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-09-18 18:43:58 ----A---- C:\Windows\system32\ContactApis.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2016-09-18 18:43:58 ----A---- C:\Windows\system32\certcli.dll
2016-09-18 18:43:57 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmpps.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmploc.DLL
2016-09-18 18:43:57 ----A---- C:\Windows\system32\wmpeffects.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\ListSvc.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\inetpp.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\hal.dll
2016-09-18 18:43:57 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-09-18 18:43:56 ----A---- C:\Windows\SYSWOW64\ExecModelClient.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\WSSync.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\winipcfile.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SettingsHandlers_Privacy.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SettingMonitor.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\SecureTimeAggregator.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\OneBackupHandler.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\GnssAdapter.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\EditionUpgradeManagerObj.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\BrowserSettingSync.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\bcryptprimitives.dll
2016-09-18 18:43:56 ----A---- C:\Windows\system32\AppointmentApis.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\WSSync.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2016-09-18 18:43:55 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\updatepolicy.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\shutdownux.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\SettingSyncHost.exe
2016-09-18 18:43:55 ----A---- C:\Windows\system32\pmcsnap.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\mbsmsapi.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\drivers\UcmCx.sys
2016-09-18 18:43:55 ----A---- C:\Windows\system32\DevicePairing.dll
2016-09-18 18:43:55 ----A---- C:\Windows\system32\credprovs.dll
2016-09-18 18:43:54 ----A---- C:\Windows\SYSWOW64\SensorsNativeApi.dll
2016-09-18 18:43:54 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.UI.BioFeedback.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\Windows.Devices.LowLevel.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\UserDataTimeUtil.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\sppcext.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\NetworkDesktopSettings.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\gpapi.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\filemgmt.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-09-18 18:43:54 ----A---- C:\Windows\system32\domgmt.dll
2016-09-18 18:43:54 ----A---- C:\Windows\system32\cryptui.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\prnntfy.dll
2016-09-18 18:43:53 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\zipfldr.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\WSClient.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Windows.Media.Streaming.ps.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Windows.Devices.Midi.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\sud.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mprdim.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mmcshext.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\mmcbase.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\EmailApis.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\drivers\rdbss.sys
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Display.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\Clipc.dll
2016-09-18 18:43:53 ----A---- C:\Windows\system32\AudioEng.dll
2016-09-18 18:43:53 ----A---- C:\Windows\HelpPane.exe
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\Windows.Speech.Pal.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2016-09-18 18:43:52 ----A---- C:\Windows\SYSWOW64\ProximityCommon.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\PeerDist.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\licensingdiag.exe
2016-09-18 18:43:52 ----A---- C:\Windows\system32\ChatApis.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\gpedit.dll
2016-09-18 18:43:52 ----A---- C:\Windows\system32\DbgModel.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\PeerDist.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\DbgModel.dll
2016-09-18 18:43:51 ----A---- C:\Windows\SYSWOW64\ByteCodeGenerator.exe
2016-09-18 18:43:51 ----A---- C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\usermgr.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\SyncSettings.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2016-09-18 18:43:51 ----A---- C:\Windows\system32\msieftp.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\IdCtrls.dll
2016-09-18 18:43:51 ----A---- C:\Windows\system32\cic.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\WUDFx.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\Windows.Speech.Pal.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\oemlicense.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\httpprxp.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\deviceaccess.dll
2016-09-18 18:43:50 ----A---- C:\Windows\system32\dbghelp.dll
2016-09-18 18:43:49 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\sppinst.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\PeerDistCleaner.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\mspaint.exe
2016-09-18 18:43:49 ----A---- C:\Windows\system32\mqsnap.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\ImplatSetup.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\httpprxm.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\FingerprintEnrollment.dll
2016-09-18 18:43:49 ----A---- C:\Windows\system32\adhsvc.dll
2016-09-18 18:43:48 ----A---- C:\Windows\SYSWOW64\DictationManager.dll
2016-09-18 18:43:48 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2016-09-18 18:42:55 ----A---- C:\Windows\system32\mqcertui.dll
2016-09-18 14:44:27 ----RASHOT---- C:\Windows\winstart.bat
2016-09-15 01:54:40 ----AD---- C:\Program Files\RogueKiller
2016-09-14 23:39:47 ----D---- C:\ProgramData\IObit
2016-09-14 23:39:46 ----D---- C:\Program Files (x86)\IObit
2016-09-14 20:34:27 ----D---- C:\Program Files (x86)\GUMA363.tmp
2016-09-14 03:01:50 ----D---- C:\Windows\ERDNT
2016-09-13 23:33:20 ----D---- C:\Program Files (x86)\FileASSASSIN
2016-09-13 22:55:07 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-09-13 22:33:46 ----D---- C:\Users\Marek\AppData\Roaming\AVAST Software
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswStm.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswsp.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2016-09-13 22:33:07 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2016-09-13 22:32:58 ----A---- C:\Windows\system32\aswBoot.exe
2016-09-13 22:32:44 ----A---- C:\Windows\avastSS.scr
2016-09-13 22:21:39 ----D---- C:\Program Files\AVAST Software
2016-09-13 22:21:01 ----D---- C:\ProgramData\AVAST Software
2016-09-13 21:12:35 ----D---- C:\Users\Marek\AppData\Roaming\Boredom Software
2016-09-13 20:12:24 ----D---- C:\Rem-VBSqt
2016-09-12 23:03:57 ----D---- C:\Program Files (x86)\SourceTec
2016-09-12 16:02:58 ----AD---- C:\AvgArlBackup
2016-09-08 12:54:23 ----D---- C:\Users\Marek\AppData\Roaming\Glitch2
2016-09-07 16:32:51 ----D---- C:\ProgramData\AudioUTOPiA
2016-09-07 16:32:51 ----D---- C:\Program Files\Lexicon(64-bit)
2016-08-31 22:25:53 ----D---- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2016-08-29 23:13:11 ----D---- C:\Users\Marek\AppData\Roaming\Sonic Academy
2016-08-29 23:11:31 ----D---- C:\ProgramData\Sonic Academy
2016-08-29 23:10:16 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2016-08-29 23:10:16 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2016-08-29 22:48:48 ----D---- C:\Program Files (x86)\VstPlugins
======List of files/folders modified in the last 1 month======
2016-09-22 20:46:25 ----D---- C:\Windows\prefetch
2016-09-22 20:45:00 ----D---- C:\Windows\system32\sru
2016-09-22 20:20:03 ----D---- C:\Windows\Temp
2016-09-22 19:56:01 ----SHD---- C:\System Volume Information
2016-09-22 19:47:56 ----D---- C:\Windows\system32\config
2016-09-22 19:46:46 ----RD---- C:\Program Files (x86)
2016-09-22 19:45:56 ----D---- C:\Windows\CbsTemp
2016-09-22 19:44:11 ----D---- C:\Windows\system32\drivers
2016-09-22 19:39:38 ----D---- C:\ProgramData
2016-09-22 19:21:07 ----D---- C:\Windows\System32
2016-09-22 13:43:53 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-22 13:43:52 ----RD---- C:\Program Files
2016-09-22 12:41:16 ----D---- C:\Windows\Minidump
2016-09-22 12:40:49 ----D---- C:\Windows
2016-09-22 04:18:27 ----D---- C:\Windows\Tasks
2016-09-21 22:40:14 ----D---- C:\Windows\system32\NDF
2016-09-21 22:26:27 ----D---- C:\Windows\system32\Tasks
2016-09-21 21:49:11 ----D---- C:\Windows\rescache
2016-09-21 20:03:02 ----SHD---- C:\Windows\Installer
2016-09-21 20:03:02 ----SHD---- C:\Config.Msi
2016-09-21 20:03:02 ----D---- C:\ProgramData\Microsoft Help
2016-09-21 19:22:14 ----D---- C:\Windows\pss
2016-09-21 18:58:09 ----D---- C:\ProgramData\Adobe
2016-09-21 18:57:34 ----D---- C:\Windows\syswow64
2016-09-21 18:56:48 ----D---- C:\Program Files\Common Files
2016-09-21 17:59:02 ----D---- C:\Program Files (x86)\Common Files
2016-09-21 03:47:24 ----D---- C:\Windows\system32\WinBioDatabase
2016-09-20 23:07:08 ----D---- C:\Windows\SYSWOW64\config
2016-09-20 13:57:20 ----D---- C:\Windows\INF
2016-09-20 13:57:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-09-20 13:31:15 ----D---- C:\Windows\AppReadiness
2016-09-20 13:30:50 ----D---- C:\Windows\system32\DriverStore
2016-09-20 01:26:52 ----D---- C:\Windows\system32\drivers\etc
2016-09-20 00:25:16 ----HD---- C:\Program Files\WindowsApps
2016-09-19 20:44:07 ----D---- C:\Windows\WinSxS
2016-09-19 20:41:55 ----D---- C:\Windows\Microsoft.NET
2016-09-19 20:41:39 ----D---- C:\Windows\system32\catroot2
2016-09-19 20:38:33 ----RSD---- C:\Windows\assembly
2016-09-19 19:56:48 ----D---- C:\Windows\SYSWOW64\drivers
2016-09-19 18:58:47 ----D---- C:\Users\Marek\AppData\Roaming\Adobe
2016-09-19 18:50:17 ----SD---- C:\Windows\SYSWOW64\F12
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\wbem
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\migration
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\Dism
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-09-19 18:50:17 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2016-09-19 18:50:09 ----D---- C:\Windows\system32\WinBioPlugIns
2016-09-19 18:50:09 ----D---- C:\Windows\system32\wbem
2016-09-19 18:50:09 ----D---- C:\Windows\system32\SystemResetPlatform
2016-09-19 18:50:07 ----D---- C:\Windows\system32\setup
2016-09-19 18:50:07 ----D---- C:\Windows\system32\oobe
2016-09-19 18:50:07 ----D---- C:\Windows\system32\migwiz
2016-09-19 18:50:07 ----D---- C:\Windows\system32\migration
2016-09-19 18:50:06 ----SD---- C:\Windows\system32\F12
2016-09-19 18:50:06 ----SD---- C:\Windows\system32\DiagSvcs
2016-09-19 18:50:06 ----D---- C:\Windows\system32\en-US
2016-09-19 18:50:06 ----D---- C:\Windows\system32\drivers\UMDF
2016-09-19 18:50:06 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-09-19 18:50:06 ----D---- C:\Windows\system32\Dism
2016-09-19 18:50:06 ----D---- C:\Windows\system32\cs-CZ
2016-09-19 18:50:06 ----D---- C:\Windows\system32\Boot
2016-09-19 18:50:06 ----D---- C:\Windows\system32\appraiser
2016-09-19 18:50:02 ----D---- C:\Windows\system32\AdvancedInstallers
2016-09-19 18:49:51 ----RD---- C:\Windows\PurchaseDialog
2016-09-19 18:49:51 ----RD---- C:\Windows\PrintDialog
2016-09-19 18:49:51 ----D---- C:\Windows\Provisioning
2016-09-19 18:49:51 ----D---- C:\Windows\PolicyDefinitions
2016-09-19 18:49:50 ----RSD---- C:\Windows\Media
2016-09-19 18:49:50 ----RSD---- C:\Windows\Fonts
2016-09-19 18:49:50 ----RD---- C:\Windows\ImmersiveControlPanel
2016-09-19 18:49:50 ----RD---- C:\Windows\DevicesFlow
2016-09-19 18:49:50 ----D---- C:\Windows\bcastdvr
2016-09-19 18:49:50 ----D---- C:\Windows\AppPatch
2016-09-19 18:49:50 ----D---- C:\Program Files (x86)\Windows Portable Devices
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Portable Devices
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Photo Viewer
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Multimedia Platform
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Media Player
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Mail
2016-09-19 18:49:49 ----D---- C:\Program Files\Windows Defender
2016-09-19 18:49:49 ----D---- C:\Program Files\Internet Explorer
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-19 18:49:49 ----D---- C:\Program Files (x86)\Windows Defender
2016-09-18 20:30:03 ----D---- C:\Windows\ShellNew
2016-09-18 20:25:31 ----D---- C:\Windows\debug
2016-09-18 18:18:59 ----A---- C:\Windows\SYSWOW64\mqsnap.dll
2016-09-18 18:18:59 ----A---- C:\Windows\SYSWOW64\mqcertui.dll
2016-09-15 12:04:02 ----SD---- C:\Users\Marek\AppData\Roaming\Microsoft
2016-09-15 00:15:05 ----D---- C:\Games
2016-09-14 20:50:23 ----D---- C:\Program Files (x86)\Google
2016-09-14 20:40:00 ----D---- C:\Program Files (x86)\Image-Line
2016-09-14 20:39:59 ----D---- C:\Program Files\Image-Line
2016-09-10 18:10:04 ----D---- C:\Windows\SYSWOW64\Macromed
2016-09-10 16:49:50 ----D---- C:\Windows\system32\WDI
2016-09-10 01:01:44 ----SD---- C:\Windows\Downloaded Program Files
2016-09-09 23:29:00 ----A---- C:\Windows\win.ini
2016-09-09 22:39:26 ----SH---- C:\Program Files (x86)\desktop.ini
2016-09-09 22:39:26 ----RD---- C:\Users
2016-09-07 08:04:35 ----A---- C:\Windows\SYSWOW64\PrintConfig.dll
2016-09-01 00:07:48 ----D---- C:\Windows\system32\CatRoot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-09-13 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-09-13 292704]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-09-13 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-09-13 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-09-13 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-09-22 513632]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-09-13 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-09-13 163416]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2015-11-24 147968]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 dtlitescsibus;@oem6.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\System32\drivers\dtlitescsibus.sys [2016-09-20 30264]
R3 dtliteusbbus;@oem7.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\Windows\System32\drivers\dtliteusbbus.sys [2016-09-20 47672]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-03-23 10627744]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\System32\drivers\k57nd60a.sys [2015-10-30 446464]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2015-10-30 34144]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-09-13 37656]
S3 b57nd60a;@oem4.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys [2014-04-07 465176]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\Windows\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2015-11-22 117248]
S3 fcvsc;fcvsc; C:\Windows\System32\drivers\fcvsc.sys [2015-10-30 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\Windows\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-09-22 192216]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 TrueSight;TrueSight; \??\C:\Windows\System32\drivers\TrueSight.sys [2016-09-21 28272]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\Windows\System32\Drivers\UcmCx.sys [2016-04-23 63488]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\Windows\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\Windows\system32\drivers\udecx.sys [2015-10-30 45056]
S3 Ufx01000;USB Function Class Extension; C:\Windows\system32\drivers\ufx01000.sys [2016-05-28 258912]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\Windows\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\Windows\System32\drivers\ufxsynopsys.sys [2016-09-07 131424]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2014-03-04 36944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-13 197128]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 OneSyncSvc_1abc6;Hostitel synchronizace_1abc6; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_17d98;Hostitel synchronizace_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1c160;Hostitel synchronizace_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1dca2;Hostitel synchronizace_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1e4a4;Hostitel synchronizace_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1fcfb;Hostitel synchronizace_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_21d42;Hostitel synchronizace_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_23a86;Hostitel synchronizace_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_250cd;Hostitel synchronizace_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3df44;Hostitel synchronizace_3df44; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_bd4e;Hostitel synchronizace_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-08-29 1467072]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14 153752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_17d98;Služba zasílání zpráv_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1abc6;Služba zasílání zpráv_1abc6; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1c160;Služba zasílání zpráv_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1dca2;Služba zasílání zpráv_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1e4a4;Služba zasílání zpráv_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1fcfb;Služba zasílání zpráv_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_21d42;Služba zasílání zpráv_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_23a86;Služba zasílání zpráv_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_250cd;Služba zasílání zpráv_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3df44;Služba zasílání zpráv_3df44; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_bd4e;Služba zasílání zpráv_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_17d98;Data kontaktů_17d98; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1abc6;Data kontaktů_1abc6; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1c160;Data kontaktů_1c160; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1dca2;Data kontaktů_1dca2; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1e4a4;Data kontaktů_1e4a4; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1fcfb;Data kontaktů_1fcfb; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_21d42;Data kontaktů_21d42; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_23a86;Data kontaktů_23a86; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_250cd;Data kontaktů_250cd; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3df44;Data kontaktů_3df44; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_bd4e;Data kontaktů_bd4e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2016-09-07 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\Windows\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\Windows\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
Re: Neodstranitelný multiexplorer virus
Vlozte jeste logy z FRST (ne z RSIT) - ukazuje i neco jineho o systemu vizte muj predesly prispevek.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Neodstranitelný multiexplorer virus
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-09-2016
Ran by Marek (administrator) on DESKTOP-0VEG266 (22-09-2016 21:25:29)
Running from C:\Users\Marek\Downloads
Loaded Profiles: Marek (Available Profiles: Marek)
Platform: Windows 10 Pro Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\regedit.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9107616 2016-09-13] (AVAST Software)
HKLM-x32\...\Run: [TrojanScanner] => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [3753016 2016-02-19] (Simply Super Software)
ShellExecuteHooks-x32: - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-13] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\errorlog.txt [2016-09-21] ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6b7d8dea-76ca-4a97-be70-b20d251314be}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE03&ocid=UE03DHP
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - No File
FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-14] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-13]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-13]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR Profile: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default [2016-09-22]
CHR Extension: (Google Slides) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-22]
CHR Extension: (Google Docs) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-22]
CHR Extension: (Google Drive) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-22]
CHR Extension: (YouTube) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-22]
CHR Extension: (Google Sheets) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-22]
CHR Extension: (Google Docs Offline) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-22]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-22]
CHR Extension: (Gmail) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-22]
CHR Extension: (Chrome Media Router) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-22]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-13] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364456 2016-09-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-09-07] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-13] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-13] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-13] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-13] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-13] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-22] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-13] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-09-13] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-09-20] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-09-20] (Disc Soft Ltd)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36944 2014-03-04] (IObit)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-09-22] (Malwarebytes)
S2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [12464 2016-08-17] (Macrovision Europe Ltd) [File not signed]
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-09-21] ()
S3 VMSVSP; no ImagePath
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
========================== Drivers MD5 =======================
C:\Windows\System32\drivers\1394ohci.sys DF1C3D7E6C7929AD83BE22852B5B08CB
C:\Windows\System32\drivers\3ware.sys 2C5B3035B86770ADD2FE9BFBAF5B35A4
C:\Windows\System32\drivers\ACPI.sys 469441BAE3FF8A16826FC62C51EF5E18
C:\Windows\System32\Drivers\acpiex.sys 7EADED8087C392876521F7EBCE846EF4
C:\Windows\System32\drivers\acpipagr.sys C498887123327CDFD73A05E7A2780920
C:\Windows\System32\drivers\acpipmi.sys C8DBE6EFFCF014CAA010B9BDDAC833EC
C:\Windows\System32\drivers\acpitime.sys 17039DBEB3B7B9ADCDB4B4533AA9771F
C:\Windows\System32\drivers\ADP80XX.SYS F7D0CD345D2DA42E7042ABCD73662403
C:\Windows\system32\drivers\afd.sys 70148EFA9A562E7185B75BBE7D376BF7
C:\Windows\System32\drivers\agp440.sys 870F1A2C936F92B5D053DF7EC75B352F
C:\Windows\System32\DRIVERS\ahcache.sys 655491B1173E0F6322F6972A596B93F7
C:\Windows\System32\drivers\amdk8.sys B70F0F2F54B4A4DB6E9C830454752F5A
C:\Windows\System32\drivers\amdppm.sys 35E890482C9728DD5C552B85DA8A5AB2
C:\Windows\System32\drivers\amdsata.sys 5B30BCFE6E02E45D3EE268FF001BC5E0
C:\Windows\System32\drivers\amdsbs.sys F20B30F35A5C7888441B4DCA001ECF8E
C:\Windows\System32\drivers\amdxata.sys AFE838D7576C581D6483529621AB10CC
C:\Windows\System32\drivers\appid.sys EDDB0D726DBECDFC1DBCC6DB464E5A13
C:\Windows\System32\drivers\arcsas.sys E3FE8F610B1CC12BC3B2E6BC43DC97E2
C:\Windows\system32\drivers\aswHwid.sys 9B480B472D6826E7257C90E2D0EE2954
C:\Windows\system32\drivers\aswKbd.sys 06362BBA1347CBA0996F4B39BB1D8353
C:\Windows\system32\drivers\aswMonFlt.sys 1BB00571CC2C78463ABD7E9C32970758
C:\Windows\system32\drivers\aswRdr2.sys 7010B57D708DA5C9686A5923EE621776
C:\Windows\System32\Drivers\aswRvrt.sys 937885085BFE5BD08EC1BC0245DD203B
C:\Windows\system32\drivers\aswSnx.sys 0B6352251C5D84130DF4252D33D266C2
C:\Windows\system32\drivers\aswSP.sys 28213B34725B18387CC1B8C3D73858A1
C:\Windows\system32\drivers\aswStm.sys 9C58B6E9663D0A76D00D83E43C765BDF
C:\Windows\System32\Drivers\aswVmm.sys 3267ED11A7EE6CA7F30505197B9FEC85
C:\Windows\System32\drivers\asyncmac.sys 5E00748A1AD246CAECBBB7553BED36CC
C:\Windows\System32\drivers\atapi.sys 492B99D2E3D5D7BFD5F0AE1BE7BD37DD
C:\Windows\System32\drivers\bxvbda.sys 6447BA6FA709514B6C803D159B4C7D1E
C:\Windows\system32\DRIVERS\b57nd60a.sys 93E3E03940AC8A1F6C045C150794D510
C:\Windows\System32\drivers\BasicDisplay.sys B4AC08B1D04D0CE085435E5CD0E663C5
C:\Windows\System32\drivers\BasicRender.sys 25B5BB369DEE2BAE4BF459C978FF9035
C:\Windows\System32\drivers\bcmfn.sys 3F5523DCEFE42B385659C5CB46A6B810
C:\Windows\System32\drivers\bcmfn2.sys 0B750A6A6D847E73CA48ADD7A0F5A393
C:\Windows\System32\Drivers\Beep.sys 5A88834AEE15D97695FAE0837B73B3E4
C:\Windows\System32\DRIVERS\bowser.sys DA2C6F7ACE392193C424FEA975C5BFFB
C:\Windows\System32\drivers\BthAvrcpTg.sys CAEC7BC11AF69A181AF7932E636E09E4
C:\Windows\System32\drivers\bthhfenum.sys 5F2B4B32E986C058525D3BA2A475A16C
C:\Windows\System32\drivers\BthHFHid.sys 5406289E8AE2CB52FC408154E0A64BA7
C:\Windows\System32\drivers\bthmodem.sys A76F20CCCA31895A1DA78A875E50F946
C:\Windows\System32\drivers\buttonconverter.sys BF89BDBA5D3A0B4256D3F6FC8D31880D
C:\Windows\System32\drivers\capimg.sys C24C27FDF93B85A4EFCF25F830253AA2
C:\Windows\System32\DRIVERS\cdfs.sys 7F9C7226D743B232907ED2537B8A574F
C:\Windows\System32\drivers\cdrom.sys 82D97776BF982AA143BDC7DFB5054EA8
C:\Windows\System32\drivers\circlass.sys 0505C1D991D0F9D47F3353BB98597C7E
C:\Windows\System32\drivers\CLFS.sys 8B4B39C507ABA09AAFE8E3932D1B392C
C:\Windows\System32\drivers\CmBatt.sys 95832B049E2833B9F5189823CDF946C7
C:\Windows\System32\Drivers\cng.sys 1F186B561EC82AB3EB4D039FEE0D9012
C:\Windows\System32\DRIVERS\cnghwassist.sys 58D640BC2294C71BDE0953F12D4B432F
C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys 14F9883588398A1BDE49C75098C75DE6
C:\Windows\System32\drivers\condrv.sys 02B8E49148DE5E0A2F6FDF28CE94A6AC
C:\Windows\System32\drivers\csc.sys 5D578EAAFB6FD4F59523E5878B541296
C:\Windows\System32\drivers\dam.sys 2619DC483579DB9FE804044C1ADFFD1A
C:\Windows\System32\Drivers\dfsc.sys 935823F79CBEDB91637B63D37E3A5A36
C:\Windows\System32\drivers\disk.sys 4904B152E4942BF700F2D73228B4D477
C:\Windows\System32\drivers\dmvsc.sys 0197AE4B9790A4E73751CACFAA480126
C:\Windows\System32\drivers\drmkaud.sys 25FA06D3B49D6ADF8E874FFCDCD76B50
C:\Windows\System32\drivers\dtlitescsibus.sys 679FF716052109392D870F6A6C4A3535
C:\Windows\System32\drivers\dtliteusbbus.sys E23FDD696839A4790682CA66C48D3F2F
C:\Windows\System32\drivers\dxgkrnl.sys BD94675E1C036C94B4A39660B099CB96
C:\Windows\System32\drivers\evbda.sys 491275B864B704B54EC08168344E0F38
C:\Windows\System32\drivers\EhStorClass.sys CEF108FCE06892CFA5F1B49527D4BF49
C:\Windows\System32\drivers\EhStorTcgDrv.sys 5B1EAAE3001A7A320C106FC3859F4111
C:\Windows\System32\drivers\errdev.sys 7A2705148A4BB3CA255F81624338B461
C:\Windows\System32\Drivers\exfat.sys DFE8A33FBCF6F38182631A4D6097B92D
C:\Windows\System32\Drivers\fastfat.sys C330883C06E2D4CE4F6982F048265D37
C:\Windows\System32\drivers\fcvsc.sys 2C003DA244EDF9BC3FD058DCB3422798
C:\Windows\System32\drivers\fdc.sys 9D299AE86D671488926126A84DF77BFD
C:\Windows\System32\drivers\filecrypt.sys 8F2523C9D8F1448FF2156452AF60FA00
C:\Windows\System32\drivers\fileinfo.sys 92ECCFA58C8195B8EA33ED942469D4E6
C:\Windows\System32\drivers\filetrace.sys 87C51FDD50C17882BA93E28BBABB9847
C:\Windows\System32\drivers\flpydisk.sys E99261DD76D1C9E05AF575939CAE5AC5
C:\Windows\System32\drivers\fltmgr.sys 25D7A58625E1453E40D36825DE74E4F1
C:\Windows\System32\drivers\FsDepends.sys B4175E8BE60B099686FF55CA7D692316
C:\Windows\System32\Drivers\Fs_Rec.sys CC71372CEB811A72F1DC99089C5CBF53
C:\Windows\System32\DRIVERS\fvevol.sys 50DFE05C698E9B0A63D95E3D669A105C
C:\Windows\System32\drivers\gagp30kx.sys B9981A4CB9F728B3312A3885BFAA7204
C:\Windows\System32\drivers\vmgencounter.sys 77555B11B264991DDC26872FFCF1AB97
C:\Windows\System32\drivers\genericusbfn.sys F3AC9652D88BF87BA6596CBEA28CE10F
C:\Windows\System32\Drivers\msgpioclx.sys F802FBABF0C4DF1BAA733187B2E476F5
C:\Windows\System32\drivers\gpuenergydrv.sys D011B0ADB15F4815310CE1BF4780B33E
C:\Windows\System32\drivers\HdAudio.sys E5AF4B339B54B87A84663A4915174D4D
C:\Windows\System32\drivers\HDAudBus.sys 84BC034B6BB763733C1949B7B9BAF976
C:\Windows\System32\drivers\HidBatt.sys 6B8CB114B8E64C0636EB49F7B914D1FC
C:\Windows\System32\drivers\hidbth.sys D1AD197CCDAAC0CB4819DA1D6EB17BAE
C:\Windows\System32\drivers\hidi2c.sys 64909DECCFCC6FB5D9A5BAFDCCB31FEE
C:\Windows\System32\drivers\hidinterrupt.sys F510F7B7BF61DEAAC04E65C3B65E8D59
C:\Windows\System32\drivers\hidir.sys 90F3ED42D423C942BA5EA54E2FFE7AC7
C:\Windows\System32\drivers\hidusb.sys 128DEDDD61915DBA4D451D91D21F0513
C:\Windows\System32\drivers\HpSAMD.sys FF442DCDCE1F6E9FAA9C8AD0CD1D199B
C:\Windows\System32\drivers\HTTP.sys 63C3F74DC398A1C1A77E39DFB9C312CA
C:\Windows\System32\drivers\hwpolicy.sys CBA5E88A0F0475B7F49653BB72150BEF
C:\Windows\System32\drivers\hyperkbd.sys D668FAB4B0397B426EE3D41683B9A1C0
C:\Windows\System32\drivers\i8042prt.sys 53FDD9E69189E546DE4740F8C4D8AB2F
C:\Windows\System32\drivers\iai2c.sys 9A2A2F3C69B9A30B6E78536F6D258BAD
C:\Windows\System32\drivers\iaLPSS2i_I2C.sys 59A20F5AD9F4AE54098154359519408E
C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 16A10CCEDCF5AC4CAAE43DC9FC40392F
C:\Windows\System32\drivers\iaLPSSi_I2C.sys EB82A11613326691508D9ED9A4FE29E7
C:\Windows\System32\drivers\iaStorAV.sys 6B0029A0253098CCE28EACCFDB9E7208
C:\Windows\System32\drivers\iaStorV.sys 9652E1E35A92D8C75710C17A63B15796
C:\Windows\System32\drivers\ibbus.sys FFADF691F7BF727AF5C863454A372723
C:\Windows\system32\DRIVERS\igdkmd64.sys 83915E05E168AB63B48302F7DC5D8E00
C:\Windows\System32\drivers\intelide.sys ECDB27420D3A98424666904525A8562A
C:\Windows\System32\drivers\intelpep.sys 8FF1978643EFD219C5BA49690191D701
C:\Windows\System32\drivers\intelppm.sys B61B60F36E1C8022FA8166ABF0F66B07
C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys A8DD685A6AFB748C9F487A139C9C367B
C:\Windows\System32\drivers\ioqos.sys CA0D42029AFFC4514D295E1EF823D02D
C:\Windows\System32\DRIVERS\ipfltdrv.sys 6E3F9D95235DFC9417384080A216F310
C:\Windows\System32\drivers\IPMIDrv.sys 4F527ECB5EAB47D8EAF34A469666C469
C:\Windows\System32\drivers\ipnat.sys 9E5E8F2A1996F23B7E9687846AA81B01
C:\Windows\System32\drivers\irenum.sys C317EB660138BC9CBFE37CCDE56351AE
C:\Windows\System32\drivers\isapnp.sys 531994A6D9399D9B74BE12B5BB58A81E
C:\Windows\System32\drivers\msiscsi.sys 68D5354A4A9692EEC24664C60F47D4A2
C:\Windows\System32\drivers\k57nd60a.sys 8438B8A45E16258064C19FBEC4EE069F
C:\Windows\System32\drivers\kbdclass.sys 701D7DB13B0815E7076EF4CB4CE981F8
C:\Windows\System32\drivers\kbdhid.sys 884EBBDDBF5968003B40185BD96FF0E6
C:\Windows\System32\drivers\kdnic.sys 6B3A0C7902811E6372643447E41F7048
C:\Windows\System32\Drivers\ksecdd.sys 38DADD5178E0299A1BB5A805B2136DEC
C:\Windows\System32\Drivers\ksecpkg.sys C2138FE291C8235C3A26CD04EE629163
C:\Windows\system32\drivers\ksthunk.sys E9BB0023D730701BB5D9839B44F5E6B5
C:\Windows\System32\drivers\lltdio.sys EC34EED89C34B27C292166B725AC7A7B
C:\Windows\System32\drivers\lsi_sas.sys 961F28D879D345BFA50AF51285C90F2E
C:\Windows\System32\drivers\lsi_sas2i.sys 6BFB8D1B3407518BE06B6F81F92FA0F5
C:\Windows\System32\drivers\lsi_sas3i.sys BE0E47988D78F731DEC2C0CB03E765CB
C:\Windows\System32\drivers\lsi_sss.sys F99BF02BE9219986817BF094981EEB18
C:\Windows\system32\drivers\luafv.sys 2FCF837196082864F66CFD9CAB256275
C:\Windows\system32\drivers\MBAMSwissArmy.sys 78488AF2AB2111D67B3C4044707A519B
C:\Windows\System32\drivers\megasas.sys 2ED29B635F35E31A1C0D3DDB7DD2AD03
C:\Windows\System32\drivers\megasr.sys 22E3CB85870879CBAE13C5095A8B12E3
C:\Windows\System32\drivers\mlx4_bus.sys D41920FBFFF2BBCBBC69A5B383AD022E
C:\Windows\system32\drivers\mmcss.sys 64BD0C87064EA20C2D3DC4199F9C239C
C:\Windows\System32\drivers\modem.sys 8D4B46FA84A3A3702EDADD37FAC6EDBA
C:\Windows\System32\drivers\monitor.sys 78FEC1BDB168370F131BFBFEA0A04E9D
C:\Windows\System32\drivers\mouclass.sys D1CC0833CFBC4222A95CAA5D0C8C78FF
C:\Windows\System32\drivers\mouhid.sys C2E05EC6B80BCF5AE362DA873E1BCE64
C:\Windows\System32\drivers\mountmgr.sys D5B7668A8F6C67C51FA5C6C513396D6C
C:\Windows\System32\drivers\mpsdrv.sys 5FBCB85D127BE21E3A9DAF11A13C00EA
C:\Windows\system32\drivers\mrxdav.sys BF6CA7EA5ECD6CF72D3D76652A9B8280
C:\Windows\System32\DRIVERS\mrxsmb.sys E7D59C52DE0C19C3179114D028EAA4B7
C:\Windows\System32\DRIVERS\mrxsmb10.sys 734D21F5B05D05DA2F85BE7EEF77DD43
C:\Windows\System32\DRIVERS\mrxsmb20.sys 600D5CC9DD2AE16691C71DCD4DAF8F1D
C:\Windows\System32\drivers\bridge.sys A4411C522D41707D5BCA817A5BB9E30B
C:\Windows\System32\Drivers\Msfs.sys D123343DDB02E372B02BF2C4293F835F
C:\Windows\System32\drivers\msgpiowin32.sys B3358F380BA3F29F56BE0F7734C24D5F
C:\Windows\System32\drivers\mshidkmdf.sys B2044D5D125F249680508EC0B2AAEFAC
C:\Windows\System32\drivers\mshidumdf.sys 36ABE7FC80BED4FE44754AE5CFB51432
C:\Windows\System32\drivers\msisadrv.sys 59307FEAFC9E72EEEC56B7FD7D294F4C
C:\Windows\system32\DRIVERS\MSKSSRV.sys E9457EDFEBC774199F907395C6D09CA2
C:\Windows\System32\drivers\mslldp.sys C85D79735641D27C5821C35ECDDC2334
C:\Windows\system32\DRIVERS\MSPCLOCK.sys EF75184B64356850D0F04D049C253526
C:\Windows\system32\DRIVERS\MSPQM.sys 543933D166C618E7588EA77707EC1683
C:\Windows\System32\Drivers\MsRPC.sys 182711E9DDF70121A20EBB61B2DFB9E8
C:\Windows\System32\drivers\mssmbios.sys E887FFDD6734C496407E9219225CB6FF
C:\Windows\system32\DRIVERS\MSTEE.sys 83A2AB75951000D681FABDB80C07AEFC
C:\Windows\System32\drivers\MTConfig.sys D65DB6F9285AF96151C937ABF027AEA8
C:\Windows\System32\Drivers\mup.sys 60F88248608315E13391C2F1C3B4473F
C:\Windows\System32\drivers\mvumis.sys 218705233D02776AE4D19CC37D985C1B
C:\Windows\System32\DRIVERS\nwifi.sys 549DFD8240CF20BFBD88AD9D89325DBF
C:\Windows\System32\drivers\ndfltr.sys B57CE307DA101C739885B7CC0678077F
C:\Windows\System32\drivers\ndis.sys E582DA849A58524E645545FB68B6625D
C:\Windows\System32\drivers\ndiscap.sys 202260E7CDD731A32AF62ABD1ABEE008
C:\Windows\System32\drivers\NdisImPlatform.sys A1D473D0CF10561F29B58EA7C5412A92
C:\Windows\System32\DRIVERS\ndistapi.sys 1A0AE283B8DE6BB76412A0F8213D45AC
C:\Windows\System32\drivers\ndisuio.sys A74EE2D2C0BFF5EC3A6185791868C4CA
C:\Windows\System32\drivers\NdisVirtualBus.sys 32A9BD1342640D48AD85C8B3E812B984
C:\Windows\System32\drivers\ndiswan.sys 6A6A8CF5EE61801375A38EBB871D4057
C:\Windows\System32\DRIVERS\ndiswan.sys 6A6A8CF5EE61801375A38EBB871D4057
C:\Windows\System32\DRIVERS\NDProxy.sys 50AEF8EF0064A91ABB08D858D039C9DE
C:\Windows\System32\drivers\Ndu.sys 883A36E2FF7FA3E1281CB575579FE3AF
C:\Windows\System32\drivers\netbios.sys 026618ECF6C4BEBDCB7885D42EC0DBE4
C:\Windows\System32\DRIVERS\netbt.sys C03E926B0E7D66D68994067231DC3246
C:\Windows\System32\Drivers\Npfs.sys 465DC580170CD844206D7E3EF1DBF2A1
C:\Windows\System32\drivers\npsvctrig.sys 29395C214D2CD4C81F73166AB988A797
C:\Windows\System32\drivers\nsiproxy.sys 2871225495F832A8C8A7DD1A17EDB3DC
C:\Windows\System32\Drivers\NTFS.sys 19BD8A88AAC580592668B070AC0727D9
C:\Windows\System32\Drivers\Null.sys 6DBD703320484C37CEA9E4E2D266A8CE
C:\Windows\System32\drivers\nvraid.sys 604D27CC38CC23493F218D0BB834B3FF
C:\Windows\System32\drivers\nvstor.sys 8B50D897657AB4A15FD9E251BBF7D107
C:\Windows\System32\drivers\nv_agp.sys 31F990B2B6B91E9D7A667405CE12FCB1
C:\Windows\System32\drivers\parport.sys 7D0FC96264C0F8F2C1321E33E8EB646C
C:\Windows\System32\drivers\partmgr.sys D330D74B5F99309B5CCA30AE41C57CDE
C:\Windows\System32\drivers\pci.sys 3F89E96BDA0A24A3D2DBB7CE1E625589
C:\Windows\System32\drivers\pciide.sys 2B4D98DF0CA57FB9536DBC80D2449D1F
C:\Windows\System32\drivers\pcmcia.sys F4D5793BF2E58AF15C6CF2FEEF9E73EB
C:\Windows\System32\drivers\pcw.sys 22A53744CEEADFFFD33BA010FAD95229
C:\Windows\System32\drivers\pdc.sys 34DDBE73E42A4EDED7BEFF66F270C1A4
C:\Windows\System32\drivers\peauth.sys E2F8376F9731D12A009C522036C6073A
C:\Windows\System32\drivers\percsas2i.sys 1398A85E59698067CBBE1D66A9C13ADF
C:\Windows\System32\drivers\percsas3i.sys 35F7C7AD709D909D618D9EDF987FC3ED
C:\Windows\System32\drivers\raspptp.sys 5BA6B9AD03B81546BA64E488C4EF9D17
C:\Windows\System32\drivers\processr.sys 21AECFF3EB5748CBE12538A2500EFDE5
C:\Windows\System32\drivers\pacer.sys 596FB6C5A72F34B7566930985E543806
C:\Windows\system32\drivers\qwavedrv.sys CFBA9C976CBF6796E5DC39EF59984021
C:\Windows\System32\DRIVERS\rasacd.sys 7B2AD8C55217B514C14281AB97B4E21D
C:\Windows\System32\drivers\AgileVpn.sys E15A9CE1E2E7D1C8DF97A4FC1FFE6289
C:\Windows\System32\drivers\rasl2tp.sys E3C82823B22463BC38AA4F8ADA852624
C:\Windows\System32\DRIVERS\raspppoe.sys 3369023EB5790A75BA7DABA14B75D922
C:\Windows\System32\drivers\rassstp.sys 1E32A8CD65C4AD0A827CFEB13034DA29
C:\Windows\System32\DRIVERS\rdbss.sys 1BB74617AE07539EC7C31C93F98644C7
C:\Windows\System32\drivers\rdpbus.sys D0221C13960E274CC539D72D5A842ED0
C:\Windows\System32\drivers\rdpdr.sys 1DC2CC74B51E4DC4CD5A20C1021E4010
C:\Windows\System32\drivers\rdpvideominiport.sys 177DF954D0DEC0465A380C75F6E7F65F
C:\Windows\System32\drivers\rdyboost.sys 5D1680871054D2B0B8A971BC8AB3B837
C:\Windows\System32\Drivers\ReFSv1.sys 341E6830DA70F65730300DAB4CB0B490
C:\Windows\system32\DRIVERS\RMCAST.sys DBBACE77DDE8CCFD85B37B114965C385
C:\Windows\System32\drivers\rspndr.sys 0AC5FCDC29ED97ECDEF1276425EE2059
C:\Windows\System32\drivers\vms3cap.sys 044890BB0D6CF1E23C1087234D320509
C:\Windows\System32\drivers\sbp2port.sys 530F797129776AA7E81994783A97E2AD
C:\Windows\System32\DRIVERS\scfilter.sys 9B6B1D4DB35A3D9BEAF023BC95E1F49D
C:\Windows\System32\drivers\sdbus.sys B32F13993145E815D7280C6F55B9523B
C:\Windows\System32\drivers\sdstor.sys DE6D7DC78D956928F59F7415A0F41E13
C:\Windows\SysWOW64\drivers\SECDRV.SYS 890CADA2AB7ACF53A5F9CCE7515522A2
C:\Windows\System32\drivers\SerCx.sys 67585C295FF2D221679E376B68893B35
C:\Windows\System32\drivers\SerCx2.sys B8C4852CBCAAC1374C08EC7445443824
C:\Windows\System32\drivers\serenum.sys D3A103944A8FCD78FD48B2B19092790C
C:\Windows\System32\drivers\serial.sys 249A563C48DFD9E42A37587653E003BB
C:\Windows\System32\drivers\sermouse.sys 0F5B43074AE731D2C6F061241C9D84A6
C:\Windows\System32\drivers\sfloppy.sys D9FE59276BD56A9643C32D5FACE2F251
C:\Windows\System32\drivers\SiSRaid2.sys ABBE803FE0BDAE0E5BE74DDEFBE62F23
C:\Windows\System32\drivers\sisraid4.sys 6043DF55CFE3C7ACF477645FA64DEA98
C:\Windows\System32\drivers\spaceport.sys 1A6CB30F0EFC1632E6F1B852CA892583
C:\Windows\System32\drivers\SpbCx.sys E1C158F6C00359278727A2CEE5D2ED71
C:\Windows\System32\DRIVERS\srv.sys B5C5436E7DEA7048822809D16B6E861D
C:\Windows\System32\DRIVERS\srv2.sys ACCFA2FAAF77F5F9D72D3496B36057A8
C:\Windows\System32\DRIVERS\srvnet.sys FEABA2601AD0D819760F84D1A3ECE5AF
C:\Windows\System32\drivers\stexstor.sys CCDA497C880AD16D87EDFAEFCFB2EDF5
C:\Windows\System32\drivers\storahci.sys BF8EA6FC3358C2F69678E3E94F764F84
C:\Windows\System32\drivers\vmstorfl.sys 32FF460DA8C1F370F5C08B7654899B73
C:\Windows\System32\drivers\stornvme.sys CC21DB3EF619B9480FE31A4EFE92CBEB
C:\Windows\System32\drivers\storqosflt.sys 390B8A75768E2689586539C224520895
C:\Windows\System32\drivers\storufs.sys 770A92D9D3A0BF61C97C3AFCB36847D9
C:\Windows\System32\drivers\storvsc.sys 736A2418E3E7F3DB3CF6EB0A55D1D581
C:\Windows\System32\drivers\swenum.sys BD98B0225BCD49E8A62F4F8EE1D1F613
C:\Windows\System32\drivers\Synth3dVsc.sys CAE4B27B469C583131EA5AAE622F5D76
C:\Windows\System32\drivers\tcpip.sys CF63BF6AAEDF721E37F9E216FD321B8E
C:\Windows\System32\drivers\tcpip.sys CF63BF6AAEDF721E37F9E216FD321B8E
C:\Windows\System32\drivers\tcpipreg.sys 17F37EC9042D84561C550620643D9A85
C:\Windows\system32\DRIVERS\tdx.sys 91D3F2A6253EF83EFBD7903028F58C4D
C:\Windows\System32\drivers\terminpt.sys E730D0EB1B84EBC98423FC8D285EDBC0
C:\Windows\System32\drivers\tpm.sys 87B9ABB965F7AF987D52791F0DD1663D
C:\Windows\System32\drivers\TrueSight.sys 0D5A09B08568760AE85A801FCBC0F83D
C:\Windows\System32\drivers\tsusbflt.sys 48E828C66AB016E48F2CB4DD585315FD
C:\Windows\System32\drivers\TsUsbGD.sys 267C76EE60736EA5A1811A53FA02AABE
C:\Windows\System32\drivers\tunnel.sys 8CE72F094B822AD5EE9C3A3AFC0C16B6
C:\Windows\System32\drivers\uagp35.sys 42C546414F80BD6C0137FC3A106F8A69
C:\Windows\System32\drivers\uaspstor.sys 1686DBC81748B096232B15F16C302985
C:\Windows\System32\Drivers\UcmCx.sys 82D3B1F4D80057826AA649D78147DE36
C:\Windows\System32\drivers\UcmUcsi.sys 1C95F7CE37D9EFB90EBE987A9712356C
C:\Windows\System32\drivers\ucx01000.sys AED081772091C98173905E2DF28C223B
C:\Windows\System32\drivers\udecx.sys DCA34A111C29E4578DF2B8CEA3C7CDBD
C:\Windows\System32\DRIVERS\udfs.sys 718A956AE00CE086F381044AB66CC29C
C:\Windows\System32\drivers\UEFI.sys BA760F8E66428BA9FF1E8BFBC6248136
C:\Windows\System32\drivers\ufx01000.sys 05DD22294A4F3F89E52351C7721E6D2C
C:\Windows\System32\drivers\UfxChipidea.sys 2B1DABA97DDF5365FC66EE7DEDD86A13
C:\Windows\System32\drivers\ufxsynopsys.sys 0B1013A5204A6B9EEB38F4EE1E430CE6
C:\Windows\System32\drivers\uliagpkx.sys 6DE78C04BF32ECA7AF3064F53687C9A5
C:\Windows\System32\drivers\umbus.sys 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4
C:\Windows\System32\drivers\umpass.sys 11680607944A719EF20E0E740785712A
C:\Windows\System32\drivers\urschipidea.sys 2410A0C20D21A25E6C01979FA886BE90
C:\Windows\System32\drivers\urscx01000.sys 6E59CE43B6BA5AA1ADCF36A4DBBB92BB
C:\Windows\System32\drivers\urssynopsys.sys E8A59FA109A22FC07E44BDFCC9727DBD
C:\Windows\System32\drivers\usbccgp.sys D8A44550ECE102B6443F5D54DCE7DAB3
C:\Windows\System32\drivers\usbcir.sys 66B3D22DAB5312FF238ABF5C6D9F8FAB
C:\Windows\System32\drivers\usbehci.sys 3E4F20DB902D2E2914F3FF3DB9772200
C:\Windows\System32\drivers\usbhub.sys 41F7F00D76904416EF1F9EFA1A4C37A2
C:\Windows\System32\drivers\UsbHub3.sys E7463CE8579A0418A98BE9BE42C647D7
C:\Windows\System32\drivers\usbohci.sys DAB35CCA86F5FBE77D870A40089BC4A1
C:\Windows\System32\drivers\usbprint.sys 21162F65C7756AAECAEBED9E67D0A5FE
C:\Windows\System32\drivers\usbser.sys 4AAD6547953D373A1EB5B2DF583D868B
C:\Windows\System32\drivers\USBSTOR.SYS 8949F77132A4F8F3BA17C6727099F002
C:\Windows\System32\drivers\usbuhci.sys 8B3E458A8851F9A3B2109B1680EE1159
C:\Windows\System32\drivers\USBXHCI.SYS 9E9D58F5E1702955B2F4D62996F80E8E
C:\Windows\System32\drivers\vdrvroot.sys E1BE37312785A71862516F66B3FD24CE
C:\Windows\System32\drivers\VerifierExt.sys E42C0F2850735FF9D908B9DB581E6314
C:\Windows\System32\drivers\vhdmp.sys EC15FD6A28757793E2DA394CD94ABD52
C:\Windows\System32\drivers\vhf.sys D0C9632C350F46786643A069251BC249
C:\Windows\System32\drivers\vmbus.sys E886CB75DA2B6EB35469EF10135624C7
C:\Windows\System32\drivers\VMBusHID.sys 46D2EC27820EC0F798F85821E53C2942
C:\Windows\System32\drivers\volmgr.sys B9265F47E7A354BAAA0AF5CBA3F8F7CE
C:\Windows\System32\drivers\volmgrx.sys BEE9C8B72AB752B794F69C2B9B3678AA
C:\Windows\System32\drivers\volsnap.sys E1F91A727A04C9F8199D04FF3BBBF63C
C:\Windows\System32\drivers\vpci.sys F7B1B1101271E31F43CC76E890704F51
C:\Windows\System32\drivers\vsmraid.sys D48ED0A08BD2FD25A833E6AC99623091
C:\Windows\System32\drivers\vstxraid.sys 6990D4AFDF545669D4E6C232F26DE1FB
C:\Windows\System32\drivers\vwifibus.sys 1EE11F0508C58EF081F4176E66D6970B
C:\Windows\System32\drivers\vwififlt.sys 938E4EF58E42D252B742B0E243011B90
C:\Windows\System32\drivers\wacompen.sys 00C27B64C758C111E5D78A70DE6CA2B6
C:\Windows\System32\DRIVERS\wanarp.sys 8CB53620B2C2F0641DD7563EA0FDF491
C:\Windows\System32\DRIVERS\wanarp.sys 8CB53620B2C2F0641DD7563EA0FDF491
C:\Windows\system32\drivers\WdBoot.sys 069D3D6E20AD753B34FCE856F0436869
C:\Windows\System32\drivers\Wdf01000.sys 6CC727E94CD84E9720FDCDA8089CABCC
C:\Windows\system32\drivers\WdFilter.sys E3E97151A1D1E87BB2D5371F66C5F169
C:\Windows\System32\DRIVERS\wdiwifi.sys 2BC2E99623119521EEF7910A11D0FDE0
C:\Windows\System32\Drivers\WdNisDrv.sys 07B043160399AF4009054E2EA3464BF4
C:\Windows\System32\drivers\wfplwfs.sys C11272713719922DE5711094333BD166
C:\Windows\System32\drivers\wimmount.sys EF536C54AB9281FDC4E83B07279FCFC4
C:\Windows\System32\drivers\WindowsTrustedRT.sys D8966A76408107224C6013993135DD78
C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 8B102A7B6CE326FD4208CC7C2D183343
C:\Windows\System32\drivers\winmad.sys 4A53441C1C4D2878BEF27E381138BB2D
C:\Windows\System32\drivers\WinUSB.SYS 260907CE034FE327AC99BDA4153AB22F
C:\Windows\System32\drivers\winverbs.sys 40A3E8D729F458B2C9A8BD9380FF83D5
C:\Windows\System32\drivers\wmiacpi.sys 8F010BF65238F3F822D22BA12831796E
C:\Windows\System32\Drivers\Wof.sys 2A9650FCC696DB28E45EA8B33B99B8E6
C:\Windows\System32\DRIVERS\wpcfltr.sys 22C52D7EE7C7D0E02C8EFD8CAE8E3A71
C:\Windows\System32\drivers\WpdUpFltr.sys 1C08E424CBDD5065BB7266F8C048C1B1
C:\Windows\system32\drivers\ws2ifsl.sys 638B43D39A3D0B47024555CF1095E6F1
C:\Windows\System32\drivers\WudfPf.sys A928F25CB62232F413EE655352856E10
C:\Windows\System32\drivers\WudfRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\Windows\system32\DRIVERS\WUDFRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\Windows\system32\DRIVERS\WUDFRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\Windows\System32\drivers\xboxgip.sys F279536122B83FD0D8E158AA753E1B7C
C:\Windows\System32\drivers\xinputhid.sys DA0807D87A62D076C29C4E30F1E84F46
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-22 21:25 - 2016-09-22 21:25 - 00033449 _____ C:\Users\Marek\Downloads\FRST.txt
2016-09-22 21:25 - 2016-09-22 21:25 - 00000000 ____D C:\FRST
2016-09-22 21:24 - 2016-09-22 21:24 - 02402816 _____ (Farbar) C:\Users\Marek\Downloads\FRST64.exe
2016-09-22 21:22 - 2016-09-22 21:23 - 01753088 _____ (Farbar) C:\Users\Marek\Downloads\FRST.exe
2016-09-22 21:12 - 2016-09-22 21:12 - 00001602 _____ C:\Users\Marek\Desktop\iexplore.exe – zástupce.lnk
2016-09-22 19:18 - 2016-09-22 19:18 - 00000000 ____D C:\Users\Marek\AppData\Local\CrashDumps
2016-09-22 19:14 - 2016-09-22 19:14 - 00000958 _____ C:\Users\Marek\Desktop\JRT22.9.txt
2016-09-22 13:43 - 2016-09-22 13:43 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-09-22 13:43 - 2016-09-22 13:43 - 00000000 ____D C:\Program Files\CMAK
2016-09-22 13:43 - 2016-09-22 13:43 - 00000000 ____D C:\Program Files (x86)\CMAK
2016-09-22 13:00 - 2016-09-22 13:00 - 00000000 ____D C:\Users\Marek\AppData\Local\CEF
2016-09-22 12:50 - 2016-09-22 12:50 - 00000000 ____D C:\Users\Marek\AppData\Local\ActiveSync
2016-09-22 12:41 - 2016-09-22 12:41 - 00222108 _____ C:\Windows\Minidump\092216-41390-01.dmp
2016-09-22 04:18 - 2016-09-22 19:44 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-22 01:35 - 2016-09-22 02:06 - 09647696 _____ (Crawler Group ) C:\Users\Marek\Downloads\SpywareTerminatorSetup.exe
2016-09-22 01:08 - 2016-09-22 19:55 - 00000000 ____D C:\AdwCleaner
2016-09-22 01:07 - 2016-09-22 01:08 - 03861056 _____ C:\Users\Marek\Desktop\bitch.exe
2016-09-22 00:39 - 2016-09-22 00:48 - 00000000 ____D C:\ProgramData\HitmanPro
2016-09-22 00:38 - 2016-09-22 00:40 - 11572656 _____ (SurfRight B.V.) C:\Users\Marek\Downloads\HitmanPro_x64.exe
2016-09-21 23:37 - 2016-09-21 23:38 - 03996978 _____ C:\Users\Marek\Downloads\US_W150dv3Br_V1.0.0.2_ANNEX_B_en_TD.rar
2016-09-21 22:34 - 2016-09-21 22:34 - 00000000 _____ C:\Users\Marek\Downloads\HitmanPro_x64 (1).exe.rqbwm9i.partial
2016-09-21 22:32 - 2016-09-21 22:32 - 00000000 _____ C:\Users\Marek\Downloads\HitmanPro_x64.exe.2wskcqp.partial
2016-09-21 22:26 - 2016-09-22 17:58 - 00004212 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2E2D68EF-05E2-4478-BDAF-92941C5681BC}
2016-09-21 22:15 - 2016-09-21 22:15 - 00004618 _____ C:\Users\Marek\Desktop\rk_AEB321.09!!!!!!!!!!!!!!!!!!!!.tmp.txt
2016-09-21 21:22 - 2016-09-21 21:22 - 00000665 _____ C:\Users\Marek\Desktop\JRT21.9!!!!!!!!!!.txt
2016-09-21 18:53 - 2016-09-21 18:54 - 00004689 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-21-18-52-52.txt
2016-09-21 18:48 - 2016-09-21 18:48 - 00000022 _____ C:\Users\Marek\Downloads\ESETPoweliksCleaner.exe_20160921.184817.1600.zip
2016-09-21 17:58 - 2016-09-21 17:58 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Macromedia
2016-09-21 17:39 - 2016-09-21 17:39 - 00000022 _____ C:\Users\Marek\Downloads\ESETPoweliksCleaner.exe_20160921.173940.2936.zip
2016-09-21 16:31 - 2016-09-21 16:31 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Lexicon PCM Native
2016-09-21 15:48 - 2016-09-22 19:30 - 00000000 ____D C:\ProgramData\TEMP
2016-09-21 15:46 - 2016-09-21 17:35 - 00000000 ____D C:\Program Files (x86)\Trojan Remover
2016-09-21 15:46 - 2016-09-21 15:46 - 00000000 ____D C:\Users\Marek\Documents\Simply Super Software
2016-09-21 15:46 - 2016-09-21 15:46 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Simply Super Software
2016-09-21 15:46 - 2016-09-21 15:46 - 00000000 ____D C:\ProgramData\Simply Super Software
2016-09-21 15:46 - 2016-09-21 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
2016-09-21 15:42 - 2016-09-21 15:46 - 37754648 _____ (Simply Super Software ) C:\Users\Marek\Downloads\trjsetup694.exe
2016-09-21 15:30 - 2016-09-21 15:30 - 01270466 _____ C:\Users\Marek\Downloads\ProcessExplorer.zip
2016-09-21 12:57 - 2016-09-21 12:57 - 00135360 _____ (Symantec Corporation) C:\Users\Marek\Downloads\FixBlast.exe
2016-09-21 12:53 - 2016-09-21 12:53 - 00224968 _____ (ESET) C:\Users\Marek\Downloads\ESETPoweliksCleaner.exe
2016-09-21 12:53 - 2016-09-21 12:53 - 00000022 _____ C:\Users\Marek\Downloads\ESETPoweliksCleaner.exe_20160921.125359.1888.zip
2016-09-21 12:33 - 2016-09-21 12:33 - 00013836 _____ C:\Users\Marek\Desktop\infoRS.txt
2016-09-21 12:21 - 2016-09-22 20:57 - 00000000 ____D C:\Program Files\trend micro
2016-09-21 12:21 - 2016-09-21 12:21 - 00000000 ____D C:\rsit
2016-09-21 12:20 - 2016-09-21 12:21 - 01222144 _____ C:\Users\Marek\Downloads\RSITx64.exe
2016-09-21 11:23 - 2016-09-21 11:28 - 00007482 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-21-11-23-37.txt
2016-09-20 16:10 - 2016-09-20 17:17 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2016-09-20 14:06 - 2016-09-20 14:06 - 00000000 ____D C:\Users\Marek\Downloads\Kaspersky Rescue2Usb
2016-09-20 14:03 - 2016-09-20 14:06 - 00387584 _____ C:\Users\Marek\Downloads\rescue2usb.exe
2016-09-20 13:34 - 2016-09-20 13:34 - 00000000 ____D C:\Users\Marek\AppData\Local\Disc_Soft_Ltd
2016-09-20 13:31 - 2016-09-20 13:31 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-09-20 13:30 - 2016-09-20 13:31 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-09-20 13:30 - 2016-09-20 13:30 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-09-20 13:30 - 2016-09-20 13:30 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-09-20 13:30 - 2016-09-20 13:30 - 00001814 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-09-20 13:30 - 2016-09-20 13:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-09-20 13:30 - 2016-09-20 13:30 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-09-20 13:25 - 2016-09-20 13:26 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Marek\Downloads\DTLiteInstaller.exe
2016-09-20 13:16 - 2016-09-20 13:16 - 01458587 _____ C:\Users\Marek\Downloads\kasp10.0_rescuedisk_en.pdf
2016-09-20 12:51 - 2016-09-20 13:15 - 295557120 _____ C:\Users\Marek\Downloads\kav_rescue_10.iso
2016-09-20 03:32 - 2016-09-20 03:22 - 03449380 _____ C:\Users\Marek\Downloads\FIX.Txt
2016-09-20 03:32 - 2016-09-20 03:22 - 00061994 _____ C:\Users\Marek\Desktop\FIX.Txt
2016-09-20 03:02 - 2016-09-20 03:03 - 00001830 _____ C:\Users\Marek\Desktop\sc-cleaner.txt
2016-09-20 02:26 - 2016-09-20 02:28 - 00006752 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-20-2-26-23.txt
2016-09-20 02:02 - 2016-09-20 02:03 - 00808913 _____ C:\Users\Marek\Downloads\radix_installer.zip
2016-09-20 01:23 - 2016-09-20 02:06 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-09-19 19:37 - 2016-09-19 19:37 - 00002104 _____ C:\Users\Marek\Desktop\aswMBR19.9.txt
2016-09-18 20:25 - 2016-09-18 20:29 - 00000000 ____D C:\Windows\system32\MRT
2016-09-18 20:25 - 2016-09-18 20:25 - 144199024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-09-18 18:46 - 2016-09-07 07:39 - 02656952 _____ C:\Windows\system32\CoreUIComponents.dll
2016-09-18 18:46 - 2016-09-07 07:39 - 01098640 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2016-09-18 18:46 - 2016-09-07 07:39 - 00277848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2016-09-18 18:46 - 2016-09-07 07:26 - 02544256 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 01299504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 01152320 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 01092464 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 00847648 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 00588320 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2016-09-18 18:46 - 2016-09-07 07:25 - 02607336 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-09-18 18:46 - 2016-09-07 07:24 - 01349632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2016-09-18 18:46 - 2016-09-07 07:24 - 00511312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-09-18 18:46 - 2016-09-07 07:24 - 00496360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll
2016-09-18 18:46 - 2016-09-07 07:23 - 01750440 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2016-09-18 18:46 - 2016-09-07 07:23 - 01603224 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2016-09-18 18:46 - 2016-09-07 07:23 - 01040792 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2016-09-18 18:46 - 2016-09-07 07:23 - 00725776 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2016-09-18 18:46 - 2016-09-07 07:20 - 00569744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2016-09-18 18:46 - 2016-09-07 07:19 - 00294752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-09-18 18:46 - 2016-09-07 07:15 - 00911640 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2016-09-18 18:46 - 2016-09-07 07:12 - 01174008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-09-18 18:46 - 2016-09-07 06:48 - 22379520 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-09-18 18:46 - 2016-09-07 06:48 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-09-18 18:46 - 2016-09-07 06:47 - 00824320 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2016-09-18 18:46 - 2016-09-07 06:43 - 16985600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-09-18 18:46 - 2016-09-07 06:42 - 00572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2016-09-18 18:46 - 2016-09-07 06:39 - 01567744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-09-18 18:46 - 2016-09-07 06:37 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 24611840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 00814592 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 00393216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModelShim.dll
2016-09-18 18:46 - 2016-09-07 06:34 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00643584 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-09-18 18:46 - 2016-09-07 06:31 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2016-09-18 18:46 - 2016-09-07 06:31 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-09-18 18:46 - 2016-09-07 06:31 - 00753664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2016-09-18 18:46 - 2016-09-07 06:31 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-09-18 18:46 - 2016-09-07 06:31 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 18676224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 02127360 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-09-18 18:46 - 2016-09-07 06:30 - 01707520 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 01001472 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 00904704 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 00602624 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-09-18 18:46 - 2016-09-07 06:29 - 19350016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-09-18 18:46 - 2016-09-07 06:28 - 00938496 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-09-18 18:46 - 2016-09-07 06:28 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-09-18 18:46 - 2016-09-07 06:28 - 00284160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2016-09-18 18:46 - 2016-09-07 06:27 - 01743872 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2016-09-18 18:46 - 2016-09-07 06:27 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2016-09-18 18:46 - 2016-09-07 06:27 - 00963072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2016-09-18 18:46 - 2016-09-07 06:26 - 13392384 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-09-18 18:46 - 2016-09-07 06:26 - 02050048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-09-18 18:46 - 2016-09-07 06:26 - 01508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmsipc.dll
2016-09-18 18:46 - 2016-09-07 06:26 - 00854528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2016-09-18 18:46 - 2016-09-07 06:26 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-09-18 18:46 - 2016-09-07 06:25 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Pimstore.dll
2016-09-18 18:46 - 2016-09-07 06:25 - 00769536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2016-09-18 18:46 - 2016-09-07 06:24 - 03695104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2016-09-18 18:46 - 2016-09-07 06:24 - 03428864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2016-09-18 18:46 - 2016-09-07 06:24 - 01276928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2016-09-18 18:46 - 2016-09-07 06:24 - 00785920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2016-09-18 18:46 - 2016-09-07 06:23 - 00980480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcsecproc.dll
2016-09-18 18:46 - 2016-09-07 06:23 - 00838144 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2016-09-18 18:46 - 2016-09-07 06:23 - 00701952 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2016-09-18 18:46 - 2016-09-07 06:22 - 12134400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-09-18 18:46 - 2016-09-07 06:22 - 02582016 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-09-18 18:46 - 2016-09-07 06:21 - 03046400 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2016-09-18 18:46 - 2016-09-07 06:21 - 01797120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-09-18 18:46 - 2016-09-07 06:20 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-09-18 18:46 - 2016-09-07 06:19 - 03663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-09-18 18:46 - 2016-09-07 06:19 - 02102272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2016-09-18 18:46 - 2016-09-07 06:19 - 01072128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2016-09-18 18:46 - 2016-09-07 06:18 - 03577344 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-09-18 18:46 - 2016-09-07 06:18 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2016-09-18 18:46 - 2016-09-07 06:18 - 00592384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2016-09-18 18:46 - 2016-09-07 06:18 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\XpsDocumentTargetPrint.dll
2016-09-18 18:46 - 2016-09-07 06:17 - 02679808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2016-09-18 18:46 - 2016-09-07 06:17 - 02285568 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 04412928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 03671040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02911744 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02597888 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02280960 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02217984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 01676800 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 01194496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 01123328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 07831552 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 05659136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 02604032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 02055168 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 00835072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hnetcfg.dll
2016-09-18 18:46 - 2016-09-07 06:14 - 06743040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-09-18 18:46 - 2016-09-07 06:14 - 04895232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-09-18 18:46 - 2016-09-07 06:14 - 01946112 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-09-18 18:46 - 2016-09-07 06:13 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-09-18 18:46 - 2016-09-07 06:13 - 02874880 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2016-09-18 18:46 - 2016-09-07 06:11 - 03065344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2016-09-18 18:46 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2016-09-18 18:46 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-09-18 18:46 - 2016-07-01 06:38 - 01083656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2016-09-18 18:46 - 2016-07-01 06:38 - 00256192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2016-09-18 18:46 - 2016-07-01 06:35 - 00498960 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2016-09-18 18:46 - 2016-07-01 05:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-09-18 18:46 - 2016-07-01 05:46 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2016-09-18 18:46 - 2016-07-01 05:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2016-09-18 18:46 - 2016-07-01 05:42 - 02088960 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-09-18 18:46 - 2016-07-01 05:42 - 01434112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2016-09-18 18:46 - 2016-07-01 05:41 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2016-09-18 18:46 - 2016-07-01 05:40 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll
2016-09-18 18:46 - 2016-07-01 05:40 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2016-09-18 18:46 - 2016-07-01 05:40 - 00496640 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-09-18 18:46 - 2016-07-01 05:32 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-09-18 18:46 - 2016-07-01 05:32 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimCfg.dll
2016-09-18 18:46 - 2016-07-01 05:28 - 00578048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2016-09-18 18:46 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-09-18 18:46 - 2016-05-28 07:23 - 00312160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-09-18 18:46 - 2016-05-28 06:22 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2016-09-18 18:46 - 2016-05-28 06:18 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-09-18 18:46 - 2016-05-28 06:16 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2016-09-18 18:46 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-09-18 18:46 - 2016-05-06 06:53 - 00095072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdport.sys
2016-09-18 18:46 - 2016-04-23 07:28 - 01542816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-09-18 18:46 - 2016-04-23 06:26 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2016-09-18 18:46 - 2016-04-23 06:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2016-09-18 18:46 - 2016-04-23 06:24 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2016-09-18 18:46 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2016-09-18 18:46 - 2016-04-23 06:18 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-09-18 18:46 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-09-18 18:45 - 2016-09-07 07:39 - 01030408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-09-18 18:45 - 2016-09-07 07:39 - 00875480 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-09-18 18:45 - 2016-09-07 07:39 - 00845568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2016-09-18 18:45 - 2016-09-07 07:39 - 00754664 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2016-09-18 18:45 - 2016-09-07 07:39 - 00620176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-09-18 18:45 - 2016-09-07 07:39 - 00175120 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-09-18 18:45 - 2016-09-07 07:37 - 00572272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2016-09-18 18:45 - 2016-09-07 07:37 - 00129888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-09-18 18:45 - 2016-09-07 07:36 - 00405856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-09-18 18:45 - 2016-09-07 07:34 - 02587696 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-09-18 18:45 - 2016-09-07 07:33 - 02026736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-09-18 18:45 - 2016-09-07 07:33 - 01297760 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2016-09-18 18:45 - 2016-09-07 07:33 - 00986976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2016-09-18 18:45 - 2016-09-07 07:33 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-09-18 18:45 - 2016-09-07 07:27 - 00538632 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2016-09-18 18:45 - 2016-09-07 07:27 - 00413536 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2016-09-18 18:45 - 2016-09-07 07:26 - 00858952 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-09-18 18:45 - 2016-09-07 07:26 - 00785088 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-09-18 18:45 - 2016-09-07 07:26 - 00586200 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-09-18 18:45 - 2016-09-07 07:26 - 00245840 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-09-18 18:45 - 2016-09-07 07:26 - 00131424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufxsynopsys.sys
2016-09-18 18:45 - 2016-09-07 07:25 - 01447776 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2016-09-18 18:45 - 2016-09-07 07:25 - 01322248 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-09-18 18:45 - 2016-09-07 07:25 - 01270064 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-09-18 18:45 - 2016-09-07 07:24 - 03693064 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-09-18 18:45 - 2016-09-07 07:24 - 02180128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-09-18 18:45 - 2016-09-07 07:24 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-09-18 18:45 - 2016-09-07 07:24 - 00501600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-09-18 18:45 - 2016-09-07 07:24 - 00355672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2016-09-18 18:45 - 2016-09-07 07:23 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-09-18 18:45 - 2016-09-07 07:23 - 06605544 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-09-18 18:45 - 2016-09-07 07:23 - 06536248 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2016-09-18 18:45 - 2016-09-07 07:22 - 02937384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-09-18 18:45 - 2016-09-07 07:22 - 01128096 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2016-09-18 18:45 - 2016-09-07 07:22 - 01085728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2016-09-18 18:45 - 2016-09-07 07:22 - 00604920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-09-18 18:45 - 2016-09-07 07:21 - 04074160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-09-18 18:45 - 2016-09-07 07:21 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-09-18 18:45 - 2016-09-07 07:20 - 01355336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2016-09-18 18:45 - 2016-09-07 07:16 - 02773088 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-09-18 18:45 - 2016-09-07 07:16 - 02548936 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-09-18 18:45 - 2016-09-07 07:16 - 01988448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-09-18 18:45 - 2016-09-07 07:13 - 01865584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2016-09-18 18:45 - 2016-09-07 07:12 - 02195632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-09-18 18:45 - 2016-09-07 07:12 - 01522152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-09-18 18:45 - 2016-09-07 07:11 - 00057912 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-09-18 18:45 - 2016-09-07 07:08 - 00116216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-09-18 18:45 - 2016-09-07 07:07 - 01951848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2016-09-18 18:45 - 2016-09-07 06:52 - 01035776 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll
2016-09-18 18:45 - 2016-09-07 06:52 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-09-18 18:45 - 2016-09-07 06:49 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2016-09-18 18:45 - 2016-09-07 06:46 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2016-09-18 18:45 - 2016-09-07 06:46 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-09-18 18:45 - 2016-09-07 06:46 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2016-09-18 18:45 - 2016-09-07 06:45 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\spcompat.dll
2016-09-18 18:45 - 2016-09-07 06:45 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
2016-09-18 18:45 - 2016-09-07 06:44 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\wificonnapi.dll
2016-09-18 18:45 - 2016-09-07 06:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2016-09-18 18:45 - 2016-09-07 06:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\IconCodecService.dll
2016-09-18 18:45 - 2016-09-07 06:43 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2016-09-18 18:45 - 2016-09-07 06:43 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-09-18 18:45 - 2016-09-07 06:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MTConfig.sys
2016-09-18 18:45 - 2016-09-07 06:42 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosHostClient.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\DictationManager.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\OnDemandConnRouteHelper.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\fwcfg.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\deviceassociation.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2016-09-18 18:45 - 2016-09-07 06:40 - 00471040 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2016-09-18 18:45 - 2016-09-07 06:40 - 00361472 _____ (Microsoft Corporation) C:\Windows\system32\bdechangepin.exe
2016-09-18 18:45 - 2016-09-07 06:40 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll
2016-09-18 18:45 - 2016-09-07 06:40 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\CheckNetIsolation.exe
2016-09-18 18:45 - 2016-09-07 06:39 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-09-18 18:45 - 2016-09-07 06:39 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VoipRT.dll
2016-09-18 18:45 - 2016-09-07 06:39 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2016-09-18 18:45 - 2016-09-07 06:39 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2016-09-18 18:45 - 2016-09-07 06:39 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Cortana.ProxyStub.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00584704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\LegacyNetUXHost.exe
2016-09-18 18:45 - 2016-09-07 06:38 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Geolocation.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosStorage.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-09-18 18:45 - 2016-09-07 06:38 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2016-09-18 18:45 - 2016-09-07 06:37 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00435712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2016-09-18 18:45 - 2016-09-07 06:37 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00373248 _____ (Microsoft Corporation) C:\Windows\system32\WmpDui.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\dialserver.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapsBtSvc.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceassociation.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 01568768 _____ (Microsoft Corporation) C:\Windows\system32\msdt.exe
2016-09-18 18:45 - 2016-09-07 06:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\authfwcfg.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe
2016-09-18 18:45 - 2016-09-07 06:36 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00102912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwcfg.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00715264 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2016-09-18 18:45 - 2016-09-07 06:35 - 00704000 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SmsRouterSvc.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00577536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00394240 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2016-09-18 18:45 - 2016-09-07 06:35 - 00205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oemlicense.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00119296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.ps.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcshext.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppCapture.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CheckNetIsolation.exe
2016-09-18 18:45 - 2016-09-07 06:34 - 00952320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00510464 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\WalletService.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00387072 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2016-09-18 18:45 - 2016-09-07 06:34 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\edputil.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00300032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcbase.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00278016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00904704 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WmpDui.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 04213248 _____ (Microsoft Corporation) C:\Windows\system32\WlanMM.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00947200 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc_ssp.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\SmartCardSimulator.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00651776 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2016-09-18 18:45 - 2016-09-07 06:32 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00471040 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\das.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-09-18 18:45 - 2016-09-07 06:32 - 00386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00339456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2016-09-18 18:45 - 2016-09-07 06:32 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\facecredentialprovider.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 09920512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 01985024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 01094656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00900608 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00839680 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00821760 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00607232 _____ (Microsoft Corporation) C:\Windows\system32\AppxApplicabilityEngine.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00579072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2016-09-18 18:45 - 2016-09-07 06:31 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\WLanConn.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00453632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00435200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authfwcfg.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2016-09-18 18:45 - 2016-09-07 06:31 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 02476032 _____ (Microsoft Corporation) C:\Windows\system32\MSAJApi.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 01575936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00817152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Search.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00698368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00576000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\filemgmt.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00436224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00349696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00294912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneOm.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 07977984 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 02624512 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 01902592 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 01319424 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-09-18 18:45 - 2016-09-07 06:29 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 04143104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlanMM.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 01752576 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 01648640 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 01291776 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00879616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00780800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00755712 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2016-09-18 18:45 - 2016-09-07 06:28 - 00674816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00673280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcsecproc_ssp.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00638976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00614400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSh.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WLanConn.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2016-09-18 18:45 - 2016-09-07 06:28 - 00337920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysdm.cpl
2016-09-18 18:45 - 2016-09-07 06:27 - 01872896 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 01139712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00957440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00784896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00708608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00549888 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00502272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00477184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00329216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinelsa.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 01915392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAJApi.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 01588224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 01537536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 01497088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2016-09-18 18:45 - 2016-09-07 06:26 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00673280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00645632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Search.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00638464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syncutil.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 06312448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 06296064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 04404736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 01944576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 01526272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2016-09-18 18:45 - 2016-09-07 06:25 - 00501760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licensingdiag.exe
2016-09-18 18:45 - 2016-09-07 06:24 - 07200256 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-09-18 18:45 - 2016-09-07 06:24 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2016-09-18 18:45 - 2016-09-07 06:24 - 00460800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2016-09-18 18:45 - 2016-09-07 06:23 - 01562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2016-09-18 18:45 - 2016-09-07 06:23 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2016-09-18 18:45 - 2016-09-07 06:23 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2016-09-18 18:45 - 2016-09-07 06:23 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDistSh.dll
2016-09-18 18:45 - 2016-09-07 06:22 - 02106368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2016-09-18 18:45 - 2016-09-07 06:22 - 01987072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-09-18 18:45 - 2016-09-07 06:22 - 01297408 _____ (Microsoft Corporation) C:\Windows\system32\SensorDataService.exe
2016-09-18 18:45 - 2016-09-07 06:22 - 00778240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2016-09-18 18:45 - 2016-09-07 06:21 - 02527232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2016-09-18 18:45 - 2016-09-07 06:21 - 01410560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2016-09-18 18:45 - 2016-09-07 06:21 - 01063936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2016-09-18 18:45 - 2016-09-07 06:21 - 00639488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2016-09-18 18:45 - 2016-09-07 06:20 - 00900608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:45 - 2016-09-07 06:20 - 00882688 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-09-18 18:45 - 2016-09-07 06:20 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2016-09-18 18:45 - 2016-09-07 06:20 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 05325824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 04169728 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 02798080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 02295808 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 01388544 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 07536640 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 05503488 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 05205504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 04826624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 00450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncController.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 03459584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 02175488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 02062336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 01674240 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 01526784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 01502208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 02680320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 02444288 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 02361856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 02155008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsDocumentTargetPrint.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 00232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2016-09-18 18:45 - 2016-09-07 06:16 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 02772480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01626112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01448960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01249280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01121792 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 03355136 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 03351040 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 03078656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 02573824 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 02553856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 02177024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 01799680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 01732096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 01708032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 01487872 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll
2016-09-18 18:45 - 2016-09-07 06:12 - 02180096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-09-18 18:45 - 2016-09-07 06:12 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2016-09-18 18:45 - 2016-09-07 06:12 - 00339456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-09-18 18:45 - 2016-09-07 06:11 - 03294208 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2016-09-18 18:45 - 2016-09-07 06:11 - 03053568 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-09-18 18:45 - 2016-09-07 06:10 - 01035776 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2016-09-18 18:45 - 2016-09-07 06:10 - 00712704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2016-09-18 18:45 - 2016-09-07 06:10 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2016-09-18 18:45 - 2016-09-07 06:09 - 00824832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-09-18 18:45 - 2016-09-07 06:09 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2016-09-18 18:45 - 2016-09-07 06:09 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-09-18 18:45 - 2016-09-05 02:37 - 00445765 _____ C:\Windows\system32\ApnDatabase.xml
Ran by Marek (administrator) on DESKTOP-0VEG266 (22-09-2016 21:25:29)
Running from C:\Users\Marek\Downloads
Loaded Profiles: Marek (Available Profiles: Marek)
Platform: Windows 10 Pro Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\regedit.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9107616 2016-09-13] (AVAST Software)
HKLM-x32\...\Run: [TrojanScanner] => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [3753016 2016-02-19] (Simply Super Software)
ShellExecuteHooks-x32: - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-13] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\errorlog.txt [2016-09-21] ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6b7d8dea-76ca-4a97-be70-b20d251314be}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE03&ocid=UE03DHP
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - No File
FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-14] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-13]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-13]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR Profile: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default [2016-09-22]
CHR Extension: (Google Slides) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-22]
CHR Extension: (Google Docs) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-22]
CHR Extension: (Google Drive) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-22]
CHR Extension: (YouTube) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-22]
CHR Extension: (Google Sheets) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-22]
CHR Extension: (Google Docs Offline) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-22]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-22]
CHR Extension: (Gmail) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-22]
CHR Extension: (Chrome Media Router) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-22]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-13] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364456 2016-09-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-09-07] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-13] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-13] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-13] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-13] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-13] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-22] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-13] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-09-13] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-09-20] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-09-20] (Disc Soft Ltd)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36944 2014-03-04] (IObit)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-09-22] (Malwarebytes)
S2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [12464 2016-08-17] (Macrovision Europe Ltd) [File not signed]
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-09-21] ()
S3 VMSVSP; no ImagePath
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
========================== Drivers MD5 =======================
C:\Windows\System32\drivers\1394ohci.sys DF1C3D7E6C7929AD83BE22852B5B08CB
C:\Windows\System32\drivers\3ware.sys 2C5B3035B86770ADD2FE9BFBAF5B35A4
C:\Windows\System32\drivers\ACPI.sys 469441BAE3FF8A16826FC62C51EF5E18
C:\Windows\System32\Drivers\acpiex.sys 7EADED8087C392876521F7EBCE846EF4
C:\Windows\System32\drivers\acpipagr.sys C498887123327CDFD73A05E7A2780920
C:\Windows\System32\drivers\acpipmi.sys C8DBE6EFFCF014CAA010B9BDDAC833EC
C:\Windows\System32\drivers\acpitime.sys 17039DBEB3B7B9ADCDB4B4533AA9771F
C:\Windows\System32\drivers\ADP80XX.SYS F7D0CD345D2DA42E7042ABCD73662403
C:\Windows\system32\drivers\afd.sys 70148EFA9A562E7185B75BBE7D376BF7
C:\Windows\System32\drivers\agp440.sys 870F1A2C936F92B5D053DF7EC75B352F
C:\Windows\System32\DRIVERS\ahcache.sys 655491B1173E0F6322F6972A596B93F7
C:\Windows\System32\drivers\amdk8.sys B70F0F2F54B4A4DB6E9C830454752F5A
C:\Windows\System32\drivers\amdppm.sys 35E890482C9728DD5C552B85DA8A5AB2
C:\Windows\System32\drivers\amdsata.sys 5B30BCFE6E02E45D3EE268FF001BC5E0
C:\Windows\System32\drivers\amdsbs.sys F20B30F35A5C7888441B4DCA001ECF8E
C:\Windows\System32\drivers\amdxata.sys AFE838D7576C581D6483529621AB10CC
C:\Windows\System32\drivers\appid.sys EDDB0D726DBECDFC1DBCC6DB464E5A13
C:\Windows\System32\drivers\arcsas.sys E3FE8F610B1CC12BC3B2E6BC43DC97E2
C:\Windows\system32\drivers\aswHwid.sys 9B480B472D6826E7257C90E2D0EE2954
C:\Windows\system32\drivers\aswKbd.sys 06362BBA1347CBA0996F4B39BB1D8353
C:\Windows\system32\drivers\aswMonFlt.sys 1BB00571CC2C78463ABD7E9C32970758
C:\Windows\system32\drivers\aswRdr2.sys 7010B57D708DA5C9686A5923EE621776
C:\Windows\System32\Drivers\aswRvrt.sys 937885085BFE5BD08EC1BC0245DD203B
C:\Windows\system32\drivers\aswSnx.sys 0B6352251C5D84130DF4252D33D266C2
C:\Windows\system32\drivers\aswSP.sys 28213B34725B18387CC1B8C3D73858A1
C:\Windows\system32\drivers\aswStm.sys 9C58B6E9663D0A76D00D83E43C765BDF
C:\Windows\System32\Drivers\aswVmm.sys 3267ED11A7EE6CA7F30505197B9FEC85
C:\Windows\System32\drivers\asyncmac.sys 5E00748A1AD246CAECBBB7553BED36CC
C:\Windows\System32\drivers\atapi.sys 492B99D2E3D5D7BFD5F0AE1BE7BD37DD
C:\Windows\System32\drivers\bxvbda.sys 6447BA6FA709514B6C803D159B4C7D1E
C:\Windows\system32\DRIVERS\b57nd60a.sys 93E3E03940AC8A1F6C045C150794D510
C:\Windows\System32\drivers\BasicDisplay.sys B4AC08B1D04D0CE085435E5CD0E663C5
C:\Windows\System32\drivers\BasicRender.sys 25B5BB369DEE2BAE4BF459C978FF9035
C:\Windows\System32\drivers\bcmfn.sys 3F5523DCEFE42B385659C5CB46A6B810
C:\Windows\System32\drivers\bcmfn2.sys 0B750A6A6D847E73CA48ADD7A0F5A393
C:\Windows\System32\Drivers\Beep.sys 5A88834AEE15D97695FAE0837B73B3E4
C:\Windows\System32\DRIVERS\bowser.sys DA2C6F7ACE392193C424FEA975C5BFFB
C:\Windows\System32\drivers\BthAvrcpTg.sys CAEC7BC11AF69A181AF7932E636E09E4
C:\Windows\System32\drivers\bthhfenum.sys 5F2B4B32E986C058525D3BA2A475A16C
C:\Windows\System32\drivers\BthHFHid.sys 5406289E8AE2CB52FC408154E0A64BA7
C:\Windows\System32\drivers\bthmodem.sys A76F20CCCA31895A1DA78A875E50F946
C:\Windows\System32\drivers\buttonconverter.sys BF89BDBA5D3A0B4256D3F6FC8D31880D
C:\Windows\System32\drivers\capimg.sys C24C27FDF93B85A4EFCF25F830253AA2
C:\Windows\System32\DRIVERS\cdfs.sys 7F9C7226D743B232907ED2537B8A574F
C:\Windows\System32\drivers\cdrom.sys 82D97776BF982AA143BDC7DFB5054EA8
C:\Windows\System32\drivers\circlass.sys 0505C1D991D0F9D47F3353BB98597C7E
C:\Windows\System32\drivers\CLFS.sys 8B4B39C507ABA09AAFE8E3932D1B392C
C:\Windows\System32\drivers\CmBatt.sys 95832B049E2833B9F5189823CDF946C7
C:\Windows\System32\Drivers\cng.sys 1F186B561EC82AB3EB4D039FEE0D9012
C:\Windows\System32\DRIVERS\cnghwassist.sys 58D640BC2294C71BDE0953F12D4B432F
C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys 14F9883588398A1BDE49C75098C75DE6
C:\Windows\System32\drivers\condrv.sys 02B8E49148DE5E0A2F6FDF28CE94A6AC
C:\Windows\System32\drivers\csc.sys 5D578EAAFB6FD4F59523E5878B541296
C:\Windows\System32\drivers\dam.sys 2619DC483579DB9FE804044C1ADFFD1A
C:\Windows\System32\Drivers\dfsc.sys 935823F79CBEDB91637B63D37E3A5A36
C:\Windows\System32\drivers\disk.sys 4904B152E4942BF700F2D73228B4D477
C:\Windows\System32\drivers\dmvsc.sys 0197AE4B9790A4E73751CACFAA480126
C:\Windows\System32\drivers\drmkaud.sys 25FA06D3B49D6ADF8E874FFCDCD76B50
C:\Windows\System32\drivers\dtlitescsibus.sys 679FF716052109392D870F6A6C4A3535
C:\Windows\System32\drivers\dtliteusbbus.sys E23FDD696839A4790682CA66C48D3F2F
C:\Windows\System32\drivers\dxgkrnl.sys BD94675E1C036C94B4A39660B099CB96
C:\Windows\System32\drivers\evbda.sys 491275B864B704B54EC08168344E0F38
C:\Windows\System32\drivers\EhStorClass.sys CEF108FCE06892CFA5F1B49527D4BF49
C:\Windows\System32\drivers\EhStorTcgDrv.sys 5B1EAAE3001A7A320C106FC3859F4111
C:\Windows\System32\drivers\errdev.sys 7A2705148A4BB3CA255F81624338B461
C:\Windows\System32\Drivers\exfat.sys DFE8A33FBCF6F38182631A4D6097B92D
C:\Windows\System32\Drivers\fastfat.sys C330883C06E2D4CE4F6982F048265D37
C:\Windows\System32\drivers\fcvsc.sys 2C003DA244EDF9BC3FD058DCB3422798
C:\Windows\System32\drivers\fdc.sys 9D299AE86D671488926126A84DF77BFD
C:\Windows\System32\drivers\filecrypt.sys 8F2523C9D8F1448FF2156452AF60FA00
C:\Windows\System32\drivers\fileinfo.sys 92ECCFA58C8195B8EA33ED942469D4E6
C:\Windows\System32\drivers\filetrace.sys 87C51FDD50C17882BA93E28BBABB9847
C:\Windows\System32\drivers\flpydisk.sys E99261DD76D1C9E05AF575939CAE5AC5
C:\Windows\System32\drivers\fltmgr.sys 25D7A58625E1453E40D36825DE74E4F1
C:\Windows\System32\drivers\FsDepends.sys B4175E8BE60B099686FF55CA7D692316
C:\Windows\System32\Drivers\Fs_Rec.sys CC71372CEB811A72F1DC99089C5CBF53
C:\Windows\System32\DRIVERS\fvevol.sys 50DFE05C698E9B0A63D95E3D669A105C
C:\Windows\System32\drivers\gagp30kx.sys B9981A4CB9F728B3312A3885BFAA7204
C:\Windows\System32\drivers\vmgencounter.sys 77555B11B264991DDC26872FFCF1AB97
C:\Windows\System32\drivers\genericusbfn.sys F3AC9652D88BF87BA6596CBEA28CE10F
C:\Windows\System32\Drivers\msgpioclx.sys F802FBABF0C4DF1BAA733187B2E476F5
C:\Windows\System32\drivers\gpuenergydrv.sys D011B0ADB15F4815310CE1BF4780B33E
C:\Windows\System32\drivers\HdAudio.sys E5AF4B339B54B87A84663A4915174D4D
C:\Windows\System32\drivers\HDAudBus.sys 84BC034B6BB763733C1949B7B9BAF976
C:\Windows\System32\drivers\HidBatt.sys 6B8CB114B8E64C0636EB49F7B914D1FC
C:\Windows\System32\drivers\hidbth.sys D1AD197CCDAAC0CB4819DA1D6EB17BAE
C:\Windows\System32\drivers\hidi2c.sys 64909DECCFCC6FB5D9A5BAFDCCB31FEE
C:\Windows\System32\drivers\hidinterrupt.sys F510F7B7BF61DEAAC04E65C3B65E8D59
C:\Windows\System32\drivers\hidir.sys 90F3ED42D423C942BA5EA54E2FFE7AC7
C:\Windows\System32\drivers\hidusb.sys 128DEDDD61915DBA4D451D91D21F0513
C:\Windows\System32\drivers\HpSAMD.sys FF442DCDCE1F6E9FAA9C8AD0CD1D199B
C:\Windows\System32\drivers\HTTP.sys 63C3F74DC398A1C1A77E39DFB9C312CA
C:\Windows\System32\drivers\hwpolicy.sys CBA5E88A0F0475B7F49653BB72150BEF
C:\Windows\System32\drivers\hyperkbd.sys D668FAB4B0397B426EE3D41683B9A1C0
C:\Windows\System32\drivers\i8042prt.sys 53FDD9E69189E546DE4740F8C4D8AB2F
C:\Windows\System32\drivers\iai2c.sys 9A2A2F3C69B9A30B6E78536F6D258BAD
C:\Windows\System32\drivers\iaLPSS2i_I2C.sys 59A20F5AD9F4AE54098154359519408E
C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 16A10CCEDCF5AC4CAAE43DC9FC40392F
C:\Windows\System32\drivers\iaLPSSi_I2C.sys EB82A11613326691508D9ED9A4FE29E7
C:\Windows\System32\drivers\iaStorAV.sys 6B0029A0253098CCE28EACCFDB9E7208
C:\Windows\System32\drivers\iaStorV.sys 9652E1E35A92D8C75710C17A63B15796
C:\Windows\System32\drivers\ibbus.sys FFADF691F7BF727AF5C863454A372723
C:\Windows\system32\DRIVERS\igdkmd64.sys 83915E05E168AB63B48302F7DC5D8E00
C:\Windows\System32\drivers\intelide.sys ECDB27420D3A98424666904525A8562A
C:\Windows\System32\drivers\intelpep.sys 8FF1978643EFD219C5BA49690191D701
C:\Windows\System32\drivers\intelppm.sys B61B60F36E1C8022FA8166ABF0F66B07
C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys A8DD685A6AFB748C9F487A139C9C367B
C:\Windows\System32\drivers\ioqos.sys CA0D42029AFFC4514D295E1EF823D02D
C:\Windows\System32\DRIVERS\ipfltdrv.sys 6E3F9D95235DFC9417384080A216F310
C:\Windows\System32\drivers\IPMIDrv.sys 4F527ECB5EAB47D8EAF34A469666C469
C:\Windows\System32\drivers\ipnat.sys 9E5E8F2A1996F23B7E9687846AA81B01
C:\Windows\System32\drivers\irenum.sys C317EB660138BC9CBFE37CCDE56351AE
C:\Windows\System32\drivers\isapnp.sys 531994A6D9399D9B74BE12B5BB58A81E
C:\Windows\System32\drivers\msiscsi.sys 68D5354A4A9692EEC24664C60F47D4A2
C:\Windows\System32\drivers\k57nd60a.sys 8438B8A45E16258064C19FBEC4EE069F
C:\Windows\System32\drivers\kbdclass.sys 701D7DB13B0815E7076EF4CB4CE981F8
C:\Windows\System32\drivers\kbdhid.sys 884EBBDDBF5968003B40185BD96FF0E6
C:\Windows\System32\drivers\kdnic.sys 6B3A0C7902811E6372643447E41F7048
C:\Windows\System32\Drivers\ksecdd.sys 38DADD5178E0299A1BB5A805B2136DEC
C:\Windows\System32\Drivers\ksecpkg.sys C2138FE291C8235C3A26CD04EE629163
C:\Windows\system32\drivers\ksthunk.sys E9BB0023D730701BB5D9839B44F5E6B5
C:\Windows\System32\drivers\lltdio.sys EC34EED89C34B27C292166B725AC7A7B
C:\Windows\System32\drivers\lsi_sas.sys 961F28D879D345BFA50AF51285C90F2E
C:\Windows\System32\drivers\lsi_sas2i.sys 6BFB8D1B3407518BE06B6F81F92FA0F5
C:\Windows\System32\drivers\lsi_sas3i.sys BE0E47988D78F731DEC2C0CB03E765CB
C:\Windows\System32\drivers\lsi_sss.sys F99BF02BE9219986817BF094981EEB18
C:\Windows\system32\drivers\luafv.sys 2FCF837196082864F66CFD9CAB256275
C:\Windows\system32\drivers\MBAMSwissArmy.sys 78488AF2AB2111D67B3C4044707A519B
C:\Windows\System32\drivers\megasas.sys 2ED29B635F35E31A1C0D3DDB7DD2AD03
C:\Windows\System32\drivers\megasr.sys 22E3CB85870879CBAE13C5095A8B12E3
C:\Windows\System32\drivers\mlx4_bus.sys D41920FBFFF2BBCBBC69A5B383AD022E
C:\Windows\system32\drivers\mmcss.sys 64BD0C87064EA20C2D3DC4199F9C239C
C:\Windows\System32\drivers\modem.sys 8D4B46FA84A3A3702EDADD37FAC6EDBA
C:\Windows\System32\drivers\monitor.sys 78FEC1BDB168370F131BFBFEA0A04E9D
C:\Windows\System32\drivers\mouclass.sys D1CC0833CFBC4222A95CAA5D0C8C78FF
C:\Windows\System32\drivers\mouhid.sys C2E05EC6B80BCF5AE362DA873E1BCE64
C:\Windows\System32\drivers\mountmgr.sys D5B7668A8F6C67C51FA5C6C513396D6C
C:\Windows\System32\drivers\mpsdrv.sys 5FBCB85D127BE21E3A9DAF11A13C00EA
C:\Windows\system32\drivers\mrxdav.sys BF6CA7EA5ECD6CF72D3D76652A9B8280
C:\Windows\System32\DRIVERS\mrxsmb.sys E7D59C52DE0C19C3179114D028EAA4B7
C:\Windows\System32\DRIVERS\mrxsmb10.sys 734D21F5B05D05DA2F85BE7EEF77DD43
C:\Windows\System32\DRIVERS\mrxsmb20.sys 600D5CC9DD2AE16691C71DCD4DAF8F1D
C:\Windows\System32\drivers\bridge.sys A4411C522D41707D5BCA817A5BB9E30B
C:\Windows\System32\Drivers\Msfs.sys D123343DDB02E372B02BF2C4293F835F
C:\Windows\System32\drivers\msgpiowin32.sys B3358F380BA3F29F56BE0F7734C24D5F
C:\Windows\System32\drivers\mshidkmdf.sys B2044D5D125F249680508EC0B2AAEFAC
C:\Windows\System32\drivers\mshidumdf.sys 36ABE7FC80BED4FE44754AE5CFB51432
C:\Windows\System32\drivers\msisadrv.sys 59307FEAFC9E72EEEC56B7FD7D294F4C
C:\Windows\system32\DRIVERS\MSKSSRV.sys E9457EDFEBC774199F907395C6D09CA2
C:\Windows\System32\drivers\mslldp.sys C85D79735641D27C5821C35ECDDC2334
C:\Windows\system32\DRIVERS\MSPCLOCK.sys EF75184B64356850D0F04D049C253526
C:\Windows\system32\DRIVERS\MSPQM.sys 543933D166C618E7588EA77707EC1683
C:\Windows\System32\Drivers\MsRPC.sys 182711E9DDF70121A20EBB61B2DFB9E8
C:\Windows\System32\drivers\mssmbios.sys E887FFDD6734C496407E9219225CB6FF
C:\Windows\system32\DRIVERS\MSTEE.sys 83A2AB75951000D681FABDB80C07AEFC
C:\Windows\System32\drivers\MTConfig.sys D65DB6F9285AF96151C937ABF027AEA8
C:\Windows\System32\Drivers\mup.sys 60F88248608315E13391C2F1C3B4473F
C:\Windows\System32\drivers\mvumis.sys 218705233D02776AE4D19CC37D985C1B
C:\Windows\System32\DRIVERS\nwifi.sys 549DFD8240CF20BFBD88AD9D89325DBF
C:\Windows\System32\drivers\ndfltr.sys B57CE307DA101C739885B7CC0678077F
C:\Windows\System32\drivers\ndis.sys E582DA849A58524E645545FB68B6625D
C:\Windows\System32\drivers\ndiscap.sys 202260E7CDD731A32AF62ABD1ABEE008
C:\Windows\System32\drivers\NdisImPlatform.sys A1D473D0CF10561F29B58EA7C5412A92
C:\Windows\System32\DRIVERS\ndistapi.sys 1A0AE283B8DE6BB76412A0F8213D45AC
C:\Windows\System32\drivers\ndisuio.sys A74EE2D2C0BFF5EC3A6185791868C4CA
C:\Windows\System32\drivers\NdisVirtualBus.sys 32A9BD1342640D48AD85C8B3E812B984
C:\Windows\System32\drivers\ndiswan.sys 6A6A8CF5EE61801375A38EBB871D4057
C:\Windows\System32\DRIVERS\ndiswan.sys 6A6A8CF5EE61801375A38EBB871D4057
C:\Windows\System32\DRIVERS\NDProxy.sys 50AEF8EF0064A91ABB08D858D039C9DE
C:\Windows\System32\drivers\Ndu.sys 883A36E2FF7FA3E1281CB575579FE3AF
C:\Windows\System32\drivers\netbios.sys 026618ECF6C4BEBDCB7885D42EC0DBE4
C:\Windows\System32\DRIVERS\netbt.sys C03E926B0E7D66D68994067231DC3246
C:\Windows\System32\Drivers\Npfs.sys 465DC580170CD844206D7E3EF1DBF2A1
C:\Windows\System32\drivers\npsvctrig.sys 29395C214D2CD4C81F73166AB988A797
C:\Windows\System32\drivers\nsiproxy.sys 2871225495F832A8C8A7DD1A17EDB3DC
C:\Windows\System32\Drivers\NTFS.sys 19BD8A88AAC580592668B070AC0727D9
C:\Windows\System32\Drivers\Null.sys 6DBD703320484C37CEA9E4E2D266A8CE
C:\Windows\System32\drivers\nvraid.sys 604D27CC38CC23493F218D0BB834B3FF
C:\Windows\System32\drivers\nvstor.sys 8B50D897657AB4A15FD9E251BBF7D107
C:\Windows\System32\drivers\nv_agp.sys 31F990B2B6B91E9D7A667405CE12FCB1
C:\Windows\System32\drivers\parport.sys 7D0FC96264C0F8F2C1321E33E8EB646C
C:\Windows\System32\drivers\partmgr.sys D330D74B5F99309B5CCA30AE41C57CDE
C:\Windows\System32\drivers\pci.sys 3F89E96BDA0A24A3D2DBB7CE1E625589
C:\Windows\System32\drivers\pciide.sys 2B4D98DF0CA57FB9536DBC80D2449D1F
C:\Windows\System32\drivers\pcmcia.sys F4D5793BF2E58AF15C6CF2FEEF9E73EB
C:\Windows\System32\drivers\pcw.sys 22A53744CEEADFFFD33BA010FAD95229
C:\Windows\System32\drivers\pdc.sys 34DDBE73E42A4EDED7BEFF66F270C1A4
C:\Windows\System32\drivers\peauth.sys E2F8376F9731D12A009C522036C6073A
C:\Windows\System32\drivers\percsas2i.sys 1398A85E59698067CBBE1D66A9C13ADF
C:\Windows\System32\drivers\percsas3i.sys 35F7C7AD709D909D618D9EDF987FC3ED
C:\Windows\System32\drivers\raspptp.sys 5BA6B9AD03B81546BA64E488C4EF9D17
C:\Windows\System32\drivers\processr.sys 21AECFF3EB5748CBE12538A2500EFDE5
C:\Windows\System32\drivers\pacer.sys 596FB6C5A72F34B7566930985E543806
C:\Windows\system32\drivers\qwavedrv.sys CFBA9C976CBF6796E5DC39EF59984021
C:\Windows\System32\DRIVERS\rasacd.sys 7B2AD8C55217B514C14281AB97B4E21D
C:\Windows\System32\drivers\AgileVpn.sys E15A9CE1E2E7D1C8DF97A4FC1FFE6289
C:\Windows\System32\drivers\rasl2tp.sys E3C82823B22463BC38AA4F8ADA852624
C:\Windows\System32\DRIVERS\raspppoe.sys 3369023EB5790A75BA7DABA14B75D922
C:\Windows\System32\drivers\rassstp.sys 1E32A8CD65C4AD0A827CFEB13034DA29
C:\Windows\System32\DRIVERS\rdbss.sys 1BB74617AE07539EC7C31C93F98644C7
C:\Windows\System32\drivers\rdpbus.sys D0221C13960E274CC539D72D5A842ED0
C:\Windows\System32\drivers\rdpdr.sys 1DC2CC74B51E4DC4CD5A20C1021E4010
C:\Windows\System32\drivers\rdpvideominiport.sys 177DF954D0DEC0465A380C75F6E7F65F
C:\Windows\System32\drivers\rdyboost.sys 5D1680871054D2B0B8A971BC8AB3B837
C:\Windows\System32\Drivers\ReFSv1.sys 341E6830DA70F65730300DAB4CB0B490
C:\Windows\system32\DRIVERS\RMCAST.sys DBBACE77DDE8CCFD85B37B114965C385
C:\Windows\System32\drivers\rspndr.sys 0AC5FCDC29ED97ECDEF1276425EE2059
C:\Windows\System32\drivers\vms3cap.sys 044890BB0D6CF1E23C1087234D320509
C:\Windows\System32\drivers\sbp2port.sys 530F797129776AA7E81994783A97E2AD
C:\Windows\System32\DRIVERS\scfilter.sys 9B6B1D4DB35A3D9BEAF023BC95E1F49D
C:\Windows\System32\drivers\sdbus.sys B32F13993145E815D7280C6F55B9523B
C:\Windows\System32\drivers\sdstor.sys DE6D7DC78D956928F59F7415A0F41E13
C:\Windows\SysWOW64\drivers\SECDRV.SYS 890CADA2AB7ACF53A5F9CCE7515522A2
C:\Windows\System32\drivers\SerCx.sys 67585C295FF2D221679E376B68893B35
C:\Windows\System32\drivers\SerCx2.sys B8C4852CBCAAC1374C08EC7445443824
C:\Windows\System32\drivers\serenum.sys D3A103944A8FCD78FD48B2B19092790C
C:\Windows\System32\drivers\serial.sys 249A563C48DFD9E42A37587653E003BB
C:\Windows\System32\drivers\sermouse.sys 0F5B43074AE731D2C6F061241C9D84A6
C:\Windows\System32\drivers\sfloppy.sys D9FE59276BD56A9643C32D5FACE2F251
C:\Windows\System32\drivers\SiSRaid2.sys ABBE803FE0BDAE0E5BE74DDEFBE62F23
C:\Windows\System32\drivers\sisraid4.sys 6043DF55CFE3C7ACF477645FA64DEA98
C:\Windows\System32\drivers\spaceport.sys 1A6CB30F0EFC1632E6F1B852CA892583
C:\Windows\System32\drivers\SpbCx.sys E1C158F6C00359278727A2CEE5D2ED71
C:\Windows\System32\DRIVERS\srv.sys B5C5436E7DEA7048822809D16B6E861D
C:\Windows\System32\DRIVERS\srv2.sys ACCFA2FAAF77F5F9D72D3496B36057A8
C:\Windows\System32\DRIVERS\srvnet.sys FEABA2601AD0D819760F84D1A3ECE5AF
C:\Windows\System32\drivers\stexstor.sys CCDA497C880AD16D87EDFAEFCFB2EDF5
C:\Windows\System32\drivers\storahci.sys BF8EA6FC3358C2F69678E3E94F764F84
C:\Windows\System32\drivers\vmstorfl.sys 32FF460DA8C1F370F5C08B7654899B73
C:\Windows\System32\drivers\stornvme.sys CC21DB3EF619B9480FE31A4EFE92CBEB
C:\Windows\System32\drivers\storqosflt.sys 390B8A75768E2689586539C224520895
C:\Windows\System32\drivers\storufs.sys 770A92D9D3A0BF61C97C3AFCB36847D9
C:\Windows\System32\drivers\storvsc.sys 736A2418E3E7F3DB3CF6EB0A55D1D581
C:\Windows\System32\drivers\swenum.sys BD98B0225BCD49E8A62F4F8EE1D1F613
C:\Windows\System32\drivers\Synth3dVsc.sys CAE4B27B469C583131EA5AAE622F5D76
C:\Windows\System32\drivers\tcpip.sys CF63BF6AAEDF721E37F9E216FD321B8E
C:\Windows\System32\drivers\tcpip.sys CF63BF6AAEDF721E37F9E216FD321B8E
C:\Windows\System32\drivers\tcpipreg.sys 17F37EC9042D84561C550620643D9A85
C:\Windows\system32\DRIVERS\tdx.sys 91D3F2A6253EF83EFBD7903028F58C4D
C:\Windows\System32\drivers\terminpt.sys E730D0EB1B84EBC98423FC8D285EDBC0
C:\Windows\System32\drivers\tpm.sys 87B9ABB965F7AF987D52791F0DD1663D
C:\Windows\System32\drivers\TrueSight.sys 0D5A09B08568760AE85A801FCBC0F83D
C:\Windows\System32\drivers\tsusbflt.sys 48E828C66AB016E48F2CB4DD585315FD
C:\Windows\System32\drivers\TsUsbGD.sys 267C76EE60736EA5A1811A53FA02AABE
C:\Windows\System32\drivers\tunnel.sys 8CE72F094B822AD5EE9C3A3AFC0C16B6
C:\Windows\System32\drivers\uagp35.sys 42C546414F80BD6C0137FC3A106F8A69
C:\Windows\System32\drivers\uaspstor.sys 1686DBC81748B096232B15F16C302985
C:\Windows\System32\Drivers\UcmCx.sys 82D3B1F4D80057826AA649D78147DE36
C:\Windows\System32\drivers\UcmUcsi.sys 1C95F7CE37D9EFB90EBE987A9712356C
C:\Windows\System32\drivers\ucx01000.sys AED081772091C98173905E2DF28C223B
C:\Windows\System32\drivers\udecx.sys DCA34A111C29E4578DF2B8CEA3C7CDBD
C:\Windows\System32\DRIVERS\udfs.sys 718A956AE00CE086F381044AB66CC29C
C:\Windows\System32\drivers\UEFI.sys BA760F8E66428BA9FF1E8BFBC6248136
C:\Windows\System32\drivers\ufx01000.sys 05DD22294A4F3F89E52351C7721E6D2C
C:\Windows\System32\drivers\UfxChipidea.sys 2B1DABA97DDF5365FC66EE7DEDD86A13
C:\Windows\System32\drivers\ufxsynopsys.sys 0B1013A5204A6B9EEB38F4EE1E430CE6
C:\Windows\System32\drivers\uliagpkx.sys 6DE78C04BF32ECA7AF3064F53687C9A5
C:\Windows\System32\drivers\umbus.sys 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4
C:\Windows\System32\drivers\umpass.sys 11680607944A719EF20E0E740785712A
C:\Windows\System32\drivers\urschipidea.sys 2410A0C20D21A25E6C01979FA886BE90
C:\Windows\System32\drivers\urscx01000.sys 6E59CE43B6BA5AA1ADCF36A4DBBB92BB
C:\Windows\System32\drivers\urssynopsys.sys E8A59FA109A22FC07E44BDFCC9727DBD
C:\Windows\System32\drivers\usbccgp.sys D8A44550ECE102B6443F5D54DCE7DAB3
C:\Windows\System32\drivers\usbcir.sys 66B3D22DAB5312FF238ABF5C6D9F8FAB
C:\Windows\System32\drivers\usbehci.sys 3E4F20DB902D2E2914F3FF3DB9772200
C:\Windows\System32\drivers\usbhub.sys 41F7F00D76904416EF1F9EFA1A4C37A2
C:\Windows\System32\drivers\UsbHub3.sys E7463CE8579A0418A98BE9BE42C647D7
C:\Windows\System32\drivers\usbohci.sys DAB35CCA86F5FBE77D870A40089BC4A1
C:\Windows\System32\drivers\usbprint.sys 21162F65C7756AAECAEBED9E67D0A5FE
C:\Windows\System32\drivers\usbser.sys 4AAD6547953D373A1EB5B2DF583D868B
C:\Windows\System32\drivers\USBSTOR.SYS 8949F77132A4F8F3BA17C6727099F002
C:\Windows\System32\drivers\usbuhci.sys 8B3E458A8851F9A3B2109B1680EE1159
C:\Windows\System32\drivers\USBXHCI.SYS 9E9D58F5E1702955B2F4D62996F80E8E
C:\Windows\System32\drivers\vdrvroot.sys E1BE37312785A71862516F66B3FD24CE
C:\Windows\System32\drivers\VerifierExt.sys E42C0F2850735FF9D908B9DB581E6314
C:\Windows\System32\drivers\vhdmp.sys EC15FD6A28757793E2DA394CD94ABD52
C:\Windows\System32\drivers\vhf.sys D0C9632C350F46786643A069251BC249
C:\Windows\System32\drivers\vmbus.sys E886CB75DA2B6EB35469EF10135624C7
C:\Windows\System32\drivers\VMBusHID.sys 46D2EC27820EC0F798F85821E53C2942
C:\Windows\System32\drivers\volmgr.sys B9265F47E7A354BAAA0AF5CBA3F8F7CE
C:\Windows\System32\drivers\volmgrx.sys BEE9C8B72AB752B794F69C2B9B3678AA
C:\Windows\System32\drivers\volsnap.sys E1F91A727A04C9F8199D04FF3BBBF63C
C:\Windows\System32\drivers\vpci.sys F7B1B1101271E31F43CC76E890704F51
C:\Windows\System32\drivers\vsmraid.sys D48ED0A08BD2FD25A833E6AC99623091
C:\Windows\System32\drivers\vstxraid.sys 6990D4AFDF545669D4E6C232F26DE1FB
C:\Windows\System32\drivers\vwifibus.sys 1EE11F0508C58EF081F4176E66D6970B
C:\Windows\System32\drivers\vwififlt.sys 938E4EF58E42D252B742B0E243011B90
C:\Windows\System32\drivers\wacompen.sys 00C27B64C758C111E5D78A70DE6CA2B6
C:\Windows\System32\DRIVERS\wanarp.sys 8CB53620B2C2F0641DD7563EA0FDF491
C:\Windows\System32\DRIVERS\wanarp.sys 8CB53620B2C2F0641DD7563EA0FDF491
C:\Windows\system32\drivers\WdBoot.sys 069D3D6E20AD753B34FCE856F0436869
C:\Windows\System32\drivers\Wdf01000.sys 6CC727E94CD84E9720FDCDA8089CABCC
C:\Windows\system32\drivers\WdFilter.sys E3E97151A1D1E87BB2D5371F66C5F169
C:\Windows\System32\DRIVERS\wdiwifi.sys 2BC2E99623119521EEF7910A11D0FDE0
C:\Windows\System32\Drivers\WdNisDrv.sys 07B043160399AF4009054E2EA3464BF4
C:\Windows\System32\drivers\wfplwfs.sys C11272713719922DE5711094333BD166
C:\Windows\System32\drivers\wimmount.sys EF536C54AB9281FDC4E83B07279FCFC4
C:\Windows\System32\drivers\WindowsTrustedRT.sys D8966A76408107224C6013993135DD78
C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 8B102A7B6CE326FD4208CC7C2D183343
C:\Windows\System32\drivers\winmad.sys 4A53441C1C4D2878BEF27E381138BB2D
C:\Windows\System32\drivers\WinUSB.SYS 260907CE034FE327AC99BDA4153AB22F
C:\Windows\System32\drivers\winverbs.sys 40A3E8D729F458B2C9A8BD9380FF83D5
C:\Windows\System32\drivers\wmiacpi.sys 8F010BF65238F3F822D22BA12831796E
C:\Windows\System32\Drivers\Wof.sys 2A9650FCC696DB28E45EA8B33B99B8E6
C:\Windows\System32\DRIVERS\wpcfltr.sys 22C52D7EE7C7D0E02C8EFD8CAE8E3A71
C:\Windows\System32\drivers\WpdUpFltr.sys 1C08E424CBDD5065BB7266F8C048C1B1
C:\Windows\system32\drivers\ws2ifsl.sys 638B43D39A3D0B47024555CF1095E6F1
C:\Windows\System32\drivers\WudfPf.sys A928F25CB62232F413EE655352856E10
C:\Windows\System32\drivers\WudfRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\Windows\system32\DRIVERS\WUDFRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\Windows\system32\DRIVERS\WUDFRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\Windows\System32\drivers\xboxgip.sys F279536122B83FD0D8E158AA753E1B7C
C:\Windows\System32\drivers\xinputhid.sys DA0807D87A62D076C29C4E30F1E84F46
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-22 21:25 - 2016-09-22 21:25 - 00033449 _____ C:\Users\Marek\Downloads\FRST.txt
2016-09-22 21:25 - 2016-09-22 21:25 - 00000000 ____D C:\FRST
2016-09-22 21:24 - 2016-09-22 21:24 - 02402816 _____ (Farbar) C:\Users\Marek\Downloads\FRST64.exe
2016-09-22 21:22 - 2016-09-22 21:23 - 01753088 _____ (Farbar) C:\Users\Marek\Downloads\FRST.exe
2016-09-22 21:12 - 2016-09-22 21:12 - 00001602 _____ C:\Users\Marek\Desktop\iexplore.exe – zástupce.lnk
2016-09-22 19:18 - 2016-09-22 19:18 - 00000000 ____D C:\Users\Marek\AppData\Local\CrashDumps
2016-09-22 19:14 - 2016-09-22 19:14 - 00000958 _____ C:\Users\Marek\Desktop\JRT22.9.txt
2016-09-22 13:43 - 2016-09-22 13:43 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-09-22 13:43 - 2016-09-22 13:43 - 00000000 ____D C:\Program Files\CMAK
2016-09-22 13:43 - 2016-09-22 13:43 - 00000000 ____D C:\Program Files (x86)\CMAK
2016-09-22 13:00 - 2016-09-22 13:00 - 00000000 ____D C:\Users\Marek\AppData\Local\CEF
2016-09-22 12:50 - 2016-09-22 12:50 - 00000000 ____D C:\Users\Marek\AppData\Local\ActiveSync
2016-09-22 12:41 - 2016-09-22 12:41 - 00222108 _____ C:\Windows\Minidump\092216-41390-01.dmp
2016-09-22 04:18 - 2016-09-22 19:44 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-22 01:35 - 2016-09-22 02:06 - 09647696 _____ (Crawler Group ) C:\Users\Marek\Downloads\SpywareTerminatorSetup.exe
2016-09-22 01:08 - 2016-09-22 19:55 - 00000000 ____D C:\AdwCleaner
2016-09-22 01:07 - 2016-09-22 01:08 - 03861056 _____ C:\Users\Marek\Desktop\bitch.exe
2016-09-22 00:39 - 2016-09-22 00:48 - 00000000 ____D C:\ProgramData\HitmanPro
2016-09-22 00:38 - 2016-09-22 00:40 - 11572656 _____ (SurfRight B.V.) C:\Users\Marek\Downloads\HitmanPro_x64.exe
2016-09-21 23:37 - 2016-09-21 23:38 - 03996978 _____ C:\Users\Marek\Downloads\US_W150dv3Br_V1.0.0.2_ANNEX_B_en_TD.rar
2016-09-21 22:34 - 2016-09-21 22:34 - 00000000 _____ C:\Users\Marek\Downloads\HitmanPro_x64 (1).exe.rqbwm9i.partial
2016-09-21 22:32 - 2016-09-21 22:32 - 00000000 _____ C:\Users\Marek\Downloads\HitmanPro_x64.exe.2wskcqp.partial
2016-09-21 22:26 - 2016-09-22 17:58 - 00004212 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2E2D68EF-05E2-4478-BDAF-92941C5681BC}
2016-09-21 22:15 - 2016-09-21 22:15 - 00004618 _____ C:\Users\Marek\Desktop\rk_AEB321.09!!!!!!!!!!!!!!!!!!!!.tmp.txt
2016-09-21 21:22 - 2016-09-21 21:22 - 00000665 _____ C:\Users\Marek\Desktop\JRT21.9!!!!!!!!!!.txt
2016-09-21 18:53 - 2016-09-21 18:54 - 00004689 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-21-18-52-52.txt
2016-09-21 18:48 - 2016-09-21 18:48 - 00000022 _____ C:\Users\Marek\Downloads\ESETPoweliksCleaner.exe_20160921.184817.1600.zip
2016-09-21 17:58 - 2016-09-21 17:58 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Macromedia
2016-09-21 17:39 - 2016-09-21 17:39 - 00000022 _____ C:\Users\Marek\Downloads\ESETPoweliksCleaner.exe_20160921.173940.2936.zip
2016-09-21 16:31 - 2016-09-21 16:31 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Lexicon PCM Native
2016-09-21 15:48 - 2016-09-22 19:30 - 00000000 ____D C:\ProgramData\TEMP
2016-09-21 15:46 - 2016-09-21 17:35 - 00000000 ____D C:\Program Files (x86)\Trojan Remover
2016-09-21 15:46 - 2016-09-21 15:46 - 00000000 ____D C:\Users\Marek\Documents\Simply Super Software
2016-09-21 15:46 - 2016-09-21 15:46 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Simply Super Software
2016-09-21 15:46 - 2016-09-21 15:46 - 00000000 ____D C:\ProgramData\Simply Super Software
2016-09-21 15:46 - 2016-09-21 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
2016-09-21 15:42 - 2016-09-21 15:46 - 37754648 _____ (Simply Super Software ) C:\Users\Marek\Downloads\trjsetup694.exe
2016-09-21 15:30 - 2016-09-21 15:30 - 01270466 _____ C:\Users\Marek\Downloads\ProcessExplorer.zip
2016-09-21 12:57 - 2016-09-21 12:57 - 00135360 _____ (Symantec Corporation) C:\Users\Marek\Downloads\FixBlast.exe
2016-09-21 12:53 - 2016-09-21 12:53 - 00224968 _____ (ESET) C:\Users\Marek\Downloads\ESETPoweliksCleaner.exe
2016-09-21 12:53 - 2016-09-21 12:53 - 00000022 _____ C:\Users\Marek\Downloads\ESETPoweliksCleaner.exe_20160921.125359.1888.zip
2016-09-21 12:33 - 2016-09-21 12:33 - 00013836 _____ C:\Users\Marek\Desktop\infoRS.txt
2016-09-21 12:21 - 2016-09-22 20:57 - 00000000 ____D C:\Program Files\trend micro
2016-09-21 12:21 - 2016-09-21 12:21 - 00000000 ____D C:\rsit
2016-09-21 12:20 - 2016-09-21 12:21 - 01222144 _____ C:\Users\Marek\Downloads\RSITx64.exe
2016-09-21 11:23 - 2016-09-21 11:28 - 00007482 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-21-11-23-37.txt
2016-09-20 16:10 - 2016-09-20 17:17 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2016-09-20 14:06 - 2016-09-20 14:06 - 00000000 ____D C:\Users\Marek\Downloads\Kaspersky Rescue2Usb
2016-09-20 14:03 - 2016-09-20 14:06 - 00387584 _____ C:\Users\Marek\Downloads\rescue2usb.exe
2016-09-20 13:34 - 2016-09-20 13:34 - 00000000 ____D C:\Users\Marek\AppData\Local\Disc_Soft_Ltd
2016-09-20 13:31 - 2016-09-20 13:31 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-09-20 13:30 - 2016-09-20 13:31 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-09-20 13:30 - 2016-09-20 13:30 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-09-20 13:30 - 2016-09-20 13:30 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-09-20 13:30 - 2016-09-20 13:30 - 00001814 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-09-20 13:30 - 2016-09-20 13:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-09-20 13:30 - 2016-09-20 13:30 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-09-20 13:25 - 2016-09-20 13:26 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Marek\Downloads\DTLiteInstaller.exe
2016-09-20 13:16 - 2016-09-20 13:16 - 01458587 _____ C:\Users\Marek\Downloads\kasp10.0_rescuedisk_en.pdf
2016-09-20 12:51 - 2016-09-20 13:15 - 295557120 _____ C:\Users\Marek\Downloads\kav_rescue_10.iso
2016-09-20 03:32 - 2016-09-20 03:22 - 03449380 _____ C:\Users\Marek\Downloads\FIX.Txt
2016-09-20 03:32 - 2016-09-20 03:22 - 00061994 _____ C:\Users\Marek\Desktop\FIX.Txt
2016-09-20 03:02 - 2016-09-20 03:03 - 00001830 _____ C:\Users\Marek\Desktop\sc-cleaner.txt
2016-09-20 02:26 - 2016-09-20 02:28 - 00006752 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-20-2-26-23.txt
2016-09-20 02:02 - 2016-09-20 02:03 - 00808913 _____ C:\Users\Marek\Downloads\radix_installer.zip
2016-09-20 01:23 - 2016-09-20 02:06 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-09-19 19:37 - 2016-09-19 19:37 - 00002104 _____ C:\Users\Marek\Desktop\aswMBR19.9.txt
2016-09-18 20:25 - 2016-09-18 20:29 - 00000000 ____D C:\Windows\system32\MRT
2016-09-18 20:25 - 2016-09-18 20:25 - 144199024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-09-18 18:46 - 2016-09-07 07:39 - 02656952 _____ C:\Windows\system32\CoreUIComponents.dll
2016-09-18 18:46 - 2016-09-07 07:39 - 01098640 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2016-09-18 18:46 - 2016-09-07 07:39 - 00277848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2016-09-18 18:46 - 2016-09-07 07:26 - 02544256 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 01299504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 01152320 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 01092464 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 00847648 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-09-18 18:46 - 2016-09-07 07:26 - 00588320 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2016-09-18 18:46 - 2016-09-07 07:25 - 02607336 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-09-18 18:46 - 2016-09-07 07:24 - 01349632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2016-09-18 18:46 - 2016-09-07 07:24 - 00511312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-09-18 18:46 - 2016-09-07 07:24 - 00496360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll
2016-09-18 18:46 - 2016-09-07 07:23 - 01750440 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2016-09-18 18:46 - 2016-09-07 07:23 - 01603224 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2016-09-18 18:46 - 2016-09-07 07:23 - 01040792 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2016-09-18 18:46 - 2016-09-07 07:23 - 00725776 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2016-09-18 18:46 - 2016-09-07 07:20 - 00569744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2016-09-18 18:46 - 2016-09-07 07:19 - 00294752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-09-18 18:46 - 2016-09-07 07:15 - 00911640 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2016-09-18 18:46 - 2016-09-07 07:12 - 01174008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-09-18 18:46 - 2016-09-07 06:48 - 22379520 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-09-18 18:46 - 2016-09-07 06:48 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-09-18 18:46 - 2016-09-07 06:47 - 00824320 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2016-09-18 18:46 - 2016-09-07 06:43 - 16985600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-09-18 18:46 - 2016-09-07 06:42 - 00572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2016-09-18 18:46 - 2016-09-07 06:39 - 01567744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-09-18 18:46 - 2016-09-07 06:37 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 24611840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 00814592 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 00393216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2016-09-18 18:46 - 2016-09-07 06:35 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModelShim.dll
2016-09-18 18:46 - 2016-09-07 06:34 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00643584 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2016-09-18 18:46 - 2016-09-07 06:32 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-09-18 18:46 - 2016-09-07 06:31 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2016-09-18 18:46 - 2016-09-07 06:31 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-09-18 18:46 - 2016-09-07 06:31 - 00753664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2016-09-18 18:46 - 2016-09-07 06:31 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-09-18 18:46 - 2016-09-07 06:31 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 18676224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 02127360 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-09-18 18:46 - 2016-09-07 06:30 - 01707520 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 01001472 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 00904704 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-09-18 18:46 - 2016-09-07 06:30 - 00602624 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-09-18 18:46 - 2016-09-07 06:29 - 19350016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-09-18 18:46 - 2016-09-07 06:28 - 00938496 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-09-18 18:46 - 2016-09-07 06:28 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-09-18 18:46 - 2016-09-07 06:28 - 00284160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2016-09-18 18:46 - 2016-09-07 06:27 - 01743872 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2016-09-18 18:46 - 2016-09-07 06:27 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2016-09-18 18:46 - 2016-09-07 06:27 - 00963072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2016-09-18 18:46 - 2016-09-07 06:26 - 13392384 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-09-18 18:46 - 2016-09-07 06:26 - 02050048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-09-18 18:46 - 2016-09-07 06:26 - 01508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmsipc.dll
2016-09-18 18:46 - 2016-09-07 06:26 - 00854528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2016-09-18 18:46 - 2016-09-07 06:26 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-09-18 18:46 - 2016-09-07 06:25 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Pimstore.dll
2016-09-18 18:46 - 2016-09-07 06:25 - 00769536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2016-09-18 18:46 - 2016-09-07 06:24 - 03695104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2016-09-18 18:46 - 2016-09-07 06:24 - 03428864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2016-09-18 18:46 - 2016-09-07 06:24 - 01276928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2016-09-18 18:46 - 2016-09-07 06:24 - 00785920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2016-09-18 18:46 - 2016-09-07 06:23 - 00980480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcsecproc.dll
2016-09-18 18:46 - 2016-09-07 06:23 - 00838144 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2016-09-18 18:46 - 2016-09-07 06:23 - 00701952 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2016-09-18 18:46 - 2016-09-07 06:22 - 12134400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-09-18 18:46 - 2016-09-07 06:22 - 02582016 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-09-18 18:46 - 2016-09-07 06:21 - 03046400 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2016-09-18 18:46 - 2016-09-07 06:21 - 01797120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-09-18 18:46 - 2016-09-07 06:20 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-09-18 18:46 - 2016-09-07 06:19 - 03663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-09-18 18:46 - 2016-09-07 06:19 - 02102272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2016-09-18 18:46 - 2016-09-07 06:19 - 01072128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2016-09-18 18:46 - 2016-09-07 06:18 - 03577344 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-09-18 18:46 - 2016-09-07 06:18 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2016-09-18 18:46 - 2016-09-07 06:18 - 00592384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2016-09-18 18:46 - 2016-09-07 06:18 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\XpsDocumentTargetPrint.dll
2016-09-18 18:46 - 2016-09-07 06:17 - 02679808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2016-09-18 18:46 - 2016-09-07 06:17 - 02285568 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 04412928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 03671040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02911744 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02597888 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02280960 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 02217984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 01676800 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 01194496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-09-18 18:46 - 2016-09-07 06:16 - 01123328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 07831552 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 05659136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 02604032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 02055168 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 00835072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2016-09-18 18:46 - 2016-09-07 06:15 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hnetcfg.dll
2016-09-18 18:46 - 2016-09-07 06:14 - 06743040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-09-18 18:46 - 2016-09-07 06:14 - 04895232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-09-18 18:46 - 2016-09-07 06:14 - 01946112 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-09-18 18:46 - 2016-09-07 06:13 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-09-18 18:46 - 2016-09-07 06:13 - 02874880 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2016-09-18 18:46 - 2016-09-07 06:11 - 03065344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2016-09-18 18:46 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2016-09-18 18:46 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-09-18 18:46 - 2016-07-01 06:38 - 01083656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2016-09-18 18:46 - 2016-07-01 06:38 - 00256192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2016-09-18 18:46 - 2016-07-01 06:35 - 00498960 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2016-09-18 18:46 - 2016-07-01 05:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-09-18 18:46 - 2016-07-01 05:46 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2016-09-18 18:46 - 2016-07-01 05:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2016-09-18 18:46 - 2016-07-01 05:42 - 02088960 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-09-18 18:46 - 2016-07-01 05:42 - 01434112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2016-09-18 18:46 - 2016-07-01 05:41 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2016-09-18 18:46 - 2016-07-01 05:40 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll
2016-09-18 18:46 - 2016-07-01 05:40 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2016-09-18 18:46 - 2016-07-01 05:40 - 00496640 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-09-18 18:46 - 2016-07-01 05:32 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-09-18 18:46 - 2016-07-01 05:32 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimCfg.dll
2016-09-18 18:46 - 2016-07-01 05:28 - 00578048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2016-09-18 18:46 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-09-18 18:46 - 2016-05-28 07:23 - 00312160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-09-18 18:46 - 2016-05-28 06:22 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2016-09-18 18:46 - 2016-05-28 06:18 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-09-18 18:46 - 2016-05-28 06:16 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2016-09-18 18:46 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-09-18 18:46 - 2016-05-06 06:53 - 00095072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdport.sys
2016-09-18 18:46 - 2016-04-23 07:28 - 01542816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-09-18 18:46 - 2016-04-23 06:26 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2016-09-18 18:46 - 2016-04-23 06:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2016-09-18 18:46 - 2016-04-23 06:24 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2016-09-18 18:46 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2016-09-18 18:46 - 2016-04-23 06:18 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-09-18 18:46 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-09-18 18:45 - 2016-09-07 07:39 - 01030408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-09-18 18:45 - 2016-09-07 07:39 - 00875480 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-09-18 18:45 - 2016-09-07 07:39 - 00845568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2016-09-18 18:45 - 2016-09-07 07:39 - 00754664 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2016-09-18 18:45 - 2016-09-07 07:39 - 00620176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-09-18 18:45 - 2016-09-07 07:39 - 00175120 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-09-18 18:45 - 2016-09-07 07:37 - 00572272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2016-09-18 18:45 - 2016-09-07 07:37 - 00129888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-09-18 18:45 - 2016-09-07 07:36 - 00405856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-09-18 18:45 - 2016-09-07 07:34 - 02587696 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-09-18 18:45 - 2016-09-07 07:33 - 02026736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-09-18 18:45 - 2016-09-07 07:33 - 01297760 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2016-09-18 18:45 - 2016-09-07 07:33 - 00986976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2016-09-18 18:45 - 2016-09-07 07:33 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-09-18 18:45 - 2016-09-07 07:27 - 00538632 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2016-09-18 18:45 - 2016-09-07 07:27 - 00413536 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2016-09-18 18:45 - 2016-09-07 07:26 - 00858952 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-09-18 18:45 - 2016-09-07 07:26 - 00785088 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-09-18 18:45 - 2016-09-07 07:26 - 00586200 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-09-18 18:45 - 2016-09-07 07:26 - 00245840 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-09-18 18:45 - 2016-09-07 07:26 - 00131424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufxsynopsys.sys
2016-09-18 18:45 - 2016-09-07 07:25 - 01447776 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2016-09-18 18:45 - 2016-09-07 07:25 - 01322248 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-09-18 18:45 - 2016-09-07 07:25 - 01270064 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-09-18 18:45 - 2016-09-07 07:24 - 03693064 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-09-18 18:45 - 2016-09-07 07:24 - 02180128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-09-18 18:45 - 2016-09-07 07:24 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-09-18 18:45 - 2016-09-07 07:24 - 00501600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-09-18 18:45 - 2016-09-07 07:24 - 00355672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2016-09-18 18:45 - 2016-09-07 07:23 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-09-18 18:45 - 2016-09-07 07:23 - 06605544 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-09-18 18:45 - 2016-09-07 07:23 - 06536248 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2016-09-18 18:45 - 2016-09-07 07:22 - 02937384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-09-18 18:45 - 2016-09-07 07:22 - 01128096 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2016-09-18 18:45 - 2016-09-07 07:22 - 01085728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2016-09-18 18:45 - 2016-09-07 07:22 - 00604920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-09-18 18:45 - 2016-09-07 07:21 - 04074160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-09-18 18:45 - 2016-09-07 07:21 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-09-18 18:45 - 2016-09-07 07:20 - 01355336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2016-09-18 18:45 - 2016-09-07 07:16 - 02773088 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-09-18 18:45 - 2016-09-07 07:16 - 02548936 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-09-18 18:45 - 2016-09-07 07:16 - 01988448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-09-18 18:45 - 2016-09-07 07:13 - 01865584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2016-09-18 18:45 - 2016-09-07 07:12 - 02195632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-09-18 18:45 - 2016-09-07 07:12 - 01522152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-09-18 18:45 - 2016-09-07 07:11 - 00057912 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-09-18 18:45 - 2016-09-07 07:08 - 00116216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-09-18 18:45 - 2016-09-07 07:07 - 01951848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2016-09-18 18:45 - 2016-09-07 06:52 - 01035776 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll
2016-09-18 18:45 - 2016-09-07 06:52 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-09-18 18:45 - 2016-09-07 06:49 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2016-09-18 18:45 - 2016-09-07 06:46 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2016-09-18 18:45 - 2016-09-07 06:46 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-09-18 18:45 - 2016-09-07 06:46 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2016-09-18 18:45 - 2016-09-07 06:45 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\spcompat.dll
2016-09-18 18:45 - 2016-09-07 06:45 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
2016-09-18 18:45 - 2016-09-07 06:44 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\wificonnapi.dll
2016-09-18 18:45 - 2016-09-07 06:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2016-09-18 18:45 - 2016-09-07 06:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\IconCodecService.dll
2016-09-18 18:45 - 2016-09-07 06:43 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2016-09-18 18:45 - 2016-09-07 06:43 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-09-18 18:45 - 2016-09-07 06:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MTConfig.sys
2016-09-18 18:45 - 2016-09-07 06:42 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosHostClient.dll
2016-09-18 18:45 - 2016-09-07 06:42 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\DictationManager.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\OnDemandConnRouteHelper.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\fwcfg.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\deviceassociation.dll
2016-09-18 18:45 - 2016-09-07 06:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2016-09-18 18:45 - 2016-09-07 06:40 - 00471040 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2016-09-18 18:45 - 2016-09-07 06:40 - 00361472 _____ (Microsoft Corporation) C:\Windows\system32\bdechangepin.exe
2016-09-18 18:45 - 2016-09-07 06:40 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll
2016-09-18 18:45 - 2016-09-07 06:40 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\CheckNetIsolation.exe
2016-09-18 18:45 - 2016-09-07 06:39 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-09-18 18:45 - 2016-09-07 06:39 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VoipRT.dll
2016-09-18 18:45 - 2016-09-07 06:39 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2016-09-18 18:45 - 2016-09-07 06:39 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2016-09-18 18:45 - 2016-09-07 06:39 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Cortana.ProxyStub.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00584704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\LegacyNetUXHost.exe
2016-09-18 18:45 - 2016-09-07 06:38 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Geolocation.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosStorage.dll
2016-09-18 18:45 - 2016-09-07 06:38 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-09-18 18:45 - 2016-09-07 06:38 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2016-09-18 18:45 - 2016-09-07 06:37 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00435712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2016-09-18 18:45 - 2016-09-07 06:37 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00373248 _____ (Microsoft Corporation) C:\Windows\system32\WmpDui.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\dialserver.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapsBtSvc.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceassociation.dll
2016-09-18 18:45 - 2016-09-07 06:37 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 01568768 _____ (Microsoft Corporation) C:\Windows\system32\msdt.exe
2016-09-18 18:45 - 2016-09-07 06:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\authfwcfg.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe
2016-09-18 18:45 - 2016-09-07 06:36 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00102912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2016-09-18 18:45 - 2016-09-07 06:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwcfg.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00715264 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2016-09-18 18:45 - 2016-09-07 06:35 - 00704000 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SmsRouterSvc.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00577536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00394240 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2016-09-18 18:45 - 2016-09-07 06:35 - 00205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oemlicense.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00119296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.ps.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcshext.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppCapture.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2016-09-18 18:45 - 2016-09-07 06:35 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CheckNetIsolation.exe
2016-09-18 18:45 - 2016-09-07 06:34 - 00952320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00510464 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\WalletService.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00387072 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2016-09-18 18:45 - 2016-09-07 06:34 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\edputil.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00300032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcbase.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00278016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2016-09-18 18:45 - 2016-09-07 06:34 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00904704 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WmpDui.dll
2016-09-18 18:45 - 2016-09-07 06:33 - 00238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 04213248 _____ (Microsoft Corporation) C:\Windows\system32\WlanMM.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00947200 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc_ssp.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\SmartCardSimulator.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00651776 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2016-09-18 18:45 - 2016-09-07 06:32 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00471040 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\das.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-09-18 18:45 - 2016-09-07 06:32 - 00386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00339456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2016-09-18 18:45 - 2016-09-07 06:32 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2016-09-18 18:45 - 2016-09-07 06:32 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\facecredentialprovider.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 09920512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 01985024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 01094656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00900608 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00839680 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00821760 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00607232 _____ (Microsoft Corporation) C:\Windows\system32\AppxApplicabilityEngine.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00579072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2016-09-18 18:45 - 2016-09-07 06:31 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\WLanConn.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00453632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00435200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authfwcfg.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2016-09-18 18:45 - 2016-09-07 06:31 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-09-18 18:45 - 2016-09-07 06:31 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 02476032 _____ (Microsoft Corporation) C:\Windows\system32\MSAJApi.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 01575936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00817152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Search.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00698368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00576000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\filemgmt.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00436224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00349696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2016-09-18 18:45 - 2016-09-07 06:30 - 00294912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneOm.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 07977984 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 02624512 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 01902592 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 01319424 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-09-18 18:45 - 2016-09-07 06:29 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2016-09-18 18:45 - 2016-09-07 06:29 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 04143104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlanMM.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 01752576 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 01648640 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 01291776 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00879616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00780800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00755712 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2016-09-18 18:45 - 2016-09-07 06:28 - 00674816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00673280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcsecproc_ssp.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00638976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00614400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSh.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WLanConn.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2016-09-18 18:45 - 2016-09-07 06:28 - 00337920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2016-09-18 18:45 - 2016-09-07 06:28 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysdm.cpl
2016-09-18 18:45 - 2016-09-07 06:27 - 01872896 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 01139712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00957440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00784896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00708608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00549888 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00502272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00477184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00329216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-09-18 18:45 - 2016-09-07 06:27 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinelsa.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 01915392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAJApi.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 01588224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 01537536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 01497088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2016-09-18 18:45 - 2016-09-07 06:26 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00673280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00645632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Search.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00638464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2016-09-18 18:45 - 2016-09-07 06:26 - 00321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syncutil.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 06312448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 06296064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 04404736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 01944576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 01526272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2016-09-18 18:45 - 2016-09-07 06:25 - 00501760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2016-09-18 18:45 - 2016-09-07 06:25 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licensingdiag.exe
2016-09-18 18:45 - 2016-09-07 06:24 - 07200256 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-09-18 18:45 - 2016-09-07 06:24 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2016-09-18 18:45 - 2016-09-07 06:24 - 00460800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2016-09-18 18:45 - 2016-09-07 06:23 - 01562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2016-09-18 18:45 - 2016-09-07 06:23 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2016-09-18 18:45 - 2016-09-07 06:23 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2016-09-18 18:45 - 2016-09-07 06:23 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDistSh.dll
2016-09-18 18:45 - 2016-09-07 06:22 - 02106368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2016-09-18 18:45 - 2016-09-07 06:22 - 01987072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-09-18 18:45 - 2016-09-07 06:22 - 01297408 _____ (Microsoft Corporation) C:\Windows\system32\SensorDataService.exe
2016-09-18 18:45 - 2016-09-07 06:22 - 00778240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2016-09-18 18:45 - 2016-09-07 06:21 - 02527232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2016-09-18 18:45 - 2016-09-07 06:21 - 01410560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2016-09-18 18:45 - 2016-09-07 06:21 - 01063936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2016-09-18 18:45 - 2016-09-07 06:21 - 00639488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2016-09-18 18:45 - 2016-09-07 06:20 - 00900608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:45 - 2016-09-07 06:20 - 00882688 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-09-18 18:45 - 2016-09-07 06:20 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2016-09-18 18:45 - 2016-09-07 06:20 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 05325824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 04169728 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 02798080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 02295808 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 01388544 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-09-18 18:45 - 2016-09-07 06:19 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 07536640 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 05503488 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 05205504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 04826624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-09-18 18:45 - 2016-09-07 06:18 - 00450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncController.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 03459584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 02175488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 02062336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 01674240 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 01526784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2016-09-18 18:45 - 2016-09-07 06:17 - 01502208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 02680320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 02444288 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 02361856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 02155008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsDocumentTargetPrint.dll
2016-09-18 18:45 - 2016-09-07 06:16 - 00232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2016-09-18 18:45 - 2016-09-07 06:16 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 02772480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01626112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01448960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01249280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2016-09-18 18:45 - 2016-09-07 06:15 - 01121792 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 03355136 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 03351040 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 03078656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 02573824 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 02553856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 02177024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 01799680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 01732096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 01708032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-09-18 18:45 - 2016-09-07 06:14 - 01487872 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll
2016-09-18 18:45 - 2016-09-07 06:12 - 02180096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-09-18 18:45 - 2016-09-07 06:12 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2016-09-18 18:45 - 2016-09-07 06:12 - 00339456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-09-18 18:45 - 2016-09-07 06:11 - 03294208 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2016-09-18 18:45 - 2016-09-07 06:11 - 03053568 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-09-18 18:45 - 2016-09-07 06:10 - 01035776 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2016-09-18 18:45 - 2016-09-07 06:10 - 00712704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2016-09-18 18:45 - 2016-09-07 06:10 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2016-09-18 18:45 - 2016-09-07 06:09 - 00824832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-09-18 18:45 - 2016-09-07 06:09 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2016-09-18 18:45 - 2016-09-07 06:09 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-09-18 18:45 - 2016-09-05 02:37 - 00445765 _____ C:\Windows\system32\ApnDatabase.xml
Re: Neodstranitelný multiexplorer virus
2016-09-18 18:45 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-09-18 18:45 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-09-18 18:45 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-09-18 18:45 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-09-18 18:45 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-09-18 18:45 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2016-09-18 18:45 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-09-18 18:45 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2016-09-18 18:45 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-09-18 18:45 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2016-09-18 18:45 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-09-18 18:45 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-09-18 18:45 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2016-09-18 18:45 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2016-09-18 18:45 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2016-09-18 18:45 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-09-18 18:45 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-09-18 18:45 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-09-18 18:45 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-09-18 18:45 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2016-09-18 18:45 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-09-18 18:45 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdlrecover.exe
2016-09-18 18:45 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2016-09-18 18:45 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2016-09-18 18:45 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2016-09-18 18:45 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2016-09-18 18:45 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-09-18 18:45 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-09-18 18:45 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2016-09-18 18:45 - 2016-07-01 07:30 - 01223872 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-09-18 18:45 - 2016-07-01 07:30 - 00284352 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2016-09-18 18:45 - 2016-07-01 06:35 - 00035656 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-09-18 18:45 - 2016-07-01 06:32 - 00106928 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2016-09-18 18:45 - 2016-07-01 06:31 - 01848584 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-09-18 18:45 - 2016-07-01 06:23 - 00032040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-09-18 18:45 - 2016-07-01 06:21 - 02403168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-09-18 18:45 - 2016-07-01 06:21 - 00376536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2016-09-18 18:45 - 2016-07-01 06:18 - 00064584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Clipc.dll
2016-09-18 18:45 - 2016-07-01 06:17 - 01536600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-09-18 18:45 - 2016-07-01 06:10 - 00675064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2016-09-18 18:45 - 2016-07-01 05:57 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\cdpreference.exe
2016-09-18 18:45 - 2016-07-01 05:55 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\LegacyNetUX.dll
2016-09-18 18:45 - 2016-07-01 05:52 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll
2016-09-18 18:45 - 2016-07-01 05:52 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2016-09-18 18:45 - 2016-07-01 05:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45 - 2016-07-01 05:50 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-09-18 18:45 - 2016-07-01 05:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2016-09-18 18:45 - 2016-07-01 05:48 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2016-09-18 18:45 - 2016-07-01 05:48 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2016-09-18 18:45 - 2016-07-01 05:47 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\dmdskmgr.dll
2016-09-18 18:45 - 2016-07-01 05:46 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2016-09-18 18:45 - 2016-07-01 05:45 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2016-09-18 18:45 - 2016-07-01 05:45 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2016-09-18 18:45 - 2016-07-01 05:45 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2016-09-18 18:45 - 2016-07-01 05:44 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2016-09-18 18:45 - 2016-07-01 05:44 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2016-09-18 18:45 - 2016-07-01 05:43 - 00992256 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-09-18 18:45 - 2016-07-01 05:43 - 00589824 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2016-09-18 18:45 - 2016-07-01 05:42 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2016-09-18 18:45 - 2016-07-01 05:37 - 00055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappprxy.dll
2016-09-18 18:45 - 2016-07-01 05:34 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45 - 2016-07-01 05:33 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-09-18 18:45 - 2016-07-01 05:33 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2016-09-18 18:45 - 2016-07-01 05:32 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2016-09-18 18:45 - 2016-07-01 05:31 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2016-09-18 18:45 - 2016-07-01 05:31 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2016-09-18 18:45 - 2016-07-01 05:31 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimAuth.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00849920 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00546816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmdskmgr.dll
2016-09-18 18:45 - 2016-07-01 05:29 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2016-09-18 18:45 - 2016-07-01 05:29 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2016-09-18 18:45 - 2016-07-01 05:28 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2016-09-18 18:45 - 2016-07-01 05:28 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00559616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcfile.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2016-09-18 18:45 - 2016-07-01 05:26 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2016-09-18 18:45 - 2016-07-01 05:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-09-18 18:45 - 2016-07-01 05:25 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:45 - 2016-07-01 05:25 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2016-09-18 18:45 - 2016-07-01 05:25 - 00240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2016-09-18 18:45 - 2016-07-01 05:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-09-18 18:45 - 2016-07-01 05:23 - 00184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2016-09-18 18:45 - 2016-07-01 05:21 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2016-09-18 18:45 - 2016-07-01 05:08 - 01976832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-09-18 18:45 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2016-09-18 18:45 - 2016-05-28 07:22 - 00211296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2016-09-18 18:45 - 2016-05-28 07:20 - 00430312 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-09-18 18:45 - 2016-05-28 07:18 - 00357216 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-09-18 18:45 - 2016-05-28 07:09 - 00170848 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2016-09-18 18:45 - 2016-05-28 07:08 - 00258912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufx01000.sys
2016-09-18 18:45 - 2016-05-28 07:04 - 00111064 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2016-09-18 18:45 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2016-09-18 18:45 - 2016-05-28 06:57 - 01372312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-09-18 18:45 - 2016-05-28 06:35 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsdport.sys
2016-09-18 18:45 - 2016-05-28 06:26 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-09-18 18:45 - 2016-05-28 06:26 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-09-18 18:45 - 2016-05-28 06:26 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2016-09-18 18:45 - 2016-05-28 06:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-09-18 18:45 - 2016-05-28 06:24 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-09-18 18:45 - 2016-05-28 06:23 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-09-18 18:45 - 2016-05-28 06:23 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2016-09-18 18:45 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2016-09-18 18:45 - 2016-05-28 06:22 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-09-18 18:45 - 2016-05-28 06:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-09-18 18:45 - 2016-05-28 06:21 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2016-09-18 18:45 - 2016-05-28 06:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-09-18 18:45 - 2016-05-28 06:20 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-09-18 18:45 - 2016-05-28 06:19 - 00355840 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2016-09-18 18:45 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2016-09-18 18:45 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2016-09-18 18:45 - 2016-05-28 06:17 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2016-09-18 18:45 - 2016-05-28 06:16 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-09-18 18:45 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2016-09-18 18:45 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-09-18 18:45 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2016-09-18 18:45 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationFramework.dll
2016-09-18 18:45 - 2016-05-28 06:00 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2016-09-18 18:45 - 2016-05-28 06:00 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2016-09-18 18:45 - 2016-05-28 05:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2016-09-18 18:45 - 2016-05-28 05:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2016-09-18 18:45 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2016-09-18 18:45 - 2016-05-06 05:53 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2016-09-18 18:45 - 2016-05-06 05:49 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2016-09-18 18:45 - 2016-05-06 05:44 - 00582656 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2016-09-18 18:45 - 2016-05-06 05:43 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2016-09-18 18:45 - 2016-04-23 07:26 - 00707608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-09-18 18:45 - 2016-04-23 07:24 - 00335712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2016-09-18 18:45 - 2016-04-23 07:22 - 01161120 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-09-18 18:45 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2016-09-18 18:45 - 2016-04-23 07:11 - 00390496 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2016-09-18 18:45 - 2016-04-23 07:07 - 00204048 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2016-09-18 18:45 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2016-09-18 18:45 - 2016-04-23 07:06 - 00291360 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe
2016-09-18 18:45 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2016-09-18 18:45 - 2016-04-23 07:01 - 00217440 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2016-09-18 18:45 - 2016-04-23 07:00 - 01337240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-09-18 18:45 - 2016-04-23 07:00 - 00058208 _____ (Microsoft Corporation) C:\Windows\system32\dwminit.dll
2016-09-18 18:45 - 2016-04-23 06:56 - 00534872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2016-09-18 18:45 - 2016-04-23 06:34 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2016-09-18 18:45 - 2016-04-23 06:34 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\hmkd.dll
2016-09-18 18:45 - 2016-04-23 06:34 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-09-18 18:45 - 2016-04-23 06:33 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\ByteCodeGenerator.exe
2016-09-18 18:45 - 2016-04-23 06:32 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-09-18 18:45 - 2016-04-23 06:29 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2016-09-18 18:45 - 2016-04-23 06:29 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2016-09-18 18:45 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hmkd.dll
2016-09-18 18:45 - 2016-04-23 06:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2016-09-18 18:45 - 2016-04-23 06:24 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2016-09-18 18:45 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEDataLayerHelpers.dll
2016-09-18 18:45 - 2016-04-23 06:19 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2016-09-18 18:45 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BrowserSettingSync.dll
2016-09-18 18:45 - 2016-04-23 06:17 - 00337920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2016-09-18 18:45 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2016-09-18 18:45 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-09-18 18:45 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2016-09-18 18:45 - 2016-04-23 04:10 - 00002186 _____ C:\Windows\system32\AppxProvisioning.xml
2016-09-18 18:45 - 2016-04-19 00:30 - 00002186 _____ C:\Windows\SysWOW64\AppxProvisioning.xml
2016-09-18 18:44 - 2016-09-07 07:39 - 07468896 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-09-18 18:44 - 2016-09-07 07:39 - 04387680 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 01997832 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 01862000 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 01557768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 01317640 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-09-18 18:44 - 2016-09-07 07:39 - 01238584 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2016-09-18 18:44 - 2016-09-07 07:39 - 01142560 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-09-18 18:44 - 2016-09-07 07:39 - 00799568 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00705576 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00601744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00414232 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00337328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00328520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2016-09-18 18:44 - 2016-09-07 07:36 - 00528736 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-09-18 18:44 - 2016-09-07 07:35 - 01613664 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-09-18 18:44 - 2016-09-07 07:35 - 00989536 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2016-09-18 18:44 - 2016-09-07 07:35 - 00523616 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2016-09-18 18:44 - 2016-09-07 07:34 - 03449168 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2016-09-18 18:44 - 2016-09-07 07:26 - 01554152 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-09-18 18:44 - 2016-09-07 07:26 - 01552104 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2016-09-18 18:44 - 2016-09-07 07:26 - 00693592 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-09-18 18:44 - 2016-09-07 07:26 - 00439136 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 01118200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00980352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00925064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00709176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00652312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00451928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-09-18 18:44 - 2016-09-07 07:23 - 04515256 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-09-18 18:44 - 2016-09-07 07:23 - 01540216 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-09-18 18:44 - 2016-09-07 07:23 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2016-09-18 18:44 - 2016-09-07 07:23 - 00692136 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-09-18 18:44 - 2016-09-07 07:23 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-09-18 18:44 - 2016-09-07 07:22 - 01824264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-09-18 18:44 - 2016-09-07 07:22 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-09-18 18:44 - 2016-09-07 07:22 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-09-18 18:44 - 2016-09-07 07:22 - 00638816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2016-09-18 18:44 - 2016-09-07 07:22 - 00625000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2016-09-18 18:44 - 2016-09-07 07:22 - 00359256 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-09-18 18:44 - 2016-09-07 07:21 - 21123320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-09-18 18:44 - 2016-09-07 07:21 - 05240952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2016-09-18 18:44 - 2016-09-07 07:20 - 00836752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2016-09-18 18:44 - 2016-09-07 07:16 - 02144512 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2016-09-18 18:44 - 2016-09-07 07:15 - 01776768 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-09-18 18:44 - 2016-09-07 07:15 - 01415200 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-09-18 18:44 - 2016-09-07 07:15 - 00550656 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2016-09-18 18:44 - 2016-09-07 07:13 - 02186856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-09-18 18:44 - 2016-09-07 07:12 - 28851224 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsRaw.dll
2016-09-18 18:44 - 2016-09-07 07:12 - 00871776 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2016-09-18 18:44 - 2016-09-07 07:11 - 00503600 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2016-09-18 18:44 - 2016-09-07 07:08 - 28083144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsRaw.dll
2016-09-18 18:44 - 2016-09-07 06:53 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2016-09-18 18:44 - 2016-09-07 06:51 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll
2016-09-18 18:44 - 2016-09-07 06:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll
2016-09-18 18:44 - 2016-09-07 06:46 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2016-09-18 18:44 - 2016-09-07 06:46 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll
2016-09-18 18:44 - 2016-09-07 06:44 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\VoipRT.dll
2016-09-18 18:44 - 2016-09-07 06:44 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.ProxyStub.dll
2016-09-18 18:44 - 2016-09-07 06:44 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2016-09-18 18:44 - 2016-09-07 06:44 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll
2016-09-18 18:44 - 2016-09-07 06:43 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll
2016-09-18 18:44 - 2016-09-07 06:43 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2016-09-18 18:44 - 2016-09-07 06:42 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-09-18 18:44 - 2016-09-07 06:42 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll
2016-09-18 18:44 - 2016-09-07 06:41 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2016-09-18 18:44 - 2016-09-07 06:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-09-18 18:44 - 2016-09-07 06:41 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2016-09-18 18:44 - 2016-09-07 06:41 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-09-18 18:44 - 2016-09-07 06:40 - 13018624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-09-18 18:44 - 2016-09-07 06:40 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2016-09-18 18:44 - 2016-09-07 06:40 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2016-09-18 18:44 - 2016-09-07 06:40 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2016-09-18 18:44 - 2016-09-07 06:40 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2016-09-18 18:44 - 2016-09-07 06:39 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2016-09-18 18:44 - 2016-09-07 06:39 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2016-09-18 18:44 - 2016-09-07 06:38 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2016-09-18 18:44 - 2016-09-07 06:38 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00846848 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountCloudAP.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 01582080 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-09-18 18:44 - 2016-09-07 06:36 - 00752128 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00479744 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00394752 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00317952 _____ (Microsoft Corporation) C:\Windows\system32\NetworkBindingEngineMigPlugin.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppLockerCSP.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\eapsvc.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2016-09-18 18:44 - 2016-09-07 06:35 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\scapi.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00450048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack_win.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\PhoneOm.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\APHostService.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usbceip.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 11545088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00667136 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2016-09-18 18:44 - 2016-09-07 06:34 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00265728 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 01813504 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00948736 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00892416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-09-18 18:44 - 2016-09-07 06:32 - 00556032 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00484352 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3ui.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 01056256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00984576 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00965632 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00915456 _____ (Microsoft Corporation) C:\Windows\system32\configurationclient.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00852992 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00527872 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00480768 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00472064 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00190464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 14251520 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 02012672 _____ (Microsoft Corporation) C:\Windows\system32\winmsipc.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01558528 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01500160 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2016-09-18 18:44 - 2016-09-07 06:30 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-09-18 18:44 - 2016-09-07 06:30 - 01318400 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationFrame.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01144320 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01037824 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2016-09-18 18:44 - 2016-09-07 06:30 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00569856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 01847808 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2016-09-18 18:44 - 2016-09-07 06:29 - 01487360 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2016-09-18 18:44 - 2016-09-07 06:29 - 01443328 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00896512 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00785408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 02731008 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01783808 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01717760 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01671168 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01466368 _____ (Microsoft Corporation) C:\Windows\system32\Pimstore.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01211904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 00889344 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-09-18 18:44 - 2016-09-07 06:27 - 04456448 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 03415040 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 01073152 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00865792 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00651776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comuid.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00585216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\SyncController.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00517632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00502272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 02881536 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 01570816 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2016-09-18 18:44 - 2016-09-07 06:26 - 01117184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 00821760 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 00738816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2016-09-18 18:44 - 2016-09-07 06:26 - 00501760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 00434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 02578432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 02445312 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 01965568 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2016-09-18 18:44 - 2016-09-07 06:25 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 01105920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 01052160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 00759808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2016-09-18 18:44 - 2016-09-07 06:25 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-09-18 18:44 - 2016-09-07 06:24 - 03994624 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-09-18 18:44 - 2016-09-07 06:24 - 00805888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2016-09-18 18:44 - 2016-09-07 06:24 - 00764928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2016-09-18 18:44 - 2016-09-07 06:24 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2016-09-18 18:44 - 2016-09-07 06:23 - 04646912 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2016-09-18 18:44 - 2016-09-07 06:23 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2016-09-18 18:44 - 2016-09-07 06:23 - 00918016 _____ (Microsoft Corporation) C:\Windows\system32\XpsFilt.dll
2016-09-18 18:44 - 2016-09-07 06:22 - 12585472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-09-18 18:44 - 2016-09-07 06:22 - 03093504 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2016-09-18 18:44 - 2016-09-07 06:22 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe
2016-09-18 18:44 - 2016-09-07 06:21 - 00620544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsFilt.dll
2016-09-18 18:44 - 2016-09-07 06:21 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 06976000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 03585536 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 02800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 01385472 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 00683008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 00513024 _____ (Microsoft Corporation) C:\Windows\system32\hnetcfg.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 06471168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2016-09-18 18:44 - 2016-09-07 06:19 - 04078592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 03589120 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-09-18 18:44 - 2016-09-07 06:19 - 03555840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2016-09-18 18:44 - 2016-09-07 06:19 - 02902528 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 02610176 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 02563584 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 01997312 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2016-09-18 18:44 - 2016-09-07 06:17 - 05123072 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 04759040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 02635776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 01984000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 01582080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 00574976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2016-09-18 18:44 - 2016-09-07 06:15 - 01978880 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll
2016-09-18 18:44 - 2016-09-07 06:15 - 01755648 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2016-09-18 18:44 - 2016-09-07 06:14 - 02519552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2016-09-18 18:44 - 2016-09-07 06:14 - 02000896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-09-18 18:44 - 2016-09-07 06:14 - 01097216 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2016-09-18 18:44 - 2016-09-07 06:13 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2016-09-18 18:44 - 2016-09-07 06:13 - 00984576 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2016-09-18 18:44 - 2016-09-07 06:12 - 02632192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-09-18 18:44 - 2016-09-07 06:12 - 01036288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2016-09-18 18:44 - 2016-09-07 06:12 - 00899072 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2016-09-18 18:44 - 2016-09-07 06:11 - 00958976 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2016-09-18 18:44 - 2016-09-07 06:10 - 01087488 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-09-18 18:44 - 2016-09-07 06:10 - 00627200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certca.dll
2016-09-18 18:44 - 2016-09-07 06:09 - 00824832 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-09-18 18:44 - 2016-09-07 06:09 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-09-18 18:44 - 2016-09-07 06:09 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-09-18 18:44 - 2016-09-07 05:57 - 00461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2016-09-18 18:44 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2016-09-18 18:44 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-09-18 18:44 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-09-18 18:44 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-09-18 18:44 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-09-18 18:44 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2016-09-18 18:44 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-09-18 18:44 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2016-09-18 18:44 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-09-18 18:44 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-09-18 18:44 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-09-18 18:44 - 2016-07-01 07:30 - 00587456 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-09-18 18:44 - 2016-07-01 07:30 - 00559808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-09-18 18:44 - 2016-07-01 07:30 - 00310464 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-09-18 18:44 - 2016-07-01 06:25 - 00648256 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-09-18 18:44 - 2016-07-01 06:11 - 00521152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-09-18 18:44 - 2016-07-01 05:57 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2016-09-18 18:44 - 2016-07-01 05:54 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\eappprxy.dll
2016-09-18 18:44 - 2016-07-01 05:53 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-09-18 18:44 - 2016-07-01 05:52 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-09-18 18:44 - 2016-07-01 05:50 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\SimCfg.dll
2016-09-18 18:44 - 2016-07-01 05:50 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2016-09-18 18:44 - 2016-07-01 05:50 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll
2016-09-18 18:44 - 2016-07-01 05:50 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2016-09-18 18:44 - 2016-07-01 05:48 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2016-09-18 18:44 - 2016-07-01 05:48 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\SimAuth.dll
2016-09-18 18:44 - 2016-07-01 05:47 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2016-09-18 18:44 - 2016-07-01 05:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2016-09-18 18:44 - 2016-07-01 05:47 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2016-09-18 18:44 - 2016-07-01 05:47 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-09-18 18:44 - 2016-07-01 05:46 - 00565760 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2016-09-18 18:44 - 2016-07-01 05:46 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2016-09-18 18:44 - 2016-07-01 05:43 - 00529408 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2016-09-18 18:44 - 2016-07-01 05:42 - 01716736 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-09-18 18:44 - 2016-07-01 05:42 - 01240064 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-09-18 18:44 - 2016-07-01 05:41 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-09-18 18:44 - 2016-07-01 05:40 - 02103296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44 - 2016-07-01 05:38 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IconCodecService.dll
2016-09-18 18:44 - 2016-07-01 05:35 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2016-09-18 18:44 - 2016-07-01 05:29 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-09-18 18:44 - 2016-07-01 05:29 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovs.dll
2016-09-18 18:44 - 2016-07-01 05:28 - 00347648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2016-09-18 18:44 - 2016-07-01 05:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2016-09-18 18:44 - 2016-07-01 05:28 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edputil.dll
2016-09-18 18:44 - 2016-07-01 05:28 - 00119296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2016-09-18 18:44 - 2016-07-01 05:27 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2016-09-18 18:44 - 2016-07-01 05:27 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2016-09-18 18:44 - 2016-07-01 05:26 - 01445888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-09-18 18:44 - 2016-07-01 05:26 - 01063936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2016-09-18 18:44 - 2016-07-01 05:25 - 04775424 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-09-18 18:44 - 2016-07-01 05:24 - 01448960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44 - 2016-07-01 05:24 - 00468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2016-09-18 18:44 - 2016-07-01 05:23 - 03301376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll
2016-09-18 18:44 - 2016-07-01 05:22 - 00965120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2016-09-18 18:44 - 2016-07-01 05:19 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2016-09-18 18:44 - 2016-07-01 05:13 - 02849792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2016-09-18 18:44 - 2016-06-28 13:20 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-09-18 18:44 - 2016-05-28 07:22 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-09-18 18:44 - 2016-05-28 06:58 - 00379232 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-09-18 18:44 - 2016-05-28 06:57 - 01594416 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-09-18 18:44 - 2016-05-28 06:57 - 00636304 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-09-18 18:44 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-09-18 18:44 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-09-18 18:44 - 2016-05-28 06:29 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-09-18 18:44 - 2016-05-28 06:28 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-09-18 18:44 - 2016-05-28 06:28 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-09-18 18:44 - 2016-05-28 06:24 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ndu.sys
2016-09-18 18:44 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-09-18 18:44 - 2016-05-28 06:22 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-09-18 18:44 - 2016-05-28 06:21 - 00239104 _____ (Microsoft Corporation) C:\Windows\system32\BrokerLib.dll
2016-09-18 18:44 - 2016-05-28 06:20 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2016-09-18 18:44 - 2016-05-28 06:20 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-09-18 18:44 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-09-18 18:44 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2016-09-18 18:44 - 2016-05-28 06:18 - 00610816 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-09-18 18:44 - 2016-05-28 06:18 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2016-09-18 18:44 - 2016-05-28 06:18 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-09-18 18:44 - 2016-05-28 06:18 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2016-09-18 18:44 - 2016-05-28 06:17 - 00963072 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-09-18 18:44 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-09-18 18:44 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-09-18 18:44 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2016-09-18 18:44 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2016-09-18 18:44 - 2016-05-28 06:06 - 01339904 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-09-18 18:44 - 2016-05-28 06:03 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2016-09-18 18:44 - 2016-05-28 06:02 - 01534464 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2016-09-18 18:44 - 2016-05-28 06:02 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2016-09-18 18:44 - 2016-04-23 07:24 - 01819208 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-09-18 18:44 - 2016-04-23 07:24 - 00638816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-09-18 18:44 - 2016-04-23 07:01 - 00619296 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-09-18 18:44 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-09-18 18:44 - 2016-04-23 07:00 - 01399224 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-09-18 18:44 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2016-09-18 18:44 - 2016-04-23 06:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filecrypt.sys
2016-09-18 18:44 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-09-18 18:44 - 2016-04-23 06:25 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll
2016-09-18 18:44 - 2016-04-23 06:21 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-09-18 18:44 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-09-18 18:44 - 2016-04-23 06:18 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-09-18 18:44 - 2016-04-23 06:18 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2016-09-18 18:44 - 2016-04-23 06:14 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2016-09-18 18:44 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-09-18 18:44 - 2016-02-09 06:25 - 00304752 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2016-09-18 18:43 - 2016-09-07 07:39 - 00428896 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2016-09-18 18:43 - 2016-09-07 07:26 - 00516544 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-09-18 18:43 - 2016-09-07 07:23 - 00565600 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-09-18 18:43 - 2016-09-07 07:23 - 00374008 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-09-18 18:43 - 2016-09-07 07:22 - 00742192 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
2016-09-18 18:43 - 2016-09-07 07:22 - 00431296 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-09-18 18:43 - 2016-09-07 07:19 - 00360480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-09-18 18:43 - 2016-09-07 07:14 - 00430944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-09-18 18:43 - 2016-09-07 07:14 - 00216416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-09-18 18:43 - 2016-09-07 07:11 - 02187408 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2016-09-18 18:43 - 2016-09-07 07:11 - 00388888 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2016-09-18 18:43 - 2016-09-07 07:11 - 00305296 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2016-09-18 18:43 - 2016-09-07 07:07 - 00253080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2016-09-18 18:43 - 2016-09-07 06:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2016-09-18 18:43 - 2016-09-07 06:44 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\SecureTimeAggregator.dll
2016-09-18 18:43 - 2016-09-07 06:40 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll
2016-09-18 18:43 - 2016-09-07 06:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\mmcshext.dll
2016-09-18 18:43 - 2016-09-07 06:39 - 09324032 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-09-18 18:43 - 2016-09-07 06:39 - 00238592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.ps.dll
2016-09-18 18:43 - 2016-09-07 06:39 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\PeerDist.dll
2016-09-18 18:43 - 2016-09-07 06:39 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\FingerprintEnrollment.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\mmcbase.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistCleaner.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2016-09-18 18:43 - 2016-09-07 06:36 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2016-09-18 18:43 - 2016-09-07 06:36 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-09-18 18:43 - 2016-09-07 06:36 - 00233984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DictationManager.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 09324032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-09-18 18:43 - 2016-09-07 06:35 - 00813056 _____ (Microsoft Corporation) C:\Windows\system32\mqsnap.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00714240 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00475648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\credprovs.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00790528 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\filemgmt.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00507904 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDist.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00602112 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00448000 _____ (Microsoft Corporation) C:\Windows\system32\winipcfile.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2016-09-18 18:43 - 2016-09-07 06:32 - 00674304 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2016-09-18 18:43 - 2016-09-07 06:32 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-18 18:43 - 2016-09-07 06:31 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\sppinst.dll
2016-09-18 18:43 - 2016-09-07 06:31 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2016-09-18 18:43 - 2016-09-07 06:31 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2016-09-18 18:43 - 2016-09-07 06:31 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-09-18 18:43 - 2016-09-07 06:31 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 01500672 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 00607232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 00531456 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2016-09-18 18:43 - 2016-09-07 06:29 - 01239552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-09-18 18:43 - 2016-09-07 06:29 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-09-18 18:43 - 2016-09-07 06:29 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe
2016-09-18 18:43 - 2016-09-07 06:28 - 00938496 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2016-09-18 18:43 - 2016-09-07 06:28 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2016-09-18 18:43 - 2016-09-07 06:27 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2016-09-18 18:43 - 2016-09-07 06:25 - 01228800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-09-18 18:43 - 2016-09-07 06:25 - 01139712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2016-09-18 18:43 - 2016-09-07 06:25 - 00508416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2016-09-18 18:43 - 2016-09-07 06:22 - 01113600 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2016-09-18 18:43 - 2016-09-07 06:21 - 00636928 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2016-09-18 18:43 - 2016-09-07 06:20 - 06675968 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2016-09-18 18:43 - 2016-09-07 06:20 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2016-09-18 18:43 - 2016-09-07 06:19 - 00527872 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2016-09-18 18:43 - 2016-09-07 06:19 - 00515584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2016-09-18 18:43 - 2016-09-07 06:19 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2016-09-18 18:43 - 2016-09-07 06:17 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2016-09-18 18:43 - 2016-09-07 06:15 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-09-18 18:43 - 2016-09-07 06:13 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2016-09-18 18:43 - 2016-09-07 06:11 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\DbgModel.dll
2016-09-18 18:43 - 2016-09-07 06:11 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-09-18 18:43 - 2016-09-07 06:10 - 00770048 _____ (Microsoft Corporation) C:\Windows\system32\certca.dll
2016-09-18 18:43 - 2016-09-07 06:10 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DbgModel.dll
2016-09-18 18:43 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2016-09-18 18:43 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll
2016-09-18 18:43 - 2016-07-01 06:32 - 00078040 _____ (Microsoft Corporation) C:\Windows\system32\Clipc.dll
2016-09-18 18:43 - 2016-07-01 05:58 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2016-09-18 18:43 - 2016-07-01 05:49 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Maps.dll
2016-09-18 18:43 - 2016-07-01 05:49 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-09-18 18:43 - 2016-07-01 05:47 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-09-18 18:43 - 2016-07-01 05:46 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2016-09-18 18:43 - 2016-07-01 05:46 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2016-09-18 18:43 - 2016-07-01 05:45 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2016-09-18 18:43 - 2016-07-01 05:44 - 00364032 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll
2016-09-18 18:43 - 2016-07-01 05:43 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2016-09-18 18:43 - 2016-07-01 05:42 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2016-09-18 18:43 - 2016-07-01 05:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2016-09-18 18:43 - 2016-07-01 05:31 - 00994816 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2016-09-18 18:43 - 2016-07-01 05:30 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2016-09-18 18:43 - 2016-07-01 05:30 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommon.dll
2016-09-18 18:43 - 2016-07-01 05:29 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-09-18 18:43 - 2016-07-01 05:29 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
2016-09-18 18:43 - 2016-07-01 05:27 - 00519168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2016-09-18 18:43 - 2016-07-01 05:26 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2016-09-18 18:43 - 2016-07-01 05:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2016-09-18 18:43 - 2016-05-28 07:03 - 00131248 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-09-18 18:43 - 2016-05-28 06:29 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2016-09-18 18:43 - 2016-05-28 06:29 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2016-09-18 18:43 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-09-18 18:43 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-09-18 18:43 - 2016-05-28 06:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\GnssAdapter.dll
2016-09-18 18:43 - 2016-05-28 06:20 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Privacy.dll
2016-09-18 18:43 - 2016-05-28 06:11 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2016-09-18 18:43 - 2016-05-28 06:01 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2016-09-18 18:43 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmCx.sys
2016-09-18 18:43 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ByteCodeGenerator.exe
2016-09-18 18:43 - 2016-04-23 06:28 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2016-09-18 18:43 - 2016-04-23 06:23 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\BrowserSettingSync.dll
2016-09-18 18:42 - 2015-10-30 04:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\mqcertui.dll
2016-09-18 15:59 - 2016-09-18 15:59 - 00003314 _____ C:\Users\Marek\Desktop\ROGUE NáLEZ 18.09.tmp.txt
2016-09-18 15:55 - 2016-09-18 15:55 - 00002082 _____ C:\Users\Marek\Desktop\aswMBR18.9.txt
2016-09-18 15:01 - 2016-09-19 19:24 - 00000000 ____D C:\Users\Marek\Desktop\LOG
2016-09-18 14:59 - 2016-09-19 19:24 - 00741488 _____ (Alex Dragokas) C:\Users\Marek\Desktop\check-browsers-lnk_2.1.0.7.exe
2016-09-18 14:44 - 2016-09-18 16:05 - 00000000 ____D C:\Users\Marek\Documents\RegRun2
2016-09-18 14:44 - 2016-09-18 14:44 - 00000002 RSHOT C:\Windows\winstart.bat
2016-09-18 14:44 - 2016-09-18 14:44 - 00000000 ____D C:\Users\Marek\AppData\Local\PeerDistRepub
2016-09-18 14:31 - 2016-09-18 14:31 - 00446488 _____ (Alex Dragokas) C:\Users\Marek\Desktop\clearlnk_2.9.0.7.exe
2016-09-18 13:08 - 2016-09-18 13:08 - 00014241 _____ C:\Users\Marek\Downloads\1363_Garritan-Person.torrent
2016-09-17 18:58 - 2016-09-22 12:40 - 404908087 _____ C:\Windows\MEMORY.DMP
2016-09-15 11:37 - 2016-09-15 11:37 - 00000110 ____R C:\Users\Marek\Desktop\Stinger.opt
2016-09-15 02:42 - 2016-09-15 04:42 - 00000823 _____ C:\Users\Marek\Desktop\Stinger_15092016_024231.html
2016-09-15 02:23 - 2016-09-15 02:23 - 00003374 _____ C:\Users\Marek\Desktop\nouzák rogue 15.9..txt
2016-09-15 01:54 - 2016-09-15 02:07 - 00001084 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2016-09-15 01:54 - 2016-09-15 01:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-09-15 01:54 - 2016-09-15 01:54 - 00000000 ____D C:\Program Files\RogueKiller
2016-09-15 01:41 - 2016-09-15 01:41 - 00000303 _____ C:\Users\Marek\Desktop\UNHIDE REGISTRY K VYMAZ8N9.txt
2016-09-15 01:20 - 2016-09-15 01:40 - 142279952 _____ (Microsoft Corporation) C:\Users\Marek\Downloads\msert.exe
2016-09-15 00:49 - 2016-09-15 00:49 - 00290585 _____ C:\Users\Marek\Downloads\HiddenFileFinder_v5.0.zip
2016-09-15 00:44 - 2016-09-15 01:54 - 33565440 _____ (Adlice Software ) C:\Users\Marek\Downloads\setup.exe
2016-09-15 00:44 - 2016-09-15 00:45 - 01610560 _____ (Malwarebytes) C:\Users\Marek\Downloads\JRT.exe
2016-09-14 23:39 - 2016-09-14 23:39 - 00001257 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
2016-09-14 23:39 - 2016-09-14 23:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2016-09-14 23:39 - 2016-09-14 23:39 - 00000000 ____D C:\ProgramData\IObit
2016-09-14 23:39 - 2016-09-14 23:39 - 00000000 ____D C:\Program Files (x86)\IObit
2016-09-14 23:06 - 2016-09-14 23:39 - 09859064 _____ C:\Users\Marek\Downloads\unlocker-setup.exe
2016-09-14 21:23 - 2016-09-22 19:59 - 00002234 _____ C:\Users\Marek\Desktop\Rkill.txt
2016-09-14 20:50 - 2016-09-17 19:03 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-14 20:50 - 2016-09-17 19:03 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-14 20:34 - 2016-09-14 20:34 - 00000000 ____D C:\Program Files (x86)\GUMA363.tmp
2016-09-14 20:31 - 2016-09-14 20:33 - 00000000 ____D C:\Users\Marek\AppData\Local\Deployment
2016-09-14 20:11 - 2016-09-14 20:11 - 00079631 _____ C:\Users\Marek\Downloads\Potvrzeni o provedene platbe.pdf
2016-09-14 17:12 - 2016-09-14 17:15 - 00007729 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-14-17-12-32.txt
2016-09-14 16:33 - 2016-09-19 19:22 - 00002488 _____ C:\Users\Marek\Desktop\unhide.txt
2016-09-14 16:07 - 2016-09-22 19:58 - 00000546 _____ C:\Users\Marek\Desktop\JRT.txt
2016-09-14 15:53 - 2016-09-20 02:49 - 00001052 _____ C:\Users\Marek\Desktop\FixExec.txt
2016-09-14 15:39 - 2016-09-14 15:41 - 00005824 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-14-15-39-19.txt
2016-09-14 15:39 - 2016-09-14 15:39 - 00002761 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-14-15-39-10.txt
2016-09-14 13:27 - 2016-09-14 13:35 - 00448512 _____ (OldTimer Tools) C:\Users\Marek\Desktop\TFC.exe
2016-09-14 08:32 - 2016-09-19 19:37 - 00000512 _____ C:\Users\Marek\Desktop\MBR.dat
2016-09-14 03:05 - 2016-09-14 03:05 - 02187936 _____ (Rainmeter) C:\Users\Marek\Downloads\Rainmeter-4.0-r2618-beta.exe
2016-09-14 03:01 - 2016-09-14 03:01 - 00000000 ____D C:\Windows\ERDNT
2016-09-14 03:00 - 2016-09-14 03:00 - 00791393 _____ (Lars Hederer ) C:\Users\Marek\Downloads\erunt-setup.exe
2016-09-14 02:32 - 2016-09-14 02:32 - 00002755 _____ C:\Users\Marek\Downloads\netadapter-log-2016-09-14-2-32-19.txt
2016-09-14 02:32 - 2016-09-14 02:32 - 00002755 _____ C:\Users\Marek\Downloads\netadapter-log-2016-09-14-2-32-06.txt
2016-09-14 02:31 - 2016-09-14 02:32 - 02091520 _____ (Conner Bernhard) C:\Users\Marek\Desktop\NetAdapterRepair1.2.exe
2016-09-14 01:32 - 2016-09-14 01:32 - 00231390 _____ C:\Users\Marek\Downloads\RootkitRevealer.zip
2016-09-14 01:23 - 2016-09-14 01:23 - 00457632 _____ (Bleeping Computer, LLC) C:\Users\Marek\Desktop\FixExec.exe
2016-09-14 01:14 - 2016-09-14 01:14 - 00024973 _____ C:\Users\Marek\Downloads\MTB.txt
2016-09-13 23:33 - 2016-09-13 23:33 - 00001128 _____ C:\Users\Public\Desktop\FileASSASSIN.lnk
2016-09-13 23:33 - 2016-09-13 23:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN
2016-09-13 23:33 - 2016-09-13 23:33 - 00000000 ____D C:\Program Files (x86)\FileASSASSIN
2016-09-13 22:55 - 2016-09-20 15:27 - 00004020 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1473800125
2016-09-13 22:55 - 2016-09-20 15:27 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-09-13 22:55 - 2016-09-13 22:55 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-09-13 22:55 - 2016-09-13 22:55 - 00001088 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-09-13 22:40 - 2016-09-13 22:42 - 06334848 _____ (AVAST Software) C:\Users\Marek\Downloads\avast_free_antivirus_setup_online (1).exe
2016-09-13 22:38 - 2016-09-15 01:59 - 00452424 _____ (Bleeping Computer, LLC) C:\Users\Marek\Desktop\ListCWall.exe
2016-09-13 22:36 - 2016-09-14 11:42 - 00000000 ____D C:\Users\Marek\AppData\Local\VirtualStore
2016-09-13 22:33 - 2016-09-22 19:31 - 00513632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-09-13 22:33 - 2016-09-21 10:34 - 00004278 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-09-13 22:33 - 2016-09-13 22:33 - 00969184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-09-13 22:33 - 2016-09-13 22:33 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-09-13 22:33 - 2016-09-13 22:33 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-09-13 22:33 - 2016-09-13 22:33 - 00000000 ____D C:\Users\Marek\AppData\Roaming\AVAST Software
2016-09-13 22:33 - 2016-09-13 22:32 - 00292704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-09-13 22:32 - 2016-09-13 22:32 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-09-13 22:32 - 2016-09-13 22:32 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-09-13 22:21 - 2016-09-13 22:55 - 00000000 ____D C:\ProgramData\AVAST Software
2016-09-13 22:21 - 2016-09-13 22:55 - 00000000 ____D C:\Program Files\AVAST Software
2016-09-13 22:10 - 2016-09-13 22:15 - 06334848 _____ (AVAST Software) C:\Users\Marek\Downloads\avast_free_antivirus_setup_online.exe
2016-09-13 22:02 - 2016-09-14 01:21 - 00427648 _____ (Bleeping Computer, LLC) C:\Users\Marek\Desktop\unhide.exe
2016-09-13 21:12 - 2016-09-13 21:12 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Boredom Software
2016-09-13 20:26 - 2016-09-13 20:27 - 03664452 _____ C:\Users\Marek\Downloads\VT Hash.zip
2016-09-13 20:22 - 2016-09-13 20:22 - 00465024 _____ (Bleeping Computer, LLC) C:\Users\Marek\Downloads\sc-cleaner.exe
2016-09-13 20:22 - 2016-09-13 20:22 - 00465024 _____ (Bleeping Computer, LLC) C:\Users\Marek\Downloads\sc-cleaner (1).exe
2016-09-13 20:12 - 2016-09-14 15:51 - 00000000 ____D C:\Rem-VBSqt
2016-09-13 20:10 - 2016-09-13 20:11 - 00114176 _____ (bartblaze) C:\Users\Marek\Desktop\Rem-VBSworm.exe
2016-09-13 19:53 - 2016-09-14 20:50 - 00000000 ____D C:\Users\Marek\AppData\Local\Google
2016-09-12 23:58 - 2016-09-12 23:59 - 00000000 ____D C:\Users\Marek\Downloads\mp3ky
2016-09-12 23:56 - 2016-09-19 19:36 - 00000000 ____D C:\Users\Marek\Downloads\FONTY
2016-09-12 23:04 - 2016-09-12 23:04 - 00001403 _____ C:\Users\Public\Desktop\Sothink Logo Maker Professional.lnk
2016-09-12 23:04 - 2016-09-12 23:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec
2016-09-12 23:03 - 2016-09-12 23:03 - 00000000 ____D C:\Program Files (x86)\SourceTec
2016-09-12 16:02 - 2016-09-14 01:54 - 00000000 ____D C:\AvgArlBackup
2016-09-10 17:11 - 2016-09-10 17:30 - 00000000 ____D C:\Users\Marek\Downloads\Hudba
2016-09-08 12:54 - 2016-09-08 12:54 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Glitch2
2016-09-07 16:33 - 2016-09-07 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Lexicon
2016-09-07 16:32 - 2016-09-07 16:32 - 00000000 ____D C:\ProgramData\AudioUTOPiA
2016-09-07 16:32 - 2016-09-07 16:32 - 00000000 ____D C:\Program Files\Lexicon(64-bit)
2016-08-31 22:25 - 2016-09-20 13:31 - 00000000 ____D C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2016-08-29 23:13 - 2016-08-29 23:13 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Sonic Academy
2016-08-29 23:11 - 2016-08-29 23:11 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sonic Academy
2016-08-29 23:11 - 2016-08-29 23:11 - 00000000 ____D C:\ProgramData\Sonic Academy
2016-08-29 23:10 - 2016-08-29 23:10 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2016-08-29 23:10 - 2016-08-29 23:10 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2016-08-29 22:48 - 2016-09-10 17:29 - 00000000 ____D C:\Program Files (x86)\VstPlugins
2016-08-29 22:48 - 2016-08-29 22:48 - 00002121 _____ C:\Users\Marek\Desktop\FL Studio 12 (64bit).lnk
2016-08-29 22:48 - 2016-08-29 22:48 - 00002105 _____ C:\Users\Marek\Desktop\FL Studio 12.lnk
2016-09-18 18:45 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-09-18 18:45 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-09-18 18:45 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-09-18 18:45 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-09-18 18:45 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2016-09-18 18:45 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-09-18 18:45 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2016-09-18 18:45 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-09-18 18:45 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2016-09-18 18:45 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-09-18 18:45 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-09-18 18:45 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2016-09-18 18:45 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2016-09-18 18:45 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2016-09-18 18:45 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-09-18 18:45 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-09-18 18:45 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-09-18 18:45 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-09-18 18:45 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2016-09-18 18:45 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-09-18 18:45 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdlrecover.exe
2016-09-18 18:45 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2016-09-18 18:45 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2016-09-18 18:45 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2016-09-18 18:45 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2016-09-18 18:45 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-09-18 18:45 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-09-18 18:45 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2016-09-18 18:45 - 2016-07-01 07:30 - 01223872 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-09-18 18:45 - 2016-07-01 07:30 - 00284352 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2016-09-18 18:45 - 2016-07-01 06:35 - 00035656 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-09-18 18:45 - 2016-07-01 06:32 - 00106928 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2016-09-18 18:45 - 2016-07-01 06:31 - 01848584 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-09-18 18:45 - 2016-07-01 06:23 - 00032040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-09-18 18:45 - 2016-07-01 06:21 - 02403168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-09-18 18:45 - 2016-07-01 06:21 - 00376536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2016-09-18 18:45 - 2016-07-01 06:18 - 00064584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Clipc.dll
2016-09-18 18:45 - 2016-07-01 06:17 - 01536600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-09-18 18:45 - 2016-07-01 06:10 - 00675064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2016-09-18 18:45 - 2016-07-01 05:57 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\cdpreference.exe
2016-09-18 18:45 - 2016-07-01 05:55 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\LegacyNetUX.dll
2016-09-18 18:45 - 2016-07-01 05:52 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll
2016-09-18 18:45 - 2016-07-01 05:52 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2016-09-18 18:45 - 2016-07-01 05:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45 - 2016-07-01 05:50 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-09-18 18:45 - 2016-07-01 05:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2016-09-18 18:45 - 2016-07-01 05:48 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2016-09-18 18:45 - 2016-07-01 05:48 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2016-09-18 18:45 - 2016-07-01 05:47 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\dmdskmgr.dll
2016-09-18 18:45 - 2016-07-01 05:46 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2016-09-18 18:45 - 2016-07-01 05:45 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2016-09-18 18:45 - 2016-07-01 05:45 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2016-09-18 18:45 - 2016-07-01 05:45 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2016-09-18 18:45 - 2016-07-01 05:44 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2016-09-18 18:45 - 2016-07-01 05:44 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2016-09-18 18:45 - 2016-07-01 05:43 - 00992256 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-09-18 18:45 - 2016-07-01 05:43 - 00589824 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2016-09-18 18:45 - 2016-07-01 05:42 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2016-09-18 18:45 - 2016-07-01 05:37 - 00055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappprxy.dll
2016-09-18 18:45 - 2016-07-01 05:34 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-18 18:45 - 2016-07-01 05:33 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-09-18 18:45 - 2016-07-01 05:33 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2016-09-18 18:45 - 2016-07-01 05:32 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2016-09-18 18:45 - 2016-07-01 05:31 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2016-09-18 18:45 - 2016-07-01 05:31 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2016-09-18 18:45 - 2016-07-01 05:31 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimAuth.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00849920 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00546816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2016-09-18 18:45 - 2016-07-01 05:30 - 00217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmdskmgr.dll
2016-09-18 18:45 - 2016-07-01 05:29 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2016-09-18 18:45 - 2016-07-01 05:29 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2016-09-18 18:45 - 2016-07-01 05:28 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2016-09-18 18:45 - 2016-07-01 05:28 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00559616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcfile.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll
2016-09-18 18:45 - 2016-07-01 05:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2016-09-18 18:45 - 2016-07-01 05:26 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2016-09-18 18:45 - 2016-07-01 05:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-09-18 18:45 - 2016-07-01 05:25 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:45 - 2016-07-01 05:25 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2016-09-18 18:45 - 2016-07-01 05:25 - 00240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2016-09-18 18:45 - 2016-07-01 05:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-09-18 18:45 - 2016-07-01 05:23 - 00184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2016-09-18 18:45 - 2016-07-01 05:21 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2016-09-18 18:45 - 2016-07-01 05:08 - 01976832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-09-18 18:45 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2016-09-18 18:45 - 2016-05-28 07:22 - 00211296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2016-09-18 18:45 - 2016-05-28 07:20 - 00430312 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-09-18 18:45 - 2016-05-28 07:18 - 00357216 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-09-18 18:45 - 2016-05-28 07:09 - 00170848 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2016-09-18 18:45 - 2016-05-28 07:08 - 00258912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufx01000.sys
2016-09-18 18:45 - 2016-05-28 07:04 - 00111064 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2016-09-18 18:45 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2016-09-18 18:45 - 2016-05-28 06:57 - 01372312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-09-18 18:45 - 2016-05-28 06:35 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsdport.sys
2016-09-18 18:45 - 2016-05-28 06:26 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-09-18 18:45 - 2016-05-28 06:26 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-09-18 18:45 - 2016-05-28 06:26 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2016-09-18 18:45 - 2016-05-28 06:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-09-18 18:45 - 2016-05-28 06:24 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-09-18 18:45 - 2016-05-28 06:23 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-09-18 18:45 - 2016-05-28 06:23 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2016-09-18 18:45 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2016-09-18 18:45 - 2016-05-28 06:22 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-09-18 18:45 - 2016-05-28 06:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-09-18 18:45 - 2016-05-28 06:21 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2016-09-18 18:45 - 2016-05-28 06:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-09-18 18:45 - 2016-05-28 06:20 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-09-18 18:45 - 2016-05-28 06:19 - 00355840 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2016-09-18 18:45 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2016-09-18 18:45 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2016-09-18 18:45 - 2016-05-28 06:17 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2016-09-18 18:45 - 2016-05-28 06:16 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-09-18 18:45 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2016-09-18 18:45 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-09-18 18:45 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2016-09-18 18:45 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationFramework.dll
2016-09-18 18:45 - 2016-05-28 06:00 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2016-09-18 18:45 - 2016-05-28 06:00 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2016-09-18 18:45 - 2016-05-28 05:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2016-09-18 18:45 - 2016-05-28 05:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2016-09-18 18:45 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2016-09-18 18:45 - 2016-05-06 05:53 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2016-09-18 18:45 - 2016-05-06 05:49 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2016-09-18 18:45 - 2016-05-06 05:44 - 00582656 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2016-09-18 18:45 - 2016-05-06 05:43 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2016-09-18 18:45 - 2016-04-23 07:26 - 00707608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-09-18 18:45 - 2016-04-23 07:24 - 00335712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2016-09-18 18:45 - 2016-04-23 07:22 - 01161120 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-09-18 18:45 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2016-09-18 18:45 - 2016-04-23 07:11 - 00390496 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2016-09-18 18:45 - 2016-04-23 07:07 - 00204048 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2016-09-18 18:45 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2016-09-18 18:45 - 2016-04-23 07:06 - 00291360 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe
2016-09-18 18:45 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2016-09-18 18:45 - 2016-04-23 07:01 - 00217440 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2016-09-18 18:45 - 2016-04-23 07:00 - 01337240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-09-18 18:45 - 2016-04-23 07:00 - 00058208 _____ (Microsoft Corporation) C:\Windows\system32\dwminit.dll
2016-09-18 18:45 - 2016-04-23 06:56 - 00534872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2016-09-18 18:45 - 2016-04-23 06:34 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2016-09-18 18:45 - 2016-04-23 06:34 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\hmkd.dll
2016-09-18 18:45 - 2016-04-23 06:34 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-09-18 18:45 - 2016-04-23 06:33 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\ByteCodeGenerator.exe
2016-09-18 18:45 - 2016-04-23 06:32 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-09-18 18:45 - 2016-04-23 06:29 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2016-09-18 18:45 - 2016-04-23 06:29 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2016-09-18 18:45 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hmkd.dll
2016-09-18 18:45 - 2016-04-23 06:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2016-09-18 18:45 - 2016-04-23 06:24 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2016-09-18 18:45 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEDataLayerHelpers.dll
2016-09-18 18:45 - 2016-04-23 06:19 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2016-09-18 18:45 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BrowserSettingSync.dll
2016-09-18 18:45 - 2016-04-23 06:17 - 00337920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2016-09-18 18:45 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2016-09-18 18:45 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-09-18 18:45 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2016-09-18 18:45 - 2016-04-23 04:10 - 00002186 _____ C:\Windows\system32\AppxProvisioning.xml
2016-09-18 18:45 - 2016-04-19 00:30 - 00002186 _____ C:\Windows\SysWOW64\AppxProvisioning.xml
2016-09-18 18:44 - 2016-09-07 07:39 - 07468896 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-09-18 18:44 - 2016-09-07 07:39 - 04387680 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 01997832 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 01862000 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 01557768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 01317640 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-09-18 18:44 - 2016-09-07 07:39 - 01238584 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2016-09-18 18:44 - 2016-09-07 07:39 - 01142560 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-09-18 18:44 - 2016-09-07 07:39 - 00799568 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00705576 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00601744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00414232 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00337328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-09-18 18:44 - 2016-09-07 07:39 - 00328520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2016-09-18 18:44 - 2016-09-07 07:36 - 00528736 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-09-18 18:44 - 2016-09-07 07:35 - 01613664 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-09-18 18:44 - 2016-09-07 07:35 - 00989536 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2016-09-18 18:44 - 2016-09-07 07:35 - 00523616 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2016-09-18 18:44 - 2016-09-07 07:34 - 03449168 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2016-09-18 18:44 - 2016-09-07 07:26 - 01554152 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-09-18 18:44 - 2016-09-07 07:26 - 01552104 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2016-09-18 18:44 - 2016-09-07 07:26 - 00693592 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-09-18 18:44 - 2016-09-07 07:26 - 00439136 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 01118200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00980352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00925064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00709176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00652312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-09-18 18:44 - 2016-09-07 07:24 - 00451928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-09-18 18:44 - 2016-09-07 07:23 - 04515256 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-09-18 18:44 - 2016-09-07 07:23 - 01540216 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-09-18 18:44 - 2016-09-07 07:23 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2016-09-18 18:44 - 2016-09-07 07:23 - 00692136 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-09-18 18:44 - 2016-09-07 07:23 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-09-18 18:44 - 2016-09-07 07:22 - 01824264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-09-18 18:44 - 2016-09-07 07:22 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-09-18 18:44 - 2016-09-07 07:22 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-09-18 18:44 - 2016-09-07 07:22 - 00638816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2016-09-18 18:44 - 2016-09-07 07:22 - 00625000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2016-09-18 18:44 - 2016-09-07 07:22 - 00359256 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-09-18 18:44 - 2016-09-07 07:21 - 21123320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-09-18 18:44 - 2016-09-07 07:21 - 05240952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2016-09-18 18:44 - 2016-09-07 07:20 - 00836752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2016-09-18 18:44 - 2016-09-07 07:16 - 02144512 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2016-09-18 18:44 - 2016-09-07 07:15 - 01776768 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-09-18 18:44 - 2016-09-07 07:15 - 01415200 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-09-18 18:44 - 2016-09-07 07:15 - 00550656 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2016-09-18 18:44 - 2016-09-07 07:13 - 02186856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-09-18 18:44 - 2016-09-07 07:12 - 28851224 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsRaw.dll
2016-09-18 18:44 - 2016-09-07 07:12 - 00871776 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2016-09-18 18:44 - 2016-09-07 07:11 - 00503600 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2016-09-18 18:44 - 2016-09-07 07:08 - 28083144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsRaw.dll
2016-09-18 18:44 - 2016-09-07 06:53 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2016-09-18 18:44 - 2016-09-07 06:51 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll
2016-09-18 18:44 - 2016-09-07 06:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll
2016-09-18 18:44 - 2016-09-07 06:46 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2016-09-18 18:44 - 2016-09-07 06:46 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll
2016-09-18 18:44 - 2016-09-07 06:44 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\VoipRT.dll
2016-09-18 18:44 - 2016-09-07 06:44 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.ProxyStub.dll
2016-09-18 18:44 - 2016-09-07 06:44 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2016-09-18 18:44 - 2016-09-07 06:44 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll
2016-09-18 18:44 - 2016-09-07 06:43 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll
2016-09-18 18:44 - 2016-09-07 06:43 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2016-09-18 18:44 - 2016-09-07 06:42 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-09-18 18:44 - 2016-09-07 06:42 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll
2016-09-18 18:44 - 2016-09-07 06:41 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2016-09-18 18:44 - 2016-09-07 06:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-09-18 18:44 - 2016-09-07 06:41 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2016-09-18 18:44 - 2016-09-07 06:41 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-09-18 18:44 - 2016-09-07 06:40 - 13018624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-09-18 18:44 - 2016-09-07 06:40 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2016-09-18 18:44 - 2016-09-07 06:40 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2016-09-18 18:44 - 2016-09-07 06:40 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2016-09-18 18:44 - 2016-09-07 06:40 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2016-09-18 18:44 - 2016-09-07 06:39 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2016-09-18 18:44 - 2016-09-07 06:39 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2016-09-18 18:44 - 2016-09-07 06:38 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2016-09-18 18:44 - 2016-09-07 06:38 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00846848 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountCloudAP.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2016-09-18 18:44 - 2016-09-07 06:37 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 01582080 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-09-18 18:44 - 2016-09-07 06:36 - 00752128 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00479744 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00394752 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00317952 _____ (Microsoft Corporation) C:\Windows\system32\NetworkBindingEngineMigPlugin.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppLockerCSP.dll
2016-09-18 18:44 - 2016-09-07 06:36 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\eapsvc.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2016-09-18 18:44 - 2016-09-07 06:35 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\scapi.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00450048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack_win.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\PhoneOm.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\APHostService.dll
2016-09-18 18:44 - 2016-09-07 06:35 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usbceip.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 11545088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00667136 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2016-09-18 18:44 - 2016-09-07 06:34 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2016-09-18 18:44 - 2016-09-07 06:34 - 00265728 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 01813504 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00948736 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2016-09-18 18:44 - 2016-09-07 06:33 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00892416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-09-18 18:44 - 2016-09-07 06:32 - 00556032 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00484352 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3ui.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2016-09-18 18:44 - 2016-09-07 06:32 - 00260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 01056256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00984576 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00965632 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00915456 _____ (Microsoft Corporation) C:\Windows\system32\configurationclient.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00852992 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00527872 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00480768 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00472064 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-18 18:44 - 2016-09-07 06:31 - 00190464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 14251520 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 02012672 _____ (Microsoft Corporation) C:\Windows\system32\winmsipc.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01558528 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01500160 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2016-09-18 18:44 - 2016-09-07 06:30 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-09-18 18:44 - 2016-09-07 06:30 - 01318400 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationFrame.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01144320 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 01037824 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2016-09-18 18:44 - 2016-09-07 06:30 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00569856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-09-18 18:44 - 2016-09-07 06:30 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 01847808 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2016-09-18 18:44 - 2016-09-07 06:29 - 01487360 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2016-09-18 18:44 - 2016-09-07 06:29 - 01443328 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00896512 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00785408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2016-09-18 18:44 - 2016-09-07 06:29 - 00283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 02731008 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01783808 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01717760 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01671168 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01466368 _____ (Microsoft Corporation) C:\Windows\system32\Pimstore.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 01211904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 00889344 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2016-09-18 18:44 - 2016-09-07 06:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-09-18 18:44 - 2016-09-07 06:27 - 04456448 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 03415040 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 01073152 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00865792 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00651776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comuid.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00585216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\SyncController.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00517632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00502272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2016-09-18 18:44 - 2016-09-07 06:27 - 00372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 02881536 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 01570816 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2016-09-18 18:44 - 2016-09-07 06:26 - 01117184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 00821760 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 00738816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2016-09-18 18:44 - 2016-09-07 06:26 - 00501760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-09-18 18:44 - 2016-09-07 06:26 - 00434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 02578432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 02445312 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 01965568 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2016-09-18 18:44 - 2016-09-07 06:25 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 01105920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 01052160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2016-09-18 18:44 - 2016-09-07 06:25 - 00759808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2016-09-18 18:44 - 2016-09-07 06:25 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-09-18 18:44 - 2016-09-07 06:24 - 03994624 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-09-18 18:44 - 2016-09-07 06:24 - 00805888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2016-09-18 18:44 - 2016-09-07 06:24 - 00764928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2016-09-18 18:44 - 2016-09-07 06:24 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2016-09-18 18:44 - 2016-09-07 06:23 - 04646912 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2016-09-18 18:44 - 2016-09-07 06:23 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2016-09-18 18:44 - 2016-09-07 06:23 - 00918016 _____ (Microsoft Corporation) C:\Windows\system32\XpsFilt.dll
2016-09-18 18:44 - 2016-09-07 06:22 - 12585472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-09-18 18:44 - 2016-09-07 06:22 - 03093504 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2016-09-18 18:44 - 2016-09-07 06:22 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe
2016-09-18 18:44 - 2016-09-07 06:21 - 00620544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsFilt.dll
2016-09-18 18:44 - 2016-09-07 06:21 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 06976000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 03585536 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 02800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 01385472 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 00683008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2016-09-18 18:44 - 2016-09-07 06:20 - 00513024 _____ (Microsoft Corporation) C:\Windows\system32\hnetcfg.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 06471168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2016-09-18 18:44 - 2016-09-07 06:19 - 04078592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 03589120 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-09-18 18:44 - 2016-09-07 06:19 - 03555840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2016-09-18 18:44 - 2016-09-07 06:19 - 02902528 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 02610176 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 02563584 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 01997312 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc.dll
2016-09-18 18:44 - 2016-09-07 06:19 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2016-09-18 18:44 - 2016-09-07 06:17 - 05123072 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 04759040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 02635776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 01984000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 01582080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-09-18 18:44 - 2016-09-07 06:16 - 00574976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2016-09-18 18:44 - 2016-09-07 06:15 - 01978880 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll
2016-09-18 18:44 - 2016-09-07 06:15 - 01755648 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2016-09-18 18:44 - 2016-09-07 06:14 - 02519552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2016-09-18 18:44 - 2016-09-07 06:14 - 02000896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-09-18 18:44 - 2016-09-07 06:14 - 01097216 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2016-09-18 18:44 - 2016-09-07 06:13 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2016-09-18 18:44 - 2016-09-07 06:13 - 00984576 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2016-09-18 18:44 - 2016-09-07 06:12 - 02632192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-09-18 18:44 - 2016-09-07 06:12 - 01036288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2016-09-18 18:44 - 2016-09-07 06:12 - 00899072 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2016-09-18 18:44 - 2016-09-07 06:11 - 00958976 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2016-09-18 18:44 - 2016-09-07 06:10 - 01087488 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-09-18 18:44 - 2016-09-07 06:10 - 00627200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certca.dll
2016-09-18 18:44 - 2016-09-07 06:09 - 00824832 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-09-18 18:44 - 2016-09-07 06:09 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-09-18 18:44 - 2016-09-07 06:09 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-09-18 18:44 - 2016-09-07 05:57 - 00461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2016-09-18 18:44 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2016-09-18 18:44 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-09-18 18:44 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-09-18 18:44 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-09-18 18:44 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-09-18 18:44 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2016-09-18 18:44 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-09-18 18:44 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2016-09-18 18:44 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-09-18 18:44 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-09-18 18:44 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-09-18 18:44 - 2016-07-01 07:30 - 00587456 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-09-18 18:44 - 2016-07-01 07:30 - 00559808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-09-18 18:44 - 2016-07-01 07:30 - 00310464 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-09-18 18:44 - 2016-07-01 06:25 - 00648256 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-09-18 18:44 - 2016-07-01 06:11 - 00521152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-09-18 18:44 - 2016-07-01 05:57 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2016-09-18 18:44 - 2016-07-01 05:54 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\eappprxy.dll
2016-09-18 18:44 - 2016-07-01 05:53 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-09-18 18:44 - 2016-07-01 05:52 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-09-18 18:44 - 2016-07-01 05:50 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\SimCfg.dll
2016-09-18 18:44 - 2016-07-01 05:50 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2016-09-18 18:44 - 2016-07-01 05:50 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll
2016-09-18 18:44 - 2016-07-01 05:50 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2016-09-18 18:44 - 2016-07-01 05:48 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2016-09-18 18:44 - 2016-07-01 05:48 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\SimAuth.dll
2016-09-18 18:44 - 2016-07-01 05:47 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2016-09-18 18:44 - 2016-07-01 05:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2016-09-18 18:44 - 2016-07-01 05:47 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2016-09-18 18:44 - 2016-07-01 05:47 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-09-18 18:44 - 2016-07-01 05:46 - 00565760 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2016-09-18 18:44 - 2016-07-01 05:46 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2016-09-18 18:44 - 2016-07-01 05:43 - 00529408 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2016-09-18 18:44 - 2016-07-01 05:42 - 01716736 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-09-18 18:44 - 2016-07-01 05:42 - 01240064 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-09-18 18:44 - 2016-07-01 05:41 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-09-18 18:44 - 2016-07-01 05:40 - 02103296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44 - 2016-07-01 05:38 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IconCodecService.dll
2016-09-18 18:44 - 2016-07-01 05:35 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2016-09-18 18:44 - 2016-07-01 05:29 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-09-18 18:44 - 2016-07-01 05:29 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovs.dll
2016-09-18 18:44 - 2016-07-01 05:28 - 00347648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2016-09-18 18:44 - 2016-07-01 05:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2016-09-18 18:44 - 2016-07-01 05:28 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edputil.dll
2016-09-18 18:44 - 2016-07-01 05:28 - 00119296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2016-09-18 18:44 - 2016-07-01 05:27 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2016-09-18 18:44 - 2016-07-01 05:27 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2016-09-18 18:44 - 2016-07-01 05:26 - 01445888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-09-18 18:44 - 2016-07-01 05:26 - 01063936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2016-09-18 18:44 - 2016-07-01 05:25 - 04775424 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-09-18 18:44 - 2016-07-01 05:24 - 01448960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-09-18 18:44 - 2016-07-01 05:24 - 00468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2016-09-18 18:44 - 2016-07-01 05:23 - 03301376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll
2016-09-18 18:44 - 2016-07-01 05:22 - 00965120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2016-09-18 18:44 - 2016-07-01 05:19 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2016-09-18 18:44 - 2016-07-01 05:13 - 02849792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2016-09-18 18:44 - 2016-06-28 13:20 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-09-18 18:44 - 2016-05-28 07:22 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-09-18 18:44 - 2016-05-28 06:58 - 00379232 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-09-18 18:44 - 2016-05-28 06:57 - 01594416 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-09-18 18:44 - 2016-05-28 06:57 - 00636304 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-09-18 18:44 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-09-18 18:44 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-09-18 18:44 - 2016-05-28 06:29 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-09-18 18:44 - 2016-05-28 06:28 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-09-18 18:44 - 2016-05-28 06:28 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-09-18 18:44 - 2016-05-28 06:24 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ndu.sys
2016-09-18 18:44 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-09-18 18:44 - 2016-05-28 06:22 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-09-18 18:44 - 2016-05-28 06:21 - 00239104 _____ (Microsoft Corporation) C:\Windows\system32\BrokerLib.dll
2016-09-18 18:44 - 2016-05-28 06:20 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2016-09-18 18:44 - 2016-05-28 06:20 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-09-18 18:44 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-09-18 18:44 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2016-09-18 18:44 - 2016-05-28 06:18 - 00610816 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-09-18 18:44 - 2016-05-28 06:18 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2016-09-18 18:44 - 2016-05-28 06:18 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-09-18 18:44 - 2016-05-28 06:18 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2016-09-18 18:44 - 2016-05-28 06:17 - 00963072 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-09-18 18:44 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-09-18 18:44 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-09-18 18:44 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2016-09-18 18:44 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2016-09-18 18:44 - 2016-05-28 06:06 - 01339904 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-09-18 18:44 - 2016-05-28 06:03 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2016-09-18 18:44 - 2016-05-28 06:02 - 01534464 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2016-09-18 18:44 - 2016-05-28 06:02 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2016-09-18 18:44 - 2016-04-23 07:24 - 01819208 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-09-18 18:44 - 2016-04-23 07:24 - 00638816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-09-18 18:44 - 2016-04-23 07:01 - 00619296 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-09-18 18:44 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-09-18 18:44 - 2016-04-23 07:00 - 01399224 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-09-18 18:44 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2016-09-18 18:44 - 2016-04-23 06:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filecrypt.sys
2016-09-18 18:44 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-09-18 18:44 - 2016-04-23 06:25 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll
2016-09-18 18:44 - 2016-04-23 06:21 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-09-18 18:44 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-09-18 18:44 - 2016-04-23 06:18 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-09-18 18:44 - 2016-04-23 06:18 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2016-09-18 18:44 - 2016-04-23 06:14 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2016-09-18 18:44 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-09-18 18:44 - 2016-02-09 06:25 - 00304752 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2016-09-18 18:43 - 2016-09-07 07:39 - 00428896 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2016-09-18 18:43 - 2016-09-07 07:26 - 00516544 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-09-18 18:43 - 2016-09-07 07:23 - 00565600 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-09-18 18:43 - 2016-09-07 07:23 - 00374008 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-09-18 18:43 - 2016-09-07 07:22 - 00742192 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
2016-09-18 18:43 - 2016-09-07 07:22 - 00431296 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-09-18 18:43 - 2016-09-07 07:19 - 00360480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-09-18 18:43 - 2016-09-07 07:14 - 00430944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-09-18 18:43 - 2016-09-07 07:14 - 00216416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-09-18 18:43 - 2016-09-07 07:11 - 02187408 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2016-09-18 18:43 - 2016-09-07 07:11 - 00388888 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2016-09-18 18:43 - 2016-09-07 07:11 - 00305296 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2016-09-18 18:43 - 2016-09-07 07:07 - 00253080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2016-09-18 18:43 - 2016-09-07 06:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2016-09-18 18:43 - 2016-09-07 06:44 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\SecureTimeAggregator.dll
2016-09-18 18:43 - 2016-09-07 06:40 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll
2016-09-18 18:43 - 2016-09-07 06:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\mmcshext.dll
2016-09-18 18:43 - 2016-09-07 06:39 - 09324032 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-09-18 18:43 - 2016-09-07 06:39 - 00238592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.ps.dll
2016-09-18 18:43 - 2016-09-07 06:39 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\PeerDist.dll
2016-09-18 18:43 - 2016-09-07 06:39 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\FingerprintEnrollment.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\mmcbase.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistCleaner.dll
2016-09-18 18:43 - 2016-09-07 06:38 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2016-09-18 18:43 - 2016-09-07 06:36 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2016-09-18 18:43 - 2016-09-07 06:36 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-09-18 18:43 - 2016-09-07 06:36 - 00233984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DictationManager.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 09324032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-09-18 18:43 - 2016-09-07 06:35 - 00813056 _____ (Microsoft Corporation) C:\Windows\system32\mqsnap.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00714240 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00475648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\credprovs.dll
2016-09-18 18:43 - 2016-09-07 06:35 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00790528 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\filemgmt.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00507904 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2016-09-18 18:43 - 2016-09-07 06:34 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDist.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00602112 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00448000 _____ (Microsoft Corporation) C:\Windows\system32\winipcfile.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2016-09-18 18:43 - 2016-09-07 06:33 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2016-09-18 18:43 - 2016-09-07 06:32 - 00674304 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2016-09-18 18:43 - 2016-09-07 06:32 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-18 18:43 - 2016-09-07 06:31 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\sppinst.dll
2016-09-18 18:43 - 2016-09-07 06:31 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2016-09-18 18:43 - 2016-09-07 06:31 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2016-09-18 18:43 - 2016-09-07 06:31 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-09-18 18:43 - 2016-09-07 06:31 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 01500672 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 00607232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2016-09-18 18:43 - 2016-09-07 06:30 - 00531456 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2016-09-18 18:43 - 2016-09-07 06:29 - 01239552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-09-18 18:43 - 2016-09-07 06:29 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-09-18 18:43 - 2016-09-07 06:29 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe
2016-09-18 18:43 - 2016-09-07 06:28 - 00938496 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2016-09-18 18:43 - 2016-09-07 06:28 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2016-09-18 18:43 - 2016-09-07 06:27 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2016-09-18 18:43 - 2016-09-07 06:25 - 01228800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-09-18 18:43 - 2016-09-07 06:25 - 01139712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2016-09-18 18:43 - 2016-09-07 06:25 - 00508416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2016-09-18 18:43 - 2016-09-07 06:22 - 01113600 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2016-09-18 18:43 - 2016-09-07 06:21 - 00636928 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2016-09-18 18:43 - 2016-09-07 06:20 - 06675968 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2016-09-18 18:43 - 2016-09-07 06:20 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2016-09-18 18:43 - 2016-09-07 06:19 - 00527872 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2016-09-18 18:43 - 2016-09-07 06:19 - 00515584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2016-09-18 18:43 - 2016-09-07 06:19 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2016-09-18 18:43 - 2016-09-07 06:17 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2016-09-18 18:43 - 2016-09-07 06:15 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-09-18 18:43 - 2016-09-07 06:13 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2016-09-18 18:43 - 2016-09-07 06:11 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\DbgModel.dll
2016-09-18 18:43 - 2016-09-07 06:11 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-09-18 18:43 - 2016-09-07 06:10 - 00770048 _____ (Microsoft Corporation) C:\Windows\system32\certca.dll
2016-09-18 18:43 - 2016-09-07 06:10 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DbgModel.dll
2016-09-18 18:43 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2016-09-18 18:43 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll
2016-09-18 18:43 - 2016-07-01 06:32 - 00078040 _____ (Microsoft Corporation) C:\Windows\system32\Clipc.dll
2016-09-18 18:43 - 2016-07-01 05:58 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2016-09-18 18:43 - 2016-07-01 05:49 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Maps.dll
2016-09-18 18:43 - 2016-07-01 05:49 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-09-18 18:43 - 2016-07-01 05:47 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-09-18 18:43 - 2016-07-01 05:46 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2016-09-18 18:43 - 2016-07-01 05:46 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2016-09-18 18:43 - 2016-07-01 05:45 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2016-09-18 18:43 - 2016-07-01 05:44 - 00364032 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll
2016-09-18 18:43 - 2016-07-01 05:43 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2016-09-18 18:43 - 2016-07-01 05:42 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2016-09-18 18:43 - 2016-07-01 05:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2016-09-18 18:43 - 2016-07-01 05:31 - 00994816 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2016-09-18 18:43 - 2016-07-01 05:30 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2016-09-18 18:43 - 2016-07-01 05:30 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommon.dll
2016-09-18 18:43 - 2016-07-01 05:29 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-09-18 18:43 - 2016-07-01 05:29 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
2016-09-18 18:43 - 2016-07-01 05:27 - 00519168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2016-09-18 18:43 - 2016-07-01 05:26 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2016-09-18 18:43 - 2016-07-01 05:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2016-09-18 18:43 - 2016-05-28 07:03 - 00131248 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-09-18 18:43 - 2016-05-28 06:29 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2016-09-18 18:43 - 2016-05-28 06:29 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2016-09-18 18:43 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-09-18 18:43 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-09-18 18:43 - 2016-05-28 06:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\GnssAdapter.dll
2016-09-18 18:43 - 2016-05-28 06:20 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Privacy.dll
2016-09-18 18:43 - 2016-05-28 06:11 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2016-09-18 18:43 - 2016-05-28 06:01 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2016-09-18 18:43 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmCx.sys
2016-09-18 18:43 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ByteCodeGenerator.exe
2016-09-18 18:43 - 2016-04-23 06:28 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2016-09-18 18:43 - 2016-04-23 06:23 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\BrowserSettingSync.dll
2016-09-18 18:42 - 2015-10-30 04:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\mqcertui.dll
2016-09-18 15:59 - 2016-09-18 15:59 - 00003314 _____ C:\Users\Marek\Desktop\ROGUE NáLEZ 18.09.tmp.txt
2016-09-18 15:55 - 2016-09-18 15:55 - 00002082 _____ C:\Users\Marek\Desktop\aswMBR18.9.txt
2016-09-18 15:01 - 2016-09-19 19:24 - 00000000 ____D C:\Users\Marek\Desktop\LOG
2016-09-18 14:59 - 2016-09-19 19:24 - 00741488 _____ (Alex Dragokas) C:\Users\Marek\Desktop\check-browsers-lnk_2.1.0.7.exe
2016-09-18 14:44 - 2016-09-18 16:05 - 00000000 ____D C:\Users\Marek\Documents\RegRun2
2016-09-18 14:44 - 2016-09-18 14:44 - 00000002 RSHOT C:\Windows\winstart.bat
2016-09-18 14:44 - 2016-09-18 14:44 - 00000000 ____D C:\Users\Marek\AppData\Local\PeerDistRepub
2016-09-18 14:31 - 2016-09-18 14:31 - 00446488 _____ (Alex Dragokas) C:\Users\Marek\Desktop\clearlnk_2.9.0.7.exe
2016-09-18 13:08 - 2016-09-18 13:08 - 00014241 _____ C:\Users\Marek\Downloads\1363_Garritan-Person.torrent
2016-09-17 18:58 - 2016-09-22 12:40 - 404908087 _____ C:\Windows\MEMORY.DMP
2016-09-15 11:37 - 2016-09-15 11:37 - 00000110 ____R C:\Users\Marek\Desktop\Stinger.opt
2016-09-15 02:42 - 2016-09-15 04:42 - 00000823 _____ C:\Users\Marek\Desktop\Stinger_15092016_024231.html
2016-09-15 02:23 - 2016-09-15 02:23 - 00003374 _____ C:\Users\Marek\Desktop\nouzák rogue 15.9..txt
2016-09-15 01:54 - 2016-09-15 02:07 - 00001084 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2016-09-15 01:54 - 2016-09-15 01:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-09-15 01:54 - 2016-09-15 01:54 - 00000000 ____D C:\Program Files\RogueKiller
2016-09-15 01:41 - 2016-09-15 01:41 - 00000303 _____ C:\Users\Marek\Desktop\UNHIDE REGISTRY K VYMAZ8N9.txt
2016-09-15 01:20 - 2016-09-15 01:40 - 142279952 _____ (Microsoft Corporation) C:\Users\Marek\Downloads\msert.exe
2016-09-15 00:49 - 2016-09-15 00:49 - 00290585 _____ C:\Users\Marek\Downloads\HiddenFileFinder_v5.0.zip
2016-09-15 00:44 - 2016-09-15 01:54 - 33565440 _____ (Adlice Software ) C:\Users\Marek\Downloads\setup.exe
2016-09-15 00:44 - 2016-09-15 00:45 - 01610560 _____ (Malwarebytes) C:\Users\Marek\Downloads\JRT.exe
2016-09-14 23:39 - 2016-09-14 23:39 - 00001257 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
2016-09-14 23:39 - 2016-09-14 23:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2016-09-14 23:39 - 2016-09-14 23:39 - 00000000 ____D C:\ProgramData\IObit
2016-09-14 23:39 - 2016-09-14 23:39 - 00000000 ____D C:\Program Files (x86)\IObit
2016-09-14 23:06 - 2016-09-14 23:39 - 09859064 _____ C:\Users\Marek\Downloads\unlocker-setup.exe
2016-09-14 21:23 - 2016-09-22 19:59 - 00002234 _____ C:\Users\Marek\Desktop\Rkill.txt
2016-09-14 20:50 - 2016-09-17 19:03 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-14 20:50 - 2016-09-17 19:03 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-14 20:34 - 2016-09-14 20:34 - 00000000 ____D C:\Program Files (x86)\GUMA363.tmp
2016-09-14 20:31 - 2016-09-14 20:33 - 00000000 ____D C:\Users\Marek\AppData\Local\Deployment
2016-09-14 20:11 - 2016-09-14 20:11 - 00079631 _____ C:\Users\Marek\Downloads\Potvrzeni o provedene platbe.pdf
2016-09-14 17:12 - 2016-09-14 17:15 - 00007729 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-14-17-12-32.txt
2016-09-14 16:33 - 2016-09-19 19:22 - 00002488 _____ C:\Users\Marek\Desktop\unhide.txt
2016-09-14 16:07 - 2016-09-22 19:58 - 00000546 _____ C:\Users\Marek\Desktop\JRT.txt
2016-09-14 15:53 - 2016-09-20 02:49 - 00001052 _____ C:\Users\Marek\Desktop\FixExec.txt
2016-09-14 15:39 - 2016-09-14 15:41 - 00005824 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-14-15-39-19.txt
2016-09-14 15:39 - 2016-09-14 15:39 - 00002761 _____ C:\Users\Marek\Desktop\netadapter-log-2016-09-14-15-39-10.txt
2016-09-14 13:27 - 2016-09-14 13:35 - 00448512 _____ (OldTimer Tools) C:\Users\Marek\Desktop\TFC.exe
2016-09-14 08:32 - 2016-09-19 19:37 - 00000512 _____ C:\Users\Marek\Desktop\MBR.dat
2016-09-14 03:05 - 2016-09-14 03:05 - 02187936 _____ (Rainmeter) C:\Users\Marek\Downloads\Rainmeter-4.0-r2618-beta.exe
2016-09-14 03:01 - 2016-09-14 03:01 - 00000000 ____D C:\Windows\ERDNT
2016-09-14 03:00 - 2016-09-14 03:00 - 00791393 _____ (Lars Hederer ) C:\Users\Marek\Downloads\erunt-setup.exe
2016-09-14 02:32 - 2016-09-14 02:32 - 00002755 _____ C:\Users\Marek\Downloads\netadapter-log-2016-09-14-2-32-19.txt
2016-09-14 02:32 - 2016-09-14 02:32 - 00002755 _____ C:\Users\Marek\Downloads\netadapter-log-2016-09-14-2-32-06.txt
2016-09-14 02:31 - 2016-09-14 02:32 - 02091520 _____ (Conner Bernhard) C:\Users\Marek\Desktop\NetAdapterRepair1.2.exe
2016-09-14 01:32 - 2016-09-14 01:32 - 00231390 _____ C:\Users\Marek\Downloads\RootkitRevealer.zip
2016-09-14 01:23 - 2016-09-14 01:23 - 00457632 _____ (Bleeping Computer, LLC) C:\Users\Marek\Desktop\FixExec.exe
2016-09-14 01:14 - 2016-09-14 01:14 - 00024973 _____ C:\Users\Marek\Downloads\MTB.txt
2016-09-13 23:33 - 2016-09-13 23:33 - 00001128 _____ C:\Users\Public\Desktop\FileASSASSIN.lnk
2016-09-13 23:33 - 2016-09-13 23:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN
2016-09-13 23:33 - 2016-09-13 23:33 - 00000000 ____D C:\Program Files (x86)\FileASSASSIN
2016-09-13 22:55 - 2016-09-20 15:27 - 00004020 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1473800125
2016-09-13 22:55 - 2016-09-20 15:27 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-09-13 22:55 - 2016-09-13 22:55 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-09-13 22:55 - 2016-09-13 22:55 - 00001088 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-09-13 22:40 - 2016-09-13 22:42 - 06334848 _____ (AVAST Software) C:\Users\Marek\Downloads\avast_free_antivirus_setup_online (1).exe
2016-09-13 22:38 - 2016-09-15 01:59 - 00452424 _____ (Bleeping Computer, LLC) C:\Users\Marek\Desktop\ListCWall.exe
2016-09-13 22:36 - 2016-09-14 11:42 - 00000000 ____D C:\Users\Marek\AppData\Local\VirtualStore
2016-09-13 22:33 - 2016-09-22 19:31 - 00513632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-09-13 22:33 - 2016-09-21 10:34 - 00004278 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-09-13 22:33 - 2016-09-13 22:33 - 00969184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-09-13 22:33 - 2016-09-13 22:33 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-09-13 22:33 - 2016-09-13 22:33 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-09-13 22:33 - 2016-09-13 22:33 - 00000000 ____D C:\Users\Marek\AppData\Roaming\AVAST Software
2016-09-13 22:33 - 2016-09-13 22:32 - 00292704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-09-13 22:33 - 2016-09-13 22:32 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-09-13 22:32 - 2016-09-13 22:32 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-09-13 22:32 - 2016-09-13 22:32 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-09-13 22:21 - 2016-09-13 22:55 - 00000000 ____D C:\ProgramData\AVAST Software
2016-09-13 22:21 - 2016-09-13 22:55 - 00000000 ____D C:\Program Files\AVAST Software
2016-09-13 22:10 - 2016-09-13 22:15 - 06334848 _____ (AVAST Software) C:\Users\Marek\Downloads\avast_free_antivirus_setup_online.exe
2016-09-13 22:02 - 2016-09-14 01:21 - 00427648 _____ (Bleeping Computer, LLC) C:\Users\Marek\Desktop\unhide.exe
2016-09-13 21:12 - 2016-09-13 21:12 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Boredom Software
2016-09-13 20:26 - 2016-09-13 20:27 - 03664452 _____ C:\Users\Marek\Downloads\VT Hash.zip
2016-09-13 20:22 - 2016-09-13 20:22 - 00465024 _____ (Bleeping Computer, LLC) C:\Users\Marek\Downloads\sc-cleaner.exe
2016-09-13 20:22 - 2016-09-13 20:22 - 00465024 _____ (Bleeping Computer, LLC) C:\Users\Marek\Downloads\sc-cleaner (1).exe
2016-09-13 20:12 - 2016-09-14 15:51 - 00000000 ____D C:\Rem-VBSqt
2016-09-13 20:10 - 2016-09-13 20:11 - 00114176 _____ (bartblaze) C:\Users\Marek\Desktop\Rem-VBSworm.exe
2016-09-13 19:53 - 2016-09-14 20:50 - 00000000 ____D C:\Users\Marek\AppData\Local\Google
2016-09-12 23:58 - 2016-09-12 23:59 - 00000000 ____D C:\Users\Marek\Downloads\mp3ky
2016-09-12 23:56 - 2016-09-19 19:36 - 00000000 ____D C:\Users\Marek\Downloads\FONTY
2016-09-12 23:04 - 2016-09-12 23:04 - 00001403 _____ C:\Users\Public\Desktop\Sothink Logo Maker Professional.lnk
2016-09-12 23:04 - 2016-09-12 23:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec
2016-09-12 23:03 - 2016-09-12 23:03 - 00000000 ____D C:\Program Files (x86)\SourceTec
2016-09-12 16:02 - 2016-09-14 01:54 - 00000000 ____D C:\AvgArlBackup
2016-09-10 17:11 - 2016-09-10 17:30 - 00000000 ____D C:\Users\Marek\Downloads\Hudba
2016-09-08 12:54 - 2016-09-08 12:54 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Glitch2
2016-09-07 16:33 - 2016-09-07 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Lexicon
2016-09-07 16:32 - 2016-09-07 16:32 - 00000000 ____D C:\ProgramData\AudioUTOPiA
2016-09-07 16:32 - 2016-09-07 16:32 - 00000000 ____D C:\Program Files\Lexicon(64-bit)
2016-08-31 22:25 - 2016-09-20 13:31 - 00000000 ____D C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2016-08-29 23:13 - 2016-08-29 23:13 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Sonic Academy
2016-08-29 23:11 - 2016-08-29 23:11 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sonic Academy
2016-08-29 23:11 - 2016-08-29 23:11 - 00000000 ____D C:\ProgramData\Sonic Academy
2016-08-29 23:10 - 2016-08-29 23:10 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2016-08-29 23:10 - 2016-08-29 23:10 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2016-08-29 22:48 - 2016-09-10 17:29 - 00000000 ____D C:\Program Files (x86)\VstPlugins
2016-08-29 22:48 - 2016-08-29 22:48 - 00002121 _____ C:\Users\Marek\Desktop\FL Studio 12 (64bit).lnk
2016-08-29 22:48 - 2016-08-29 22:48 - 00002105 _____ C:\Users\Marek\Desktop\FL Studio 12.lnk
Re: Neodstranitelný multiexplorer virus
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-22 19:45 - 2016-04-28 20:49 - 00000000 ____D C:\Windows\CbsTemp
2016-09-22 19:43 - 2016-04-28 20:43 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-09-22 19:25 - 2016-05-31 22:41 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-09-22 19:21 - 2016-04-28 20:28 - 00000000 ____D C:\Users\Marek
2016-09-22 12:41 - 2016-04-29 10:16 - 00000000 ____D C:\Windows\Minidump
2016-09-21 22:49 - 2016-04-29 05:10 - 04963200 _____ C:\Windows\system32\FNTCACHE.DAT
2016-09-21 22:40 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\NDF
2016-09-21 21:51 - 2016-06-03 20:15 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-09-21 21:49 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\rescache
2016-09-21 19:22 - 2016-06-11 18:04 - 00000000 ____D C:\Windows\pss
2016-09-21 18:58 - 2016-04-30 14:53 - 00000000 ____D C:\ProgramData\Adobe
2016-09-21 03:47 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-09-20 13:57 - 2016-04-28 21:05 - 00750030 _____ C:\Windows\system32\perfh005.dat
2016-09-20 13:57 - 2016-04-28 21:05 - 00150654 _____ C:\Windows\system32\perfc005.dat
2016-09-20 13:57 - 2016-04-28 20:58 - 00000000 ____D C:\Windows\INF
2016-09-20 13:57 - 2016-04-28 20:17 - 01771468 _____ C:\Windows\system32\PerfStringBackup.INI
2016-09-20 13:31 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\AppReadiness
2016-09-20 02:06 - 2016-06-03 23:00 - 00000000 ____D C:\Users\Marek\Desktop\mbar
2016-09-20 01:06 - 2016-05-31 22:40 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-09-20 00:25 - 2016-04-28 20:59 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-19 18:58 - 2016-04-28 20:28 - 00000000 ___RD C:\Users\Public\AccountPictures
2016-09-19 18:58 - 2016-04-28 20:28 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Adobe
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ___SD C:\Windows\system32\F12
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\setup
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\oobe
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\migwiz
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\Dism
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\appraiser
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 __RSD C:\Windows\Media
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ___RD C:\Windows\PurchaseDialog
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ___RD C:\Windows\PrintDialog
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ___RD C:\Windows\DevicesFlow
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\Provisioning
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\bcastdvr
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files\Windows Defender
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-09-19 18:48 - 2016-04-28 20:59 - 00015703 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2016-09-18 20:30 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\ShellNew
2016-09-18 18:18 - 2015-10-30 09:19 - 00635904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqsnap.dll
2016-09-18 18:18 - 2015-10-30 09:19 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqcertui.dll
2016-09-18 16:15 - 2016-04-28 20:28 - 00000000 ____D C:\Users\Marek\AppData\Local\Packages
2016-09-15 11:42 - 2016-04-28 20:43 - 73662464 _____ C:\Windows\system32\config\software.bak
2016-09-15 11:42 - 2016-04-28 20:43 - 10223616 _____ C:\Windows\system32\config\system.bak
2016-09-15 11:42 - 2016-04-28 20:43 - 00262144 _____ C:\Windows\system32\config\default.bak
2016-09-15 11:42 - 2016-04-28 20:43 - 00032768 _____ C:\Windows\system32\config\security.bak
2016-09-15 11:42 - 2016-04-28 20:28 - 02097152 ___SH C:\Users\Marek\ntuser.bak
2016-09-15 02:41 - 2016-06-03 23:20 - 00000000 ____D C:\Users\Marek\Downloads\BEZPEČNOST
2016-09-15 02:33 - 2016-05-31 22:40 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-09-15 00:15 - 2016-05-04 10:11 - 00000000 ____D C:\Games
2016-09-14 22:19 - 2016-05-19 15:23 - 00000087 _____ C:\Users\Marek\Desktop\RESETY.txt
2016-09-14 20:50 - 2016-04-28 21:31 - 00000000 ____D C:\Program Files (x86)\Google
2016-09-14 20:40 - 2016-04-30 00:13 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2016-09-14 20:40 - 2016-04-30 00:07 - 00000000 ____D C:\Program Files (x86)\Image-Line
2016-09-14 20:39 - 2016-04-30 00:13 - 00000000 ____D C:\Program Files\Image-Line
2016-09-14 02:02 - 2016-05-24 23:11 - 00000000 ____D C:\Users\Marek\AppData\Local\Microsoft Help
2016-09-10 18:10 - 2016-07-08 14:58 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-09-10 01:01 - 2016-04-28 20:59 - 00000000 ___SD C:\Windows\Downloaded Program Files
2016-09-09 23:29 - 2016-04-28 20:59 - 00000167 _____ C:\Windows\win.ini
2016-09-09 22:39 - 2016-04-28 20:59 - 00000000 ___RD C:\Users\Public\Libraries
2016-09-09 14:50 - 2016-05-08 01:36 - 00000000 ____D C:\Users\Marek\Desktop\M
2016-09-07 08:04 - 2016-04-28 20:15 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== BCD ================================
Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale cs-CZ
inherit {globalsettings}
default {current}
resumeobject {6f8c7d30-0d74-11e6-8052-ddbe21218fe4}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0
Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 10
locale cs-CZ
inherit {bootloadersettings}
recoverysequence {c7e4d8f7-fd88-11e5-8e7f-94a682aca5f6}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {6f8c7d30-0d74-11e6-8052-ddbe21218fe4}
nx OptIn
bootmenupolicy Standard
Windows Boot Loader
-------------------
identifier {c7e4d8f7-fd88-11e5-8e7f-94a682aca5f6}
device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{c7e4d8f8-fd88-11e5-8e7f-94a682aca5f6}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale cs-CZ
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride PushButtonReset
osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{c7e4d8f8-fd88-11e5-8e7f-94a682aca5f6}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Resume from Hibernate
---------------------
identifier {6f8c7d30-0d74-11e6-8052-ddbe21218fe4}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {resumeloadersettings}
recoverysequence {c7e4d8f7-fd88-11e5-8e7f-94a682aca5f6}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagnostika pamŘti syst‚mu Windows
locale cs-CZ
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems No
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {c7e4d8f8-fd88-11e5-8e7f-94a682aca5f6}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \Recovery\WindowsRE\boot.sdi
LastRegBack: 2016-09-17 19:15
==================== End of FRST.txt ============================
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-22 19:45 - 2016-04-28 20:49 - 00000000 ____D C:\Windows\CbsTemp
2016-09-22 19:43 - 2016-04-28 20:43 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-09-22 19:25 - 2016-05-31 22:41 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-09-22 19:21 - 2016-04-28 20:28 - 00000000 ____D C:\Users\Marek
2016-09-22 12:41 - 2016-04-29 10:16 - 00000000 ____D C:\Windows\Minidump
2016-09-21 22:49 - 2016-04-29 05:10 - 04963200 _____ C:\Windows\system32\FNTCACHE.DAT
2016-09-21 22:40 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\NDF
2016-09-21 21:51 - 2016-06-03 20:15 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-09-21 21:49 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\rescache
2016-09-21 19:22 - 2016-06-11 18:04 - 00000000 ____D C:\Windows\pss
2016-09-21 18:58 - 2016-04-30 14:53 - 00000000 ____D C:\ProgramData\Adobe
2016-09-21 03:47 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-09-20 13:57 - 2016-04-28 21:05 - 00750030 _____ C:\Windows\system32\perfh005.dat
2016-09-20 13:57 - 2016-04-28 21:05 - 00150654 _____ C:\Windows\system32\perfc005.dat
2016-09-20 13:57 - 2016-04-28 20:58 - 00000000 ____D C:\Windows\INF
2016-09-20 13:57 - 2016-04-28 20:17 - 01771468 _____ C:\Windows\system32\PerfStringBackup.INI
2016-09-20 13:31 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\AppReadiness
2016-09-20 02:06 - 2016-06-03 23:00 - 00000000 ____D C:\Users\Marek\Desktop\mbar
2016-09-20 01:06 - 2016-05-31 22:40 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-09-20 00:25 - 2016-04-28 20:59 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-19 18:58 - 2016-04-28 20:28 - 00000000 ___RD C:\Users\Public\AccountPictures
2016-09-19 18:58 - 2016-04-28 20:28 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Adobe
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ___SD C:\Windows\system32\F12
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\setup
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\oobe
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\migwiz
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\Dism
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\appraiser
2016-09-19 18:50 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 __RSD C:\Windows\Media
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ___RD C:\Windows\PurchaseDialog
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ___RD C:\Windows\PrintDialog
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ___RD C:\Windows\DevicesFlow
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\Provisioning
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\bcastdvr
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files\Windows Defender
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-09-19 18:49 - 2016-04-28 20:59 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-09-19 18:48 - 2016-04-28 20:59 - 00015703 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2016-09-18 20:30 - 2016-04-28 20:59 - 00000000 ____D C:\Windows\ShellNew
2016-09-18 18:18 - 2015-10-30 09:19 - 00635904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqsnap.dll
2016-09-18 18:18 - 2015-10-30 09:19 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqcertui.dll
2016-09-18 16:15 - 2016-04-28 20:28 - 00000000 ____D C:\Users\Marek\AppData\Local\Packages
2016-09-15 11:42 - 2016-04-28 20:43 - 73662464 _____ C:\Windows\system32\config\software.bak
2016-09-15 11:42 - 2016-04-28 20:43 - 10223616 _____ C:\Windows\system32\config\system.bak
2016-09-15 11:42 - 2016-04-28 20:43 - 00262144 _____ C:\Windows\system32\config\default.bak
2016-09-15 11:42 - 2016-04-28 20:43 - 00032768 _____ C:\Windows\system32\config\security.bak
2016-09-15 11:42 - 2016-04-28 20:28 - 02097152 ___SH C:\Users\Marek\ntuser.bak
2016-09-15 02:41 - 2016-06-03 23:20 - 00000000 ____D C:\Users\Marek\Downloads\BEZPEČNOST
2016-09-15 02:33 - 2016-05-31 22:40 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-09-15 00:15 - 2016-05-04 10:11 - 00000000 ____D C:\Games
2016-09-14 22:19 - 2016-05-19 15:23 - 00000087 _____ C:\Users\Marek\Desktop\RESETY.txt
2016-09-14 20:50 - 2016-04-28 21:31 - 00000000 ____D C:\Program Files (x86)\Google
2016-09-14 20:40 - 2016-04-30 00:13 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2016-09-14 20:40 - 2016-04-30 00:07 - 00000000 ____D C:\Program Files (x86)\Image-Line
2016-09-14 20:39 - 2016-04-30 00:13 - 00000000 ____D C:\Program Files\Image-Line
2016-09-14 02:02 - 2016-05-24 23:11 - 00000000 ____D C:\Users\Marek\AppData\Local\Microsoft Help
2016-09-10 18:10 - 2016-07-08 14:58 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-09-10 01:01 - 2016-04-28 20:59 - 00000000 ___SD C:\Windows\Downloaded Program Files
2016-09-09 23:29 - 2016-04-28 20:59 - 00000167 _____ C:\Windows\win.ini
2016-09-09 22:39 - 2016-04-28 20:59 - 00000000 ___RD C:\Users\Public\Libraries
2016-09-09 14:50 - 2016-05-08 01:36 - 00000000 ____D C:\Users\Marek\Desktop\M
2016-09-07 08:04 - 2016-04-28 20:15 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== BCD ================================
Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale cs-CZ
inherit {globalsettings}
default {current}
resumeobject {6f8c7d30-0d74-11e6-8052-ddbe21218fe4}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0
Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 10
locale cs-CZ
inherit {bootloadersettings}
recoverysequence {c7e4d8f7-fd88-11e5-8e7f-94a682aca5f6}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {6f8c7d30-0d74-11e6-8052-ddbe21218fe4}
nx OptIn
bootmenupolicy Standard
Windows Boot Loader
-------------------
identifier {c7e4d8f7-fd88-11e5-8e7f-94a682aca5f6}
device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{c7e4d8f8-fd88-11e5-8e7f-94a682aca5f6}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale cs-CZ
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride PushButtonReset
osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{c7e4d8f8-fd88-11e5-8e7f-94a682aca5f6}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Resume from Hibernate
---------------------
identifier {6f8c7d30-0d74-11e6-8052-ddbe21218fe4}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {resumeloadersettings}
recoverysequence {c7e4d8f7-fd88-11e5-8e7f-94a682aca5f6}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagnostika pamŘti syst‚mu Windows
locale cs-CZ
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems No
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {c7e4d8f8-fd88-11e5-8e7f-94a682aca5f6}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \Recovery\WindowsRE\boot.sdi
LastRegBack: 2016-09-17 19:15
==================== End of FRST.txt ============================
Re: Neodstranitelný multiexplorer virus
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-09-2016
Ran by Marek (22-09-2016 21:26:27)
Running from C:\Users\Marek\Downloads
Windows 10 Pro Version 1511 (X64) (2016-04-28 18:21:47)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-4093872110-3675695050-1647213711-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4093872110-3675695050-1647213711-503 - Limited - Disabled)
Guest (S-1-5-21-4093872110-3675695050-1647213711-501 - Limited - Disabled)
Marek (S-1-5-21-4093872110-3675695050-1647213711-1001 - Administrator - Enabled) => C:\Users\Marek
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd)
Engine 2 (Version: 2.1.0.151 - Best Service) Hidden
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
RogueKiller verze 12 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12 - Adlice Software)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Sonic Academy KICK 2 (HKLM-x32\...\Sonic Academy KICK 2) (Version: 1.0.2 - Sonic Academy)
Sothink Logo Maker Professional (HKLM-x32\...\{574FFDC9-AB09-4C4A-B7BE-C6066502181A}_is1) (Version: 4.0 - SourceTec Software Co., LTD)
Trojan Remover 6.9.3 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.3 - Simply Super Software)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {BA5F7629-75B4-4BB0-8A2D-E2DF32B2F5FF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-13] (AVAST Software)
Task: {EE22FEDF-17C8-4E36-9214-F25533657675} - System32\Tasks\SafeZone scheduled Autoupdate 1473800125 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-09-18 18:46 - 2016-09-07 07:39 - 02656952 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-09-18 18:46 - 2016-09-07 07:39 - 02656952 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-04-20 22:10 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-09-18 18:44 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-09-18 18:44 - 2016-09-07 06:15 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-18 18:44 - 2016-09-07 06:10 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-18 18:44 - 2016-09-07 06:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-09-18 18:44 - 2016-09-07 06:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-17 19:03 - 2016-09-14 04:52 - 02280264 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libglesv2.dll
2016-09-17 19:03 - 2016-09-14 04:52 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libegl.dll
2016-09-13 22:32 - 2016-09-13 22:32 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-09-22 03:24 - 2016-09-22 03:24 - 03114776 _____ () C:\Program Files\AVAST Software\Avast\defs\16092104\algo.dll
2016-09-13 22:32 - 2016-09-13 22:32 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-09-13 22:32 - 2016-09-13 22:32 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9 [144]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKLM\...\scrfile\shell\open\command: "%1" %* <===== ATTENTION
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Classes\regfile: regedit.exe "%1" <===== ATTENTION
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-04-28 20:59 - 2016-09-22 19:21 - 00000832 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marek\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{4fa8f6c8-26f1-4197-ad2e-4a7e451f7221}.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\Services: !SASCORE => 2
MSCONFIG\Services: lfsvc => 3
HKLM\...\StartupApproved\StartupFolder: => "errorlog.txt"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS5.5ServiceManager"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{FFEA42FD-5EA2-4A03-A645-509318D3EF8A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{BEC5ACAA-DF98-4154-BC8C-33F94A65B518}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
==================== Restore Points =========================
20-09-2016 22:41:31 JRT Pre-Junkware Removal
21-09-2016 17:43:30 IObit Uninstaller restore point
21-09-2016 17:58:27 IObit Uninstaller restore point
21-09-2016 17:59:45 IObit Uninstaller restore point
21-09-2016 18:00:38 IObit Uninstaller restore point
21-09-2016 18:12:18 IObit Uninstaller restore point
21-09-2016 19:42:30 IObit Uninstaller restore point
21-09-2016 20:01:09 IObit Uninstaller restore point
21-09-2016 20:02:30 IObit Uninstaller restore point
21-09-2016 20:03:32 IObit Uninstaller restore point
21-09-2016 21:19:20 JRT Pre-Junkware Removal
22-09-2016 01:16:35 IObit Uninstaller restore point
22-09-2016 01:17:46 IObit Uninstaller restore point
22-09-2016 18:48:11 JRT Pre-Junkware Removal
22-09-2016 19:37:58 IObit Uninstaller restore point
22-09-2016 19:55:30 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/22/2016 07:55:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/22/2016 07:38:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/22/2016 07:17:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: bitch.exe, verze: 6.0.2.0, časové razítko: 0x57d9e4d1
Název chybujícího modulu: bitch.exe, verze: 6.0.2.0, časové razítko: 0x57d9e4d1
Kód výjimky: 0xc0000005
Posun chyby: 0x000211de
ID chybujícího procesu: 0xf34
Čas spuštění chybující aplikace: 0x01d214f4cce30fd2
Cesta k chybující aplikaci: C:\Users\Marek\Desktop\bitch.exe
Cesta k chybujícímu modulu: C:\Users\Marek\Desktop\bitch.exe
ID zprávy: 4c300cb4-edc1-4af8-bfc2-5f52885d5a4a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/22/2016 06:48:22 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/22/2016 01:17:47 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/22/2016 01:16:46 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/21/2016 10:52:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchUI.exe, verze: 10.0.10586.589, časové razítko: 0x57cf97f3
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.10586.589, časové razítko: 0x57cf9aff
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000006fda0b
ID chybujícího procesu: 0x11c4
Čas spuštění chybující aplikace: 0x01d2144a06df2e9e
Cesta k chybující aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: 48dc1235-c0a5-4198-a431-42ab2d366fba
Úplný název chybujícího balíčku: Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI
Error: (09/21/2016 10:52:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchUI.exe, verze: 10.0.10586.589, časové razítko: 0x57cf97f3
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.10586.589, časové razítko: 0x57cf9aff
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000006fda0b
ID chybujícího procesu: 0xd80
Čas spuštění chybující aplikace: 0x01d21449fa6eee05
Cesta k chybující aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: b1807fac-dcdf-4bc7-a963-dbc3ad43bf78
Úplný název chybujícího balíčku: Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI
Error: (09/21/2016 10:51:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchUI.exe, verze: 10.0.10586.589, časové razítko: 0x57cf97f3
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.10586.589, časové razítko: 0x57cf9aff
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000006fda0b
ID chybujícího procesu: 0xc38
Čas spuštění chybující aplikace: 0x01d21449d533432d
Cesta k chybující aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: 96714b03-9ba0-4811-92fb-636412adb5b9
Úplný název chybujícího balíčku: Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI
Error: (09/21/2016 10:09:47 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000
System errors:
=============
Error: (09/22/2016 07:44:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SecDrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.
Error: (09/22/2016 07:44:44 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\SysWow64\drivers\SECDRV.SYS
Error: (09/22/2016 07:43:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0VEG266)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/22/2016 07:43:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0VEG266)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/22/2016 07:43:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_2221f byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/22/2016 07:25:46 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: DESKTOP-0VEG266)
Description: 0x8000002a117\??\C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\S-1-5-21-4093872110-3675695050-1647213711-1001-0-ntuser.dat
Error: (09/22/2016 07:25:35 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: DESKTOP-0VEG266)
Description: 0x8000002a117\??\C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\S-1-5-21-4093872110-3675695050-1647213711-1001-0-ntuser.dat
Error: (09/22/2016 07:22:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SecDrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.
Error: (09/22/2016 07:22:37 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\SysWow64\drivers\SECDRV.SYS
Error: (09/22/2016 07:21:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_1eedc byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
CodeIntegrity:
===================================
Date: 2016-09-19 18:57:03.893
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-19 03:25:04.361
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-13 20:20:59.378
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-13 15:44:58.064
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-12 21:26:17.114
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-11 20:21:58.440
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-10 20:32:13.227
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-09 20:14:39.059
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-04 20:18:16.325
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-01 20:55:38.193
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
Percentage of memory in use: 48%
Total physical RAM: 3967.61 MB
Available physical RAM: 2055.06 MB
Total Virtual: 7935.61 MB
Available Virtual: 5924.21 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:148.56 GB) (Free:99.96 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: FCC21606)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Ran by Marek (22-09-2016 21:26:27)
Running from C:\Users\Marek\Downloads
Windows 10 Pro Version 1511 (X64) (2016-04-28 18:21:47)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-4093872110-3675695050-1647213711-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4093872110-3675695050-1647213711-503 - Limited - Disabled)
Guest (S-1-5-21-4093872110-3675695050-1647213711-501 - Limited - Disabled)
Marek (S-1-5-21-4093872110-3675695050-1647213711-1001 - Administrator - Enabled) => C:\Users\Marek
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd)
Engine 2 (Version: 2.1.0.151 - Best Service) Hidden
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
RogueKiller verze 12 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12 - Adlice Software)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Sonic Academy KICK 2 (HKLM-x32\...\Sonic Academy KICK 2) (Version: 1.0.2 - Sonic Academy)
Sothink Logo Maker Professional (HKLM-x32\...\{574FFDC9-AB09-4C4A-B7BE-C6066502181A}_is1) (Version: 4.0 - SourceTec Software Co., LTD)
Trojan Remover 6.9.3 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.3 - Simply Super Software)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {BA5F7629-75B4-4BB0-8A2D-E2DF32B2F5FF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-13] (AVAST Software)
Task: {EE22FEDF-17C8-4E36-9214-F25533657675} - System32\Tasks\SafeZone scheduled Autoupdate 1473800125 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-09-18 18:46 - 2016-09-07 07:39 - 02656952 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-09-18 18:46 - 2016-09-07 07:39 - 02656952 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-04-20 22:10 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-09-18 18:44 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-09-18 18:44 - 2016-09-07 06:15 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-18 18:44 - 2016-09-07 06:10 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-18 18:44 - 2016-09-07 06:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-09-18 18:44 - 2016-09-07 06:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-17 19:03 - 2016-09-14 04:52 - 02280264 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libglesv2.dll
2016-09-17 19:03 - 2016-09-14 04:52 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libegl.dll
2016-09-13 22:32 - 2016-09-13 22:32 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-09-22 03:24 - 2016-09-22 03:24 - 03114776 _____ () C:\Program Files\AVAST Software\Avast\defs\16092104\algo.dll
2016-09-13 22:32 - 2016-09-13 22:32 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-09-13 22:32 - 2016-09-13 22:32 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9 [144]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKLM\...\scrfile\shell\open\command: "%1" %* <===== ATTENTION
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Software\Classes\regfile: regedit.exe "%1" <===== ATTENTION
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-04-28 20:59 - 2016-09-22 19:21 - 00000832 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marek\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{4fa8f6c8-26f1-4197-ad2e-4a7e451f7221}.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\Services: !SASCORE => 2
MSCONFIG\Services: lfsvc => 3
HKLM\...\StartupApproved\StartupFolder: => "errorlog.txt"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS5.5ServiceManager"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKU\S-1-5-21-4093872110-3675695050-1647213711-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{FFEA42FD-5EA2-4A03-A645-509318D3EF8A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{BEC5ACAA-DF98-4154-BC8C-33F94A65B518}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
==================== Restore Points =========================
20-09-2016 22:41:31 JRT Pre-Junkware Removal
21-09-2016 17:43:30 IObit Uninstaller restore point
21-09-2016 17:58:27 IObit Uninstaller restore point
21-09-2016 17:59:45 IObit Uninstaller restore point
21-09-2016 18:00:38 IObit Uninstaller restore point
21-09-2016 18:12:18 IObit Uninstaller restore point
21-09-2016 19:42:30 IObit Uninstaller restore point
21-09-2016 20:01:09 IObit Uninstaller restore point
21-09-2016 20:02:30 IObit Uninstaller restore point
21-09-2016 20:03:32 IObit Uninstaller restore point
21-09-2016 21:19:20 JRT Pre-Junkware Removal
22-09-2016 01:16:35 IObit Uninstaller restore point
22-09-2016 01:17:46 IObit Uninstaller restore point
22-09-2016 18:48:11 JRT Pre-Junkware Removal
22-09-2016 19:37:58 IObit Uninstaller restore point
22-09-2016 19:55:30 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/22/2016 07:55:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/22/2016 07:38:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/22/2016 07:17:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: bitch.exe, verze: 6.0.2.0, časové razítko: 0x57d9e4d1
Název chybujícího modulu: bitch.exe, verze: 6.0.2.0, časové razítko: 0x57d9e4d1
Kód výjimky: 0xc0000005
Posun chyby: 0x000211de
ID chybujícího procesu: 0xf34
Čas spuštění chybující aplikace: 0x01d214f4cce30fd2
Cesta k chybující aplikaci: C:\Users\Marek\Desktop\bitch.exe
Cesta k chybujícímu modulu: C:\Users\Marek\Desktop\bitch.exe
ID zprávy: 4c300cb4-edc1-4af8-bfc2-5f52885d5a4a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/22/2016 06:48:22 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/22/2016 01:17:47 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/22/2016 01:16:46 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/21/2016 10:52:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchUI.exe, verze: 10.0.10586.589, časové razítko: 0x57cf97f3
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.10586.589, časové razítko: 0x57cf9aff
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000006fda0b
ID chybujícího procesu: 0x11c4
Čas spuštění chybující aplikace: 0x01d2144a06df2e9e
Cesta k chybující aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: 48dc1235-c0a5-4198-a431-42ab2d366fba
Úplný název chybujícího balíčku: Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI
Error: (09/21/2016 10:52:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchUI.exe, verze: 10.0.10586.589, časové razítko: 0x57cf97f3
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.10586.589, časové razítko: 0x57cf9aff
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000006fda0b
ID chybujícího procesu: 0xd80
Čas spuštění chybující aplikace: 0x01d21449fa6eee05
Cesta k chybující aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: b1807fac-dcdf-4bc7-a963-dbc3ad43bf78
Úplný název chybujícího balíčku: Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI
Error: (09/21/2016 10:51:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchUI.exe, verze: 10.0.10586.589, časové razítko: 0x57cf97f3
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.10586.589, časové razítko: 0x57cf9aff
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000006fda0b
ID chybujícího procesu: 0xc38
Čas spuštění chybující aplikace: 0x01d21449d533432d
Cesta k chybující aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: 96714b03-9ba0-4811-92fb-636412adb5b9
Úplný název chybujícího balíčku: Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI
Error: (09/21/2016 10:09:47 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000
System errors:
=============
Error: (09/22/2016 07:44:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SecDrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.
Error: (09/22/2016 07:44:44 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\SysWow64\drivers\SECDRV.SYS
Error: (09/22/2016 07:43:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0VEG266)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/22/2016 07:43:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0VEG266)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/22/2016 07:43:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_2221f byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/22/2016 07:25:46 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: DESKTOP-0VEG266)
Description: 0x8000002a117\??\C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\S-1-5-21-4093872110-3675695050-1647213711-1001-0-ntuser.dat
Error: (09/22/2016 07:25:35 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: DESKTOP-0VEG266)
Description: 0x8000002a117\??\C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\S-1-5-21-4093872110-3675695050-1647213711-1001-0-ntuser.dat
Error: (09/22/2016 07:22:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SecDrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.
Error: (09/22/2016 07:22:37 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\SysWow64\drivers\SECDRV.SYS
Error: (09/22/2016 07:21:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_1eedc byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
CodeIntegrity:
===================================
Date: 2016-09-19 18:57:03.893
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-19 03:25:04.361
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-13 20:20:59.378
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-13 15:44:58.064
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-12 21:26:17.114
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-11 20:21:58.440
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-10 20:32:13.227
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-09 20:14:39.059
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-04 20:18:16.325
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-01 20:55:38.193
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
Percentage of memory in use: 48%
Total physical RAM: 3967.61 MB
Available physical RAM: 2055.06 MB
Total Virtual: 7935.61 MB
Available Virtual: 5924.21 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:148.56 GB) (Free:99.96 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: FCC21606)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Přispějete na provoz fóra?