Chrome otevírá stránky, mění vyhledávač a domovskou stránku

[fibou]

Dobrý den,
máme ode dneška problémy, jako řada ostatních - Chrome jednou za čas otevře sám od sebe stránku (reklamu nebo porno atp.), mění vyhledávač či domovskou stránku, přesměrovává v průběhu vyhledávání, atp.

Přikládám log z RSIT a prosím o pomoc.
Stáhl jsem si nějaké programy podle jiných příspěvků, ale nakonec jsem se rozhodl raději počkat na pomoc někoho znalého, ať nenadělám víc škody Předem děkuji

Jelikož se mi sem celý log soubor nevejde, jsem nucen ho rozdělit.

1. část:

Logfile of random's system information tool 1.10 (written by random/random)
Run by fibou at 2017-04-09 23:53:34
Microsoft Windows 10 Home
System drive C: has 523 GB (58%) free of 906 GB
Total RAM: 8106 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:53:49, on 09.04.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
C:\Windows\WebCam\S6000\S6000Mnt.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\Reader_sl.exe
C:\Program Files\trend micro\fibou.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo15.msn.com/?pc=LCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo15.msn.com/?pc=LCTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://tech-access.biz/wpad.dat?785f380 ... 6628090532
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU\..\Run: [OneDrive] "C:\Users\fibou\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem83.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: System Interface Foundation Service (ImControllerService) - Lenovo Group Limited - c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 10980 bytes

======Listing Processes======









C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
winlogon.exe
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e40a3f80-6974-4697-ab70-23a0ae6546cd -SystemEventPortName:HostProcess-3afb9841-9cb0-4f03-a6e0-7073848f4f39 -IoCancelEventPortName:HostProcess-5655c2a9-c106-4eb7-a66d-569e2964c55b -NonStateChangingEventPortName:HostProcess-c2c5a38a-18ec-462a-9747-705198d91600 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4931d537-a48d-46a6-9a49-37dabbbf8a6f -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0939c0f9-f3e3-478f-b002-d61969b97e25 -SystemEventPortName:HostProcess-2e1c574d-92ba-488d-89ce-7f08d9a31334 -IoCancelEventPortName:HostProcess-0e8d10a3-abe7-4d31-9061-2a420462f45c -NonStateChangingEventPortName:HostProcess-d60e3ea4-513d-4584-b64f-8de17a69f5c3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6479301e-7519-48f7-92d5-06bd75612dd0 -DeviceGroupId:
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\WINDOWS\system32\WLANExt.exe 2098004999840
\??\C:\WINDOWS\system32\conhost.exe 0x4
dashost.exe {d898f9d6-ea80-4996-88697db569d24af0}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\ibtsiva
"c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\WINDOWS\SysWOW64\SAsrv.exe
C:\WINDOWS\system32\CxAudMsg64.exe
"C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Origin\OriginWebHelperService.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\Windows\System32\smartscreen.exe -Embedding
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
igfxEM.exe
igfxHK.exe
igfxTray.exe

"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
-name 73156774-59c0-4b7f-9514-9bdbe05476ec -runas -pluginName LenovoAudioPlugin -pluginVersion 1.2.163.0
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Windows Defender\\MpCmdRun.exe" SignatureUpdate -ScheduleJob -RestrictPrivileges -Reinvoke
"C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Windows\WebCam\S6000\S6000Mnt.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\Lenovo\LenovoUtility\utility.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
AvastUI.exe /nogui
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe" "--AUTO_START" "--start" "--address" "127.0.0.1" "--port" "49330" "--depend_on_key" "SYSTEM\CurrentControlSet\Services\ESRV_SVC_WILLAMETTE" "--depend_on_value" "run" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=w output_folder='C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_process_input.dll','process_input_options.txt' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_system_power_state_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_quality_and_reliability_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\acpi_battery_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\sema_thermal_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\wifi_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\devices_use_input.dll','service=yes' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_disktrace_input.dll','pause=60000 working_dir=C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData override_existing_tracing=no limit_output_by_filesize_mb=10' os='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\os_counters.txt' "
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"fontdrvhost.exe"
"" "--start" "--register_port" "--address" "127.0.0.1" "--port" "49331" "--pause_on_user_switching" "--depend_on_key" "SYSTEM\CurrentControlSet\Services\ESRV_SVC_WILLAMETTE" "--depend_on_value" "run" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=no output_folder='C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData\userlogs' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\foreground_window_input.dll' "
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Users\fibou\AppData\Local\Apps\2.0\RXBE5J22.X2G\VXH0QHK8.G7B\lsb...tion_2d7b41b05b24775e_0001.0006_6e55c1acac1ba44a\LSB.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\fibou\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=57.0.2987.133 --initial-client-data=0x2c8,0x2cc,0x2d0,0x2c4,0x2d4,0x7ffff1d13970,0x7ffff1d13960,0x7ffff1d13980
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=7656 --on-initialized-event-handle=884 --parent-handle=888 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1528 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,19,23,41,61,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x8086 --gpu-device-id=0x1616 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=20.19.15.4531 --gpu-driver-date=9-29-2016 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1341 --service-request-channel-token=C09ACB6417CF6D4918B19CE09F85A7D5 --mojo-platform-channel-handle=1540 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --lang=cs --service-request-channel-token=A91239698F40B0199F6DDB6AAA0A192F --mojo-platform-channel-handle=3924 --ignored=" --type=renderer " /prefetch:8
-name 06a1d565-f3f2-4419-899b-88b5f7d41ee1 -runas -pluginName LenovoAppPromotionPlugin -pluginVersion 1.2.88.0
"C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe" -name 6c2ea844-6f05-4061-9587-b7b153f2cd90 -runas SYSTEM -pluginName LenovoAuthenticationPlugin -pluginVersion 1.2.75.0
"C:\Users\fibou\AppData\Local\Temp\mpam-a73a9db8.exe" /q WD
-name 47f58925-6850-48bd-a74e-a3b31703c653 -runas -pluginName LenovoSettingsAppPlugin -pluginVersion 1.2.92.0
"C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe" -name 887bd195-a47b-452b-94e3-68f75b791b94 -runas SYSTEM -pluginName LenovoSystemUpdatePlugin -pluginVersion 1.2.78.0
"C:\WINDOWS\SERVIC~2\NETWOR~1\AppData\Local\Temp\mpam-cf8dbf0f.exe" /q WD
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1528 --primordial-pipe-token=05278F8E5B0E698822F0F1718069DF86 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=05278F8E5B0E698822F0F1718069DF86 --renderer-client-id=16 --mojo-platform-channel-handle=5236 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\Reader_sl.exe"
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1051_none_7f2bf7ea21d201b2\TiWorker.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x318
"C:\Users\fibou\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"S6000Mnt"=C:\WINDOWS\WebCam\S6000\S6000Mnt.exe [2016-02-24 516608]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"LenovoUtility"=C:\Program Files\Lenovo\LenovoUtility\utility.exe [2015-08-31 791848]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-07-25 36352]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2017-03-22 303928]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-04-05 213824]
"Malwarebytes TrayApp"=C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2017-01-20 2780112]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\fibou\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-09-30 554176]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"=C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [2015-07-21 110008]
"CLVirtualDrive"=C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [2015-07-21 492472]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2012-04-03 1273448]
"kbdsprt"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-04-09 23:53:35 ----D---- C:\Program Files\trend micro
2017-04-09 23:53:34 ----D---- C:\rsit
2017-04-09 23:41:07 ----D---- C:\ProgramData\SWCUTemp
2017-04-09 22:57:19 ----A---- C:\WINDOWS\system32\drivers\MBAMChameleon.sys
2017-04-09 22:57:17 ----A---- C:\WINDOWS\system32\drivers\farflt.sys
2017-04-09 22:57:12 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2017-04-09 22:57:09 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2017-04-09 22:57:03 ----A---- C:\WINDOWS\system32\drivers\mbae64.sys
2017-04-09 22:56:59 ----D---- C:\ProgramData\Malwarebytes
2017-04-09 22:56:59 ----D---- C:\Program Files\Malwarebytes
2017-04-09 22:08:20 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2017-04-09 22:03:59 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-09 22:00:34 ----D---- C:\AdwCleaner
2017-04-05 11:30:49 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-03-31 10:24:00 ----D---- C:\Program Files\iPod
2017-03-31 10:23:59 ----AD---- C:\Program Files\iTunes
2017-03-31 10:21:33 ----AD---- C:\Program Files (x86)\Apple Software Update
2017-03-29 17:49:53 ----D---- C:\Users\fibou\AppData\Roaming\ViberPC
2017-03-14 23:36:34 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\WPDShServiceObj.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\wlanui.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\tapi32.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\mscandui.dll
2017-03-14 23:36:28 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-03-14 23:36:27 ----A---- C:\WINDOWS\SYSWOW64\msutb.dll
2017-03-14 23:36:27 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-03-14 23:36:27 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-03-14 23:36:26 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-03-14 23:36:26 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2017-03-14 23:36:26 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2017-03-14 23:36:26 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2017-03-14 23:36:26 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2017-03-14 23:36:26 ----A---- C:\WINDOWS\SYSWOW64\msctfui.dll
2017-03-14 23:36:26 ----A---- C:\WINDOWS\SYSWOW64\msctfp.dll
2017-03-14 23:36:26 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2017-03-14 23:36:26 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-03-14 23:36:25 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2017-03-14 23:36:22 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2017-03-14 23:36:22 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2017-03-14 23:36:22 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2017-03-14 23:36:21 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-03-14 23:36:21 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2017-03-14 23:36:21 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-03-14 23:36:19 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2017-03-14 23:36:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2017-03-14 23:36:17 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2017-03-14 23:36:13 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-03-14 23:36:10 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-03-14 23:36:07 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-03-14 23:36:07 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2017-03-14 23:36:07 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2017-03-14 23:36:07 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2017-03-14 23:36:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-03-14 23:36:06 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-03-14 23:36:06 ----A---- C:\WINDOWS\SYSWOW64\ddrawex.dll
2017-03-14 23:36:06 ----A---- C:\WINDOWS\SYSWOW64\ddraw.dll
2017-03-14 23:36:03 ----A---- C:\WINDOWS\SYSWOW64\mtxclu.dll
2017-03-14 23:36:03 ----A---- C:\WINDOWS\SYSWOW64\msdtcuiu.dll
2017-03-14 23:36:03 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2017-03-14 23:36:03 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2017-03-14 23:36:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2017-03-14 23:36:00 ----A---- C:\WINDOWS\SYSWOW64\PCPTpm12.dll
2017-03-14 23:36:00 ----A---- C:\WINDOWS\SYSWOW64\azroleui.dll
2017-03-14 23:35:57 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-03-14 23:35:57 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-03-14 23:35:57 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2017-03-14 23:35:57 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2017-03-14 23:35:56 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2017-03-14 23:35:55 ----A---- C:\WINDOWS\SYSWOW64\XInputUap.dll
2017-03-14 23:35:55 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2017-03-14 23:35:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-03-14 23:35:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:35:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:35:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-03-14 23:35:54 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-03-14 23:35:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:35:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-03-14 23:35:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-03-14 23:35:54 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-03-14 23:35:54 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-03-14 23:35:53 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-03-14 23:35:53 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2017-03-14 23:35:48 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-03-14 23:35:48 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2017-03-14 23:35:48 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-03-14 23:35:48 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-03-14 23:35:48 ----A---- C:\WINDOWS\SYSWOW64\GamePanelExternalHook.dll
2017-03-14 23:35:48 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-03-14 23:35:47 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-03-14 23:35:47 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2017-03-14 23:35:47 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2017-03-14 23:35:47 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2017-03-14 23:35:47 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-03-14 23:35:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-03-14 23:35:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-03-14 23:35:47 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-03-14 23:35:46 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-03-14 23:35:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-03-14 23:35:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-03-14 23:35:46 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-03-14 23:35:44 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-03-14 23:35:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-14 23:35:41 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-03-14 23:35:41 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2017-03-14 23:35:41 ----A---- C:\WINDOWS\SYSWOW64\wmpmde.dll
2017-03-14 23:35:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2017-03-14 23:35:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-03-14 23:35:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-03-14 23:35:41 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2017-03-14 23:35:41 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\Pimstore.dll
2017-03-14 23:35:40 ----A---- C:\WINDOWS\SYSWOW64\cemapi.dll
2017-03-14 23:35:39 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-03-14 23:35:39 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-03-14 23:35:39 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2017-03-14 23:35:39 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2017-03-14 23:35:39 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-03-14 23:35:39 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-03-14 23:35:39 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2017-03-14 23:35:39 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2017-03-14 23:35:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-03-14 23:35:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-03-14 23:35:38 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2017-03-14 23:35:38 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-03-14 23:35:38 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-03-14 23:35:38 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-03-14 23:35:38 ----A---- C:\WINDOWS\SYSWOW64\tcpipcfg.dll
2017-03-14 23:35:38 ----A---- C:\WINDOWS\SYSWOW64\netiougc.exe
2017-03-14 23:35:38 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2017-03-14 23:35:37 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2017-03-14 23:35:37 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2017-03-14 23:35:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2017-03-14 23:35:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 23:35:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-03-14 23:35:36 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-03-14 23:35:36 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-03-14 23:35:36 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-03-14 23:35:36 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-03-14 23:35:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-03-14 23:35:34 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-03-14 23:35:34 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-03-14 23:35:34 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-03-14 23:35:34 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-03-14 23:35:34 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2017-03-14 23:35:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-14 23:35:33 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-03-14 23:35:33 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-03-14 23:35:33 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2017-03-14 23:35:33 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-03-14 23:35:33 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2017-03-14 23:35:33 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2017-03-14 23:35:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-03-14 23:35:33 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-03-14 23:35:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 23:35:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-03-14 23:35:32 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-03-14 23:35:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-03-14 23:35:32 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-03-14 23:35:32 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-03-14 23:35:32 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-03-14 23:35:31 ----A---- C:\WINDOWS\SYSWOW64\regedit.exe
2017-03-14 23:35:31 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2017-03-14 23:35:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-03-14 23:35:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-14 23:35:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-03-14 23:35:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-03-14 23:35:28 ----A---- C:\WINDOWS\SYSWOW64\ProximityCommon.dll
2017-03-14 23:35:28 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-03-14 23:35:28 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-03-14 23:35:28 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-03-14 23:35:27 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-03-14 23:35:27 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2017-03-14 23:35:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-03-14 23:35:27 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-03-14 23:35:26 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-03-14 23:35:26 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-03-14 23:35:26 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2017-03-14 23:35:25 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2017-03-14 23:35:25 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2017-03-14 23:35:25 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSetup.exe
2017-03-14 23:35:25 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-03-14 23:35:25 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2017-03-14 23:35:25 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2017-03-14 23:35:25 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-03-14 23:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2017-03-14 23:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-03-14 23:35:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:35:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-14 23:35:18 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-03-14 23:35:18 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-03-14 23:35:18 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2017-03-14 23:35:18 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2017-03-14 23:35:17 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2017-03-14 23:35:17 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2017-03-14 23:35:17 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-03-14 23:35:16 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-03-14 23:35:16 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-03-14 23:35:16 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2017-03-14 23:35:16 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2017-03-14 23:35:15 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-03-14 23:35:14 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-03-14 23:35:14 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-03-14 23:35:14 ----A---- C:\WINDOWS\SYSWOW64\MCCSEngineShared.dll
2017-03-14 23:35:14 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2017-03-14 23:35:14 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2017-03-14 23:35:14 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2017-03-14 23:35:14 ----A---- C:\WINDOWS\SYSWOW64\DavSyncProvider.dll
2017-03-14 23:35:14 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2017-03-14 23:35:14 ----A---- C:\WINDOWS\SYSWOW64\accountaccessor.dll
2017-03-14 23:35:12 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-03-14 23:35:12 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2017-03-14 23:35:12 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-03-14 23:35:12 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-03-14 23:35:12 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-03-14 23:35:12 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2017-03-14 23:35:12 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2017-03-14 23:35:12 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2017-03-14 23:35:11 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-03-14 23:35:11 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-03-14 23:35:09 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-03-14 23:35:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2017-03-14 23:35:07 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2017-03-14 23:35:07 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-03-14 23:35:04 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-03-14 23:35:02 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2017-03-14 23:35:02 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-03-14 23:35:01 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2017-03-14 23:35:01 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2017-03-14 23:35:00 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-03-14 23:34:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-03-14 23:34:52 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2017-03-14 23:34:52 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2017-03-14 23:34:52 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-03-14 23:34:52 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2017-03-14 23:34:52 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2017-03-14 23:34:52 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-03-14 23:34:52 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-03-14 23:34:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-03-14 23:34:51 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-03-14 23:34:51 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-03-14 23:34:51 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-03-14 23:34:51 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-03-14 23:34:51 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-03-14 23:34:51 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2017-03-14 23:34:50 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-03-14 23:34:50 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-03-14 23:34:50 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-03-14 23:34:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-03-14 23:34:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-03-14 23:34:49 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2017-03-14 23:34:49 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-03-14 23:34:49 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2017-03-14 23:34:49 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-03-14 23:34:49 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-03-14 23:34:48 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-03-14 23:34:47 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-03-14 23:34:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2017-03-14 23:34:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-03-14 23:34:47 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2017-03-14 23:34:47 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-03-14 23:34:47 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-03-14 23:34:47 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2017-03-14 23:34:47 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2017-03-14 23:34:46 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2017-03-14 23:34:46 ----A---- C:\WINDOWS\SYSWOW64\CompPkgSup.dll
2017-03-14 23:34:46 ----A---- C:\WINDOWS\SYSWOW64\CloudBackupSettings.dll
2017-03-14 23:34:46 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-03-14 23:34:46 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-03-14 23:34:46 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-03-14 23:34:46 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-03-14 23:34:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-03-14 23:34:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-03-14 23:34:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-14 23:34:44 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2017-03-14 23:34:43 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-03-14 23:34:43 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-03-14 23:34:43 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-03-14 23:34:43 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-03-14 23:34:43 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-03-14 23:34:43 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-03-14 23:34:43 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2017-03-14 23:34:43 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2017-03-14 23:34:43 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2017-03-14 23:24:21 ----A---- C:\WINDOWS\system32\tquery.dll
2017-03-14 23:24:21 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-03-14 23:24:21 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-03-14 23:24:21 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2017-03-14 23:24:21 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:24:21 ----A---- C:\WINDOWS\system32\mssvp.dll
2017-03-14 23:24:21 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-03-14 23:24:20 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-03-14 23:24:20 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-03-14 23:24:20 ----A---- C:\WINDOWS\system32\mssphtb.dll
2017-03-14 23:24:20 ----A---- C:\WINDOWS\system32\mssph.dll
2017-03-14 23:24:20 ----A---- C:\WINDOWS\system32\mssitlb.dll
2017-03-14 23:24:18 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-03-14 23:24:18 ----A---- C:\WINDOWS\system32\XblGameSaveExt.dll
2017-03-14 23:24:18 ----A---- C:\WINDOWS\system32\wlidprov.dll
2017-03-14 23:24:18 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-03-14 23:24:18 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-03-14 23:24:18 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-03-14 23:24:18 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-14 23:24:18 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-03-14 23:24:17 ----A---- C:\WINDOWS\system32\XInputUap.dll
2017-03-14 23:24:17 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-03-14 23:24:17 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:24:17 ----A---- C:\WINDOWS\system32\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:24:17 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-03-14 23:24:17 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-03-14 23:24:15 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-03-14 23:24:15 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-03-14 23:24:15 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-03-14 23:24:00 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-03-14 23:24:00 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2017-03-14 23:24:00 ----A---- C:\WINDOWS\system32\icfupgd.dll
2017-03-14 23:23:32 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:23:32 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2017-03-14 23:23:31 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-03-14 23:23:31 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2017-03-14 23:23:26 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-03-14 23:23:14 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2017-03-14 23:23:14 ----A---- C:\WINDOWS\system32\GamePanelExternalHook.dll
2017-03-14 23:23:14 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-03-14 23:23:11 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-03-14 23:23:10 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-03-14 23:23:10 ----A---- C:\WINDOWS\system32\wwanmm.dll
2017-03-14 23:23:10 ----A---- C:\WINDOWS\system32\wwanconn.dll
2017-03-14 23:23:10 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2017-03-14 23:23:10 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-03-14 23:23:09 ----A---- C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-03-14 23:23:09 ----A---- C:\WINDOWS\system32\CspCellularSettings.dll
2017-03-14 23:23:09 ----A---- C:\WINDOWS\system32\CfgSPCellular.dll
2017-03-14 23:23:07 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-03-14 23:23:07 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-03-14 23:23:07 ----A---- C:\WINDOWS\system32\mispace.dll
2017-03-14 23:23:03 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-03-14 23:23:02 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2017-03-14 23:23:02 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2017-03-14 23:23:02 ----A---- C:\WINDOWS\system32\wlanui.dll
2017-03-14 23:23:02 ----A---- C:\WINDOWS\system32\wintrust.dll
2017-03-14 23:23:02 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-03-14 23:23:02 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-03-14 23:23:01 ----A---- C:\WINDOWS\system32\winmde.dll
2017-03-14 23:23:01 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-14 23:23:01 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-03-14 23:23:01 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-03-14 23:23:01 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-03-14 23:23:01 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-03-14 23:23:00 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-14 23:23:00 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-03-14 23:23:00 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-03-14 23:22:59 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-03-14 23:22:59 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-03-14 23:22:59 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-03-14 23:22:59 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-03-14 23:22:59 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-03-14 23:22:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-03-14 23:22:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-03-14 23:22:55 ----A---- C:\WINDOWS\system32\wups.dll
2017-03-14 23:22:54 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-03-14 23:22:54 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-03-14 23:22:54 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2017-03-14 23:22:54 ----A---- C:\WINDOWS\system32\wmpmde.dll
2017-03-14 23:22:54 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-03-14 23:22:54 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-03-14 23:22:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-03-14 23:22:54 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2017-03-14 23:22:53 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-03-14 23:22:53 ----A---- C:\WINDOWS\system32\vssapi.dll
2017-03-14 23:22:53 ----A---- C:\WINDOWS\system32\vds.exe
2017-03-14 23:22:52 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-14 23:22:52 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-03-14 23:22:52 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-03-14 23:22:52 ----A---- C:\WINDOWS\system32\Pimstore.dll
2017-03-14 23:22:52 ----A---- C:\WINDOWS\system32\cemapi.dll
2017-03-14 23:22:51 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-03-14 23:22:51 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-03-14 23:22:51 ----A---- C:\WINDOWS\system32\DuCsps.dll
2017-03-14 23:22:50 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-03-14 23:22:50 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-03-14 23:22:50 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-14 23:22:50 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2017-03-14 23:22:49 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-14 23:22:47 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-14 23:22:47 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-14 23:22:47 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-03-14 23:22:47 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2017-03-14 23:22:46 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-03-14 23:22:46 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-03-14 23:22:44 ----A---- C:\WINDOWS\system32\usocore.dll
2017-03-14 23:22:44 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-03-14 23:22:44 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-03-14 23:22:44 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2017-03-14 23:22:44 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-03-14 23:22:43 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-03-14 23:22:43 ----A---- C:\WINDOWS\system32\UserDataService.dll
2017-03-14 23:22:41 ----A---- C:\WINDOWS\system32\VCardParser.dll
2017-03-14 23:22:41 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-14 23:22:41 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-03-14 23:22:41 ----A---- C:\WINDOWS\system32\ExSMime.dll
2017-03-14 23:22:41 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-03-14 23:22:41 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-03-14 23:22:41 ----A---- C:\WINDOWS\system32\ContactApis.dll
2017-03-14 23:22:40 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-03-14 23:22:40 ----A---- C:\WINDOWS\system32\twinui.dll
2017-03-14 23:22:40 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-03-14 23:22:40 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2017-03-14 23:22:40 ----A---- C:\WINDOWS\system32\ChatApis.dll
2017-03-14 23:22:40 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2017-03-14 23:22:39 ----A---- C:\WINDOWS\system32\twinapi.dll
2017-03-14 23:22:39 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-14 23:22:39 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-03-14 23:22:39 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-03-14 23:22:38 ----A---- C:\WINDOWS\system32\themecpl.dll
2017-03-14 23:22:38 ----A---- C:\WINDOWS\system32\netiougc.exe
2017-03-14 23:22:38 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-03-14 23:22:37 ----A---- C:\WINDOWS\system32\tapi32.dll
2017-03-14 23:22:37 ----A---- C:\WINDOWS\system32\Tabbtn.dll
2017-03-14 23:22:37 ----A---- C:\WINDOWS\system32\netiohlp.dll
2017-03-14 23:22:37 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-03-14 23:22:37 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2017-03-14 23:22:36 ----A---- C:\WINDOWS\system32\tabcal.exe
2017-03-14 23:22:36 ----A---- C:\WINDOWS\system32\MultiDigiMon.exe
2017-03-14 23:22:36 ----A---- C:\WINDOWS\system32\mscandui.dll
2017-03-14 23:22:35 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-03-14 23:22:35 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2017-03-14 23:22:35 ----A---- C:\WINDOWS\system32\input.dll
2017-03-14 23:22:34 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-03-14 23:22:34 ----A---- C:\WINDOWS\system32\RADCUI.dll
2017-03-14 23:22:34 ----A---- C:\WINDOWS\system32\msutb.dll
2017-03-14 23:22:34 ----A---- C:\WINDOWS\system32\msctfui.dll
2017-03-14 23:22:34 ----A---- C:\WINDOWS\system32\msctf.dll
2017-03-14 23:22:33 ----A---- C:\WINDOWS\system32\systemreset.exe
2017-03-14 23:22:33 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-03-14 23:22:33 ----A---- C:\WINDOWS\system32\msctfp.dll
2017-03-14 23:22:32 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-03-14 23:22:32 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 23:22:32 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-03-14 23:22:32 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-03-14 23:22:32 ----A---- C:\WINDOWS\system32\sud.dll
2017-03-14 23:22:32 ----A---- C:\WINDOWS\system32\reseteng.dll
2017-03-14 23:22:32 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-03-14 23:22:32 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-03-14 23:22:31 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-03-14 23:22:31 ----A---- C:\WINDOWS\system32\stobject.dll
2017-03-14 23:22:31 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2017-03-14 23:22:29 ----A---- C:\WINDOWS\system32\scksp.dll
2017-03-14 23:22:29 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-03-14 23:22:29 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-03-14 23:22:29 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-03-14 23:22:29 ----A---- C:\WINDOWS\system32\certprop.dll
2017-03-14 23:22:29 ----A---- C:\WINDOWS\system32\basecsp.dll
2017-03-14 23:22:28 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-03-14 23:22:28 ----A---- C:\WINDOWS\system32\shell32.dll
2017-03-14 23:22:28 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-03-14 23:22:28 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-03-14 23:22:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-03-14 23:22:27 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-14 23:22:27 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-14 23:22:27 ----A---- C:\WINDOWS\system32\SettingSync.dll
2017-03-14 23:22:27 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-14 23:22:27 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2017-03-14 23:22:27 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-14 23:22:26 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-14 23:22:26 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-03-14 23:22:26 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2017-03-14 23:22:26 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-03-14 23:22:26 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2017-03-14 23:22:26 ----A---- C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-14 23:22:26 ----A---- C:\WINDOWS\system32\AuthHost.exe
2017-03-14 23:22:25 ----A---- C:\WINDOWS\system32\tbauth.dll
2017-03-14 23:22:25 ----A---- C:\WINDOWS\system32\schannel.dll
2017-03-14 23:22:25 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-03-14 23:22:24 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-03-14 23:22:23 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-03-14 23:22:23 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-03-14 23:22:23 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2017-03-14 23:22:23 ----A---- C:\WINDOWS\system32\sdshext.dll
2017-03-14 23:22:23 ----A---- C:\WINDOWS\system32\sdengin2.dll
2017-03-14 23:22:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-03-14 23:22:23 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-03-14 23:22:22 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-03-14 23:22:21 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-14 23:22:21 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-03-14 23:22:21 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-03-14 23:22:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-14 23:22:21 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2017-03-14 23:22:19 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-14 23:22:19 ----A---- C:\WINDOWS\system32\BluetoothDesktopHandlers.dll
2017-03-14 23:22:18 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-14 23:22:18 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-03-14 23:22:18 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-03-14 23:22:18 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-03-14 23:22:18 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-14 23:22:17 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-14 23:22:17 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-03-14 23:22:17 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-03-14 23:22:17 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2017-03-14 23:22:14 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-03-14 23:22:12 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 23:22:12 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-03-14 23:22:12 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-14 23:22:11 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-03-14 23:22:11 ----A---- C:\WINDOWS\system32\RelPost.exe
2017-03-14 23:22:10 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-03-14 23:22:10 ----A---- C:\WINDOWS\system32\rasgcw.dll
2017-03-14 23:22:10 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-03-14 23:22:10 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2017-03-14 23:22:10 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-03-14 23:22:10 ----A---- C:\WINDOWS\regedit.exe
2017-03-14 23:22:09 ----A---- C:\WINDOWS\system32\vpnike.dll
2017-03-14 23:22:09 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-03-14 23:22:08 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-03-14 23:22:07 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-03-14 23:22:07 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-03-14 23:22:07 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-03-14 23:22:06 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-03-14 23:22:06 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-03-14 23:22:06 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-03-14 23:22:06 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-03-14 23:22:05 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-03-14 23:22:05 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-03-14 23:22:05 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-03-14 23:22:05 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-03-14 23:22:05 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2017-03-14 23:22:04 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-03-14 23:22:04 ----A---- C:\WINDOWS\system32\Wpc.dll
2017-03-14 23:22:04 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-03-14 23:22:04 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-03-14 23:22:02 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-03-14 23:22:02 ----A---- C:\WINDOWS\system32\WpcMon.exe
2017-03-14 23:22:02 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-03-14 23:22:02 ----A---- C:\WINDOWS\system32\localspl.dll
2017-03-14 23:22:00 ----A---- C:\WINDOWS\system32\wpninprc.dll
2017-03-14 23:22:00 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-14 23:22:00 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-03-14 23:22:00 ----A---- C:\WINDOWS\system32\puiapi.dll
2017-03-14 23:22:00 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2017-03-14 23:21:59 ----A---- C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2017-03-14 23:21:59 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-03-14 23:21:58 ----A---- C:\WINDOWS\system32\wlansvc.dll
2017-03-14 23:21:58 ----A---- C:\WINDOWS\system32\wlansec.dll
2017-03-14 23:21:58 ----A---- C:\WINDOWS\system32\wlanapi.dll
2017-03-14 23:21:58 ----A---- C:\WINDOWS\system32\wfdprov.dll
2017-03-14 23:21:57 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-03-14 23:21:57 ----A---- C:\WINDOWS\system32\ntshrui.dll
2017-03-14 23:21:57 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-03-14 23:21:54 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-03-14 23:21:54 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-03-14 23:21:54 ----A---- C:\WINDOWS\system32\netshell.dll
2017-03-14 23:21:53 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-03-14 23:21:52 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-14 23:21:52 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-14 23:21:52 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:21:52 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-03-14 23:21:52 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-03-14 23:21:52 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-03-14 23:21:47 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-14 23:21:47 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-03-14 23:21:47 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-03-14 23:21:47 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2017-03-14 23:21:47 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2017-03-14 23:21:46 ----A---- C:\WINDOWS\system32\mspaint.exe
2017-03-14 23:21:46 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-14 23:21:44 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-03-14 23:21:44 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2017-03-14 23:21:43 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-03-14 23:21:43 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-14 23:21:42 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-14 23:21:41 ----A---- C:\WINDOWS\system32\MFPlay.dll
2017-03-14 23:21:41 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-03-14 23:21:41 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-03-14 23:21:41 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-03-14 23:21:41 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-14 23:21:41 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-14 23:21:41 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2017-03-14 23:21:41 ----A---- C:\WINDOWS\system32\mfds.dll
2017-03-14 23:21:40 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-03-14 23:21:40 ----A---- C:\WINDOWS\system32\wmp.dll
2017-03-14 23:21:40 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-03-14 23:21:40 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-03-14 23:21:40 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-14 23:21:40 ----A---- C:\WINDOWS\system32\mf.dll
2017-03-14 23:21:39 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-03-14 23:21:39 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-03-14 23:21:39 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-03-14 23:21:39 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-03-14 23:21:39 ----A---- C:\WINDOWS\system32\MCCSEngineShared.dll
2017-03-14 23:21:39 ----A---- C:\WINDOWS\system32\internetmail.dll
2017-03-14 23:21:39 ----A---- C:\WINDOWS\system32\DavSyncProvider.dll
2017-03-14 23:21:39 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2017-03-14 23:21:38 ----A---- C:\WINDOWS\system32\moshost.dll
2017-03-14 23:21:38 ----A---- C:\WINDOWS\system32\mos.dll
2017-03-14 23:21:38 ----A---- C:\WINDOWS\system32\MapsStore.dll
2017-03-14 23:21:38 ----A---- C:\WINDOWS\system32\MapRouter.dll
2017-03-14 23:21:38 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2017-03-14 23:21:37 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2017-03-14 23:21:37 ----A---- C:\WINDOWS\system32\inetcomm.dll
2017-03-14 23:21:37 ----A---- C:\WINDOWS\system32\BingMaps.dll
2017-03-14 23:21:35 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-03-14 23:21:34 ----A---- C:\WINDOWS\system32\FrameServer.dll
2017-03-14 23:21:33 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-14 23:21:33 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-03-14 23:21:33 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-14 23:21:32 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2017-03-14 23:21:32 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-14 23:21:32 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-03-14 23:21:32 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-03-14 23:21:30 ----A---- C:\WINDOWS\system32\mmc.exe
2017-03-14 23:21:30 ----A---- C:\WINDOWS\system32\appinfo.dll
2017-03-14 23:21:30 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-14 23:21:29 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-03-14 23:21:29 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2017-03-14 23:21:29 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2017-03-14 23:21:29 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2017-03-14 23:21:29 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-03-14 23:21:29 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-03-14 23:21:29 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-03-14 23:21:29 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-03-14 23:21:27 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-03-14 23:21:27 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2017-03-14 23:21:23 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-03-14 23:21:23 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2017-03-14 23:21:23 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2017-03-14 23:21:21 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-14 23:21:21 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2017-03-14 23:21:21 ----A---- C:\WINDOWS\system32\InputService.dll
2017-03-14 23:21:19 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-03-14 23:21:17 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-03-14 23:21:16 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-03-14 23:21:15 ----A---- C:\WINDOWS\system32\icm32.dll
2017-03-14 23:21:15 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-03-14 23:21:13 ----A---- C:\WINDOWS\system32\wininet.dll
2017-03-14 23:21:12 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-03-14 23:21:05 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2017-03-14 23:20:57 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-03-14 23:20:57 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2017-03-14 23:20:54 ----A---- C:\WINDOWS\system32\hgcpl.dll
2017-03-14 23:20:54 ----A---- C:\WINDOWS\HelpPane.exe
2017-03-14 23:20:53 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-03-14 23:20:53 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-03-14 23:20:53 ----A---- C:\WINDOWS\system32\gpapi.dll
2017-03-14 23:20:53 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-03-14 23:20:53 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-03-14 23:20:53 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-03-14 23:20:52 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-03-14 23:20:52 ----A---- C:\WINDOWS\system32\gameux.dll
2017-03-14 23:20:52 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-03-14 23:20:52 ----A---- C:\WINDOWS\system32\fhcfg.dll
2017-03-14 23:20:48 ----A---- C:\WINDOWS\system32\resutils.dll
2017-03-14 23:20:48 ----A---- C:\WINDOWS\system32\clusapi.dll
2017-03-14 23:20:45 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-03-14 23:20:44 ----A---- C:\WINDOWS\explorer.exe
2017-03-14 23:20:43 ----A---- C:\WINDOWS\system32\werui.dll
2017-03-14 23:20:43 ----A---- C:\WINDOWS\system32\werconcpl.dll
2017-03-14 23:20:43 ----A---- C:\WINDOWS\system32\wer.dll
2017-03-14 23:20:43 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-14 23:20:43 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-03-14 23:20:42 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-03-14 23:20:42 ----A---- C:\WINDOWS\system32\evr.dll
2017-03-14 23:20:41 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2017-03-14 23:20:41 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2017-03-14 23:20:41 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2017-03-14 23:20:41 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2017-03-14 23:20:40 ----A---- C:\WINDOWS\system32\WorkFoldersGPExt.dll
2017-03-14 23:20:40 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-03-14 23:20:40 ----A---- C:\WINDOWS\system32\DXP.dll
2017-03-14 23:20:40 ----A---- C:\WINDOWS\system32\dui70.dll
2017-03-14 23:20:39 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-03-14 23:20:39 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-03-14 23:20:39 ----A---- C:\WINDOWS\system32\DMRServer.dll
2017-03-14 23:20:39 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-03-14 23:20:38 ----A---- C:\WINDOWS\system32\dxgi.dll
2017-03-14 23:20:38 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-03-14 23:20:38 ----A---- C:\WINDOWS\system32\ddrawex.dll
2017-03-14 23:20:38 ----A---- C:\WINDOWS\system32\ddraw.dll
2017-03-14 23:20:38 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-14 23:20:38 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-03-14 23:20:37 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-03-14 23:20:37 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-14 23:20:37 ----A---- C:\WINDOWS\system32\quartz.dll
2017-03-14 23:20:37 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-03-14 23:20:36 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2017-03-14 23:20:35 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-03-14 23:20:35 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2017-03-14 23:20:35 ----A---- C:\WINDOWS\system32\dcntel.dll
2017-03-14 23:20:34 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-14 23:20:34 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-14 23:20:34 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-03-14 23:20:33 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-14 23:20:33 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-03-14 23:20:33 ----A---- C:\WINDOWS\system32\uDWM.dll
2017-03-14 23:20:33 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2017-03-14 23:20:31 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-03-14 23:20:31 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-03-14 23:20:31 ----A---- C:\WINDOWS\system32\policymanager.dll
2017-03-14 23:20:29 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-03-14 23:20:28 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-03-14 23:20:28 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-03-14 23:20:28 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-03-14 23:20:28 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-14 23:20:28 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-14 23:20:28 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-03-14 23:20:27 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-03-14 23:20:27 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-03-14 23:20:27 ----A---- C:\WINDOWS\system32\combase.dll
2017-03-14 23:20:27 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-03-14 23:20:26 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2017-03-14 23:20:26 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-14 23:20:26 ----A---- C:\WINDOWS\system32\ci.dll
2017-03-14 23:20:25 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-03-14 23:20:25 ----A---- C:\WINDOWS\system32\cdp.dll
2017-03-14 23:20:25 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-03-14 23:20:16 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-03-14 23:20:15 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2017-03-14 23:20:15 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2017-03-14 23:20:11 ----A---- C:\WINDOWS\system32\comsvcs.dll
2017-03-14 23:20:10 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-14 23:20:10 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-14 23:20:04 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2017-03-14 23:20:04 ----A---- C:\WINDOWS\system32\bootux.dll
2017-03-14 23:20:04 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-03-14 23:20:03 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2017-03-14 23:20:02 ----A---- C:\WINDOWS\system32\winresume.exe
2017-03-14 23:20:02 ----A---- C:\WINDOWS\system32\winload.exe
2017-03-14 23:20:02 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-03-14 23:20:02 ----A---- C:\WINDOWS\system32\CloudBackupSettings.dll
2017-03-14 23:19:57 ----A---- C:\WINDOWS\system32\PCPTpm12.dll
2017-03-14 23:19:55 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-03-14 23:19:55 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-03-14 23:19:55 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-14 23:19:54 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-03-14 23:19:54 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-03-14 23:19:54 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-03-14 23:19:54 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-03-14 23:19:54 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2017-03-14 23:19:54 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-03-14 23:19:54 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-03-14 23:19:52 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-03-14 23:19:51 ----A---- C:\WINDOWS\system32\invagent.dll
2017-03-14 23:19:51 ----A---- C:\WINDOWS\system32\devinv.dll
2017-03-14 23:19:51 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-03-14 23:19:50 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2017-03-14 23:19:50 ----A---- C:\WINDOWS\system32\authui.dll
2017-03-14 23:19:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-14 23:19:49 ----A---- C:\WINDOWS\system32\aepic.dll
2017-03-14 23:19:46 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-03-14 23:19:46 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-03-14 23:19:46 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-03-14 23:19:45 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-03-14 23:19:45 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-03-14 23:19:44 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-03-14 23:19:44 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-03-14 23:19:41 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2017-03-14 23:19:41 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2017-03-14 23:19:40 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-03-14 23:19:40 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-03-14 23:19:40 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-03-14 23:19:40 ----A---- C:\WINDOWS\system32\drivers\vmbkmclr.sys
2017-03-14 23:19:39 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-03-14 23:19:39 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2017-03-14 23:19:38 ----A---- C:\WINDOWS\system32\icsvcext.dll
2017-03-14 23:19:10 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2017-03-14 23:19:10 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-03-11 22:15:49 ----A---- C:\WINDOWS\system32\drivers\aswbuniva.sys
2017-03-11 22:15:49 ----A---- C:\WINDOWS\system32\drivers\aswbloga.sys
2017-03-11 22:15:49 ----A---- C:\WINDOWS\system32\drivers\aswbidsha.sys
2017-03-11 22:15:48 ----A---- C:\WINDOWS\system32\drivers\aswbidsdrivera.sys

======List of files/folders modified in the last 1 month======

2017-04-09 23:53:49 ----D---- C:\WINDOWS\Prefetch
2017-04-09 23:53:35 ----RD---- C:\Program Files
2017-04-09 23:53:26 ----D---- C:\WINDOWS\Temp
2017-04-09 23:45:51 ----RSD---- C:\WINDOWS\assembly
2017-04-09 23:43:36 ----D---- C:\WINDOWS\System32
2017-04-09 23:43:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-09 23:41:07 ----HD---- C:\ProgramData
2017-04-09 23:40:37 ----D---- C:\WINDOWS\system32\drivers
2017-04-09 23:40:08 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-04-09 23:39:48 ----D---- C:\WINDOWS\system32\sru
2017-04-09 23:39:48 ----D---- C:\ProgramData\NVIDIA
2017-04-09 23:39:29 ----D---- C:\Windows
2017-04-09 23:32:25 ----SHD---- C:\System Volume Information
2017-04-09 23:08:54 ----D---- C:\WINDOWS\system32\Tasks
2017-04-09 22:44:39 ----D---- C:\WINDOWS\system32\SleepStudy
2017-04-09 22:30:55 ----SHDC---- C:\WINDOWS\Installer
2017-04-09 22:26:31 ----RD---- C:\Program Files (x86)
2017-04-09 22:26:24 ----D---- C:\Program Files (x86)\Google
2017-04-09 22:05:18 ----D---- C:\WINDOWS\AppReadiness
2017-04-09 22:03:54 ----D---- C:\WINDOWS\system32\config
2017-04-09 21:56:57 ----D---- C:\WINDOWS\INF
2017-04-09 21:50:14 ----D---- C:\WINDOWS\system32\DriverStore
2017-04-09 21:49:09 ----D---- C:\WINDOWS\Logs
2017-04-09 21:49:09 ----D---- C:\WINDOWS\debug
2017-04-09 21:39:35 ----AD---- C:\Program Files\7-Zip
2017-04-09 21:32:20 ----D---- C:\Program Files (x86)\Steam
2017-04-09 00:33:22 ----RD---- C:\WINDOWS\Microsoft.NET
2017-04-08 14:16:31 ----HD---- C:\Program Files\WindowsApps
2017-03-31 17:11:36 ----D---- C:\Hry
2017-03-31 10:23:37 ----D---- C:\Program Files\Common Files\Apple
2017-03-27 17:17:52 ----D---- C:\WINDOWS\system32\Macromed
2017-03-27 17:17:49 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-03-25 23:05:11 ----D---- C:\Users\fibou\AppData\Roaming\Lenovo
2017-03-25 23:04:38 ----D---- C:\Program Files\Lenovo
2017-03-25 23:03:20 ----D---- C:\WINDOWS\Downloaded Installations
2017-03-23 13:12:51 ----D---- C:\WINDOWS\system32\catroot2
2017-03-18 07:15:44 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-03-17 02:03:22 ----D---- C:\WINDOWS\rescache
2017-03-17 01:41:55 ----D---- C:\ProgramData\AVAST Software
2017-03-16 23:27:55 ----D---- C:\WINDOWS\WinSxS
2017-03-16 19:52:16 ----D---- C:\WINDOWS\CbsTemp
2017-03-16 19:52:14 ----D---- C:\WINDOWS\system32\appraiser
2017-03-15 00:08:35 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-03-15 00:08:35 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-03-15 00:08:35 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-03-15 00:08:35 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-03-15 00:08:35 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-03-15 00:08:35 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-03-15 00:08:35 ----D---- C:\WINDOWS\SysWOW64
2017-03-15 00:08:31 ----SD---- C:\WINDOWS\system32\F12
2017-03-15 00:08:31 ----D---- C:\WINDOWS\system32\wbem
2017-03-15 00:08:31 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-03-15 00:08:31 ----D---- C:\WINDOWS\system32\setup
2017-03-15 00:08:31 ----D---- C:\WINDOWS\system32\oobe
2017-03-15 00:08:31 ----D---- C:\WINDOWS\system32\migration
2017-03-15 00:08:31 ----D---- C:\WINDOWS\system32\en-US
2017-03-15 00:08:30 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-03-15 00:08:30 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2017-03-15 00:08:30 ----D---- C:\WINDOWS\system32\cs-CZ
2017-03-15 00:08:30 ----D---- C:\WINDOWS\system32\Boot
2017-03-15 00:08:15 ----RD---- C:\WINDOWS\PrintDialog
2017-03-15 00:08:15 ----D---- C:\WINDOWS\ShellExperiences
2017-03-15 00:08:14 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-03-15 00:08:13 ----RD---- C:\Program Files\Windows Defender
2017-03-15 00:08:13 ----D---- C:\WINDOWS\bcastdvr
2017-03-15 00:08:13 ----D---- C:\WINDOWS\AppPatch
2017-03-15 00:08:13 ----D---- C:\Program Files\Windows Photo Viewer
2017-03-15 00:08:13 ----D---- C:\Program Files\Windows Mail
2017-03-15 00:08:13 ----D---- C:\Program Files\Internet Explorer
2017-03-15 00:08:13 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-03-15 00:08:13 ----D---- C:\Program Files (x86)\Windows Mail
2017-03-15 00:08:13 ----D---- C:\Program Files (x86)\Windows Defender
2017-03-15 00:08:13 ----D---- C:\Program Files (x86)\Internet Explorer
2017-03-15 00:01:01 ----D---- C:\WINDOWS\system32\MRT
2017-03-14 23:58:26 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-03-12 10:01:14 ----D---- C:\WINDOWS\LiveKernelReports
2017-03-11 22:17:54 ----D---- C:\temp
2017-03-11 13:14:47 ----D---- C:\ProgramData\Lenovo
2017-03-10 07:17:56 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

[fibou]

Druhá část logu:


======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-04-05 189768]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-04-05 334088]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-04-05 48528]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-04-05 75704]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-04-05 339696]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-07-25 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-04-05 307736]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-04-05 32600]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-04-05 101152]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-04-05 1005048]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-04-05 556784]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-11-12 91912]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\WINDOWS\system32\drivers\mbae64.sys [2017-03-24 77440]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-04-05 127112]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-04-05 164064]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [2017-04-09 186304]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 ACPIVPC;@oem10.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-06-15 42328]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-09-30 84992]
R3 CnxtHdAudService;@oem11.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-03-10 1535680]
R3 ibtusb;@oem83.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-01-13 231168]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-11-02 7966192]
R3 IntcDAud;@oem28.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
R3 MBAMFarflt;MBAMFarflt; \??\C:\WINDOWS\system32\drivers\farflt.sys [2017-04-09 111544]
R3 MBAMProtection;MBAMProtection; \??\C:\WINDOWS\system32\drivers\mbam.sys [2017-04-09 43968]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2017-04-09 251832]
R3 MBAMWebProtection;MBAMWebProtection; \??\C:\WINDOWS\system32\drivers\mwac.sys [2017-04-09 92096]
R3 MEIx64;@oem23.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2015-06-12 183584]
R3 NETwNb64;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 8.1 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2015-06-22 3776792]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_dc8ffafad3ea7ddd\nvlddmkm.sys [2017-01-17 14190520]
R3 rt640x64;@oem9.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-05-29 886528]
R3 RTSUER;@oem7.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2016-01-04 410880]
R3 S6000KNT;@oem16.inf,%USBVideo.SvcDesc%;Alcor WebCam Driver; C:\WINDOWS\System32\Drivers\S6000KNT.sys [2016-02-24 732672]
R3 semav6msr64;semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [2015-06-04 21984]
R3 SynTP;@oem0.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-06-01 642168]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-04-05 38296]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2016-09-15 168448]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-09-30 114176]
S3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2016-07-16 37376]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2016-09-15 249856]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-11-11 967168]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-30 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 Netaapl;@oem29.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\System32\drivers\netaapl64.sys [2014-08-16 23040]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2015-07-10 3354384]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-06-03 42696]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-03-17 83768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-04-05 261712]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_5e43c;CDPUserSvc_5e43c; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2014-10-20 207576]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ESRV_SVC_WILLAMETTE;Energy Server Service WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2016-06-08 416408]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2015-06-12 640928]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-22 18856]
R2 ibtsiva;@oem83.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-11-02 373744]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2012-03-28 140456]
R2 ImControllerService;System Interface Foundation Service; c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-03-03 58688]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-01-20 4355024]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-12-29 458176]
R2 OneSyncSvc_5e43c;Hostitel synchronizace_5e43c; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-01-22 2181648]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2015-06-12 157088]
R2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-06-01 255608]
R2 SystemUsageReportSvc_WILLAMETTE;Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [2016-06-08 117400]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-04-05 7398336]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_5e43c;Data kontaktů_5e43c; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-04-09 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-27 271960]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-11-02 301552]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-04-09 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2017-03-22 689464]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2017-02-14 273216]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_5e43c;Služba zasílání zpráv_5e43c; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2015-06-12 268192]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-10-25 456640]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2017-01-22 2119176]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-04 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-23 1590560]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

[fibou]

Podle jiných příspěvků jsem zkusil následující:
Adwcleaner - zkoušel jsem celkem třikrát.

1. log:

# AdwCleaner v6.045 - Log vytvořen 09/04/2017 v 22:01:57
# Aktualizováno dne 28/03/2017 z Malwarebytes
# Databáze : 2017-04-06.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : fibou - NOTEBOOK
# Spuštěno z : C:\Users\fibou\Downloads\adwcleaner_6.045.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.


***** [ Složky ] *****

Složka nalezena: C:\Users\fibou\AppData\Local\DriverToolkit
Složka nalezena: C:\Program Files (x86)\DriverToolkit


***** [ Soubory ] *****

Nebyly nalezeny žádné škodlivé soubory.


***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL.


***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.


***** [ Zástupci ] *****

Žádný infikovaný zástupce nenalezen.


***** [ Naplánované úlohy ] *****

Žádná nebezpečná úloha nenalezena.


***** [ Registry ] *****

Klíč nalezen: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\Conduit
Klíč nalezen: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\DriverToolkit
Klíč nalezen: HKCU\Software\Conduit
Klíč nalezen: HKCU\Software\DriverToolkit
Klíč nalezen: HKLM\SOFTWARE\Conduit
Klíč nalezen: [x64] HKCU\Software\Conduit
Klíč nalezen: [x64] HKCU\Software\DriverToolkit
Data nalezena: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages] - hxxp://mystart.lenovo.com
Data nalezena: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.lenovo.com
Data nalezena: HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages] - hxxp://mystart.lenovo.com
Data nalezena: HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.lenovo.com
Data nalezena: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages] - hxxp://mystart.lenovo.com
Data nalezena: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.lenovo.com


***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [2417 Bajty] - [09/04/2017 22:01:57]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2490 Bajty] ##########

[fibou]

Adwcleaner - 2.log:

# AdwCleaner v6.045 - Log vytvořen 09/04/2017 v 23:33:52
# Aktualizováno dne 28/03/2017 z Malwarebytes
# Databáze : 2017-04-06.1 [Místní]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : fibou - NOTEBOOK
# Spuštěno z : C:\Users\fibou\Downloads\adwcleaner_6.045.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.


***** [ Složky ] *****

Nebyly nalezeny žádné škodlivé složky.


***** [ Soubory ] *****

Nebyly nalezeny žádné škodlivé soubory.


***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL.


***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.


***** [ Zástupci ] *****

Žádný infikovaný zástupce nenalezen.


***** [ Naplánované úlohy ] *****

Žádná nebezpečná úloha nenalezena.


***** [ Registry ] *****

Klíč nalezen: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\Conduit
Klíč nalezen: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\DriverToolkit
Klíč nalezen: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092017230319933\Software\Conduit
Klíč nalezen: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092017230319933\Software\DriverToolkit
Klíč nalezen: HKCU\Software\Conduit
Klíč nalezen: HKCU\Software\DriverToolkit
Klíč nalezen: HKLM\SOFTWARE\Conduit
Klíč nalezen: [x64] HKCU\Software\Conduit
Klíč nalezen: [x64] HKCU\Software\DriverToolkit
Data nalezena: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages] - hxxp://mystart.lenovo.com
Data nalezena: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.lenovo.com
Data nalezena: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092017230319933\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages] - hxxp://mystart.lenovo.co
Data nalezena: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092017230319933\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.leno
Data nalezena: HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages] - hxxp://mystart.lenovo.com
Data nalezena: HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.lenovo.com
Data nalezena: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages] - hxxp://mystart.lenovo.com
Data nalezena: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.lenovo.com


***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [2287 Bajty] - [09/04/2017 22:02:34]
C:\AdwCleaner\AdwCleaner[S0].txt - [2585 Bajty] - [09/04/2017 22:01:57]
C:\AdwCleaner\AdwCleaner[S1].txt - [3217 Bajty] - [09/04/2017 23:33:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [3290 Bajty] ##########

[fibou]

Adwcleaner - 3-log:

# AdwCleaner v6.045 - Log vytvořen 10/04/2017 v 12:53:43
# Aktualizováno dne 28/03/2017 z Malwarebytes
# Databáze : 2017-04-06.1 [Místní]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : fibou - NOTEBOOK
# Spuštěno z : C:\Users\fibou\Downloads\adwcleaner_6.045.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.


***** [ Složky ] *****

Nebyly nalezeny žádné škodlivé složky.


***** [ Soubory ] *****

Nebyly nalezeny žádné škodlivé soubory.


***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL.


***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.


***** [ Zástupci ] *****

Žádný infikovaný zástupce nenalezen.


***** [ Naplánované úlohy ] *****

Žádná nebezpečná úloha nenalezena.


***** [ Registry ] *****

Nebyly nalezeny žádné škodlivé položky registru.


***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [2287 Bajty] - [09/04/2017 22:02:34]
C:\AdwCleaner\AdwCleaner[C2].txt - [3002 Bajty] - [09/04/2017 23:35:02]
C:\AdwCleaner\AdwCleaner[S0].txt - [2585 Bajty] - [09/04/2017 22:01:57]
C:\AdwCleaner\AdwCleaner[S1].txt - [3385 Bajty] - [09/04/2017 23:33:52]
C:\AdwCleaner\AdwCleaner[S2].txt - [1507 Bajty] - [10/04/2017 12:53:43]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1580 Bajty] ##########

[fibou]

Dále jsem zkusil postupovat podle tohoto návodu:
https://forum.viry.cz/viewtopic.php?f=1 ... e#p1478603

Log ze Zoak:


Zoek.exe v5.0.0.1 Updated 27-09-2015
Tool run by fibou on 10.04.2017 at 8:47:29,06.
Microsoft Windows 10 Home 10.0.14393 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\fibou\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

10.04.2017 8:49:10 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\iSkysoft deleted successfully
C:\PROGRA~3\Canon IJ Network Tool deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\PROGRA~3\SUPPORTDIR deleted successfully
C:\Users\fibou\AppData\Local\ActiveSync deleted successfully
C:\Users\fibou\AppData\Local\NetworkTiles deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\iSkysoft not found
C:\PROGRA~2\COMMON~1\Wondershare deleted
C:\PROGRA~3\{827D21CC-A22D-45D6-23CA-451DDAC769BA} deleted
C:\PROGRA~3\{972DC8CA-126D-23FD-11AA-92876DD12AFD} deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\fibou\AppData\Local\Wondershare deleted
"C:\Users\fibou\AppData\Roaming\vPacs" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [06.11.2016 18:14]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [06.11.2016 18:14]

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - No path found[]
eofcbnmajmjmplflapaojjnihcjkigck - No path found[]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[]

Avast Online Security - fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Chrome Media Router - fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Chromium Fix ======================

C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki deleted successfully
C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gomekmidlodglbbmalcneegieacbdmki_0.localstorage deleted successfully
C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gomekmidlodglbbmalcneegieacbdmki_0.localstorage-journal deleted successfully
C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gomekmidlodglbbmalcneegieacbdmki deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo15.msn.com/?pc=LCTE"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{643AA4CC-DCA3-47A4-838E-6675CE843F01}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo15.msn.com/?pc=LCTE"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{643AA4CC-DCA3-47A4-838E-6675CE843F01} Unknown Url="Not_Found"

==== Reset Google Chrome ======================

C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3287823714-3707918364-1892592251-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{643AA4CC-DCA3-47A4-838E-6675CE843F01} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{643AA4CC-DCA3-47A4-838E-6675CE843F01} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{643AA4CC-DCA3-47A4-838E-6675CE843F01} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\fibou\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\fibou\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\fibou\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\fibou\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=251 folders=143 144848969 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\fibou\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 10.04.2017 at 9:51:57,90 ======================

[fibou]

Log z JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.2 (03.10.2017)
Operating System: Windows 10 Home x64
Ran by fibou (Administrator) on 10.04.2017 at 9:53:53,03
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 10.04.2017 at 9:59:20,60
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[fibou]

Nakonec jsem zkusil udělat sken pomocí Malwarebytes - vlastní sken obou pevných disků, vč. roolkitů - nenašel nic - log tady:

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 10.04.17
Čas skenování: 10:05
Logovací soubor: malwarebytes-log.txt
Správce: Ano

-Informace o softwaru-
Verze: 3.0.6.1469
Verze komponentů: 1.0.96
Aktualizovat verzi balíku komponent: 1.0.1695
Licence: Zkušební

-Systémová informace-
OS: Windows 10
CPU: x64
Systém souborů: NTFS
Uživatel: NOTEBOOK\fibou

-Shrnutí skenování-
Typ skenování: Vlastní skenování
Výsledek: Dokončeno
Skenované objekty: 473044
Uplynulý čas: 2 hod, 15 min, 37 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

[fibou]

Už jsem se radoval, když tu náhled mě Chrome opět přesměroval na "queryrouter".
A zrovna teď Malwarebytes zablokoval stránku - kopie zprávy o zablokování přikládám.

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum události ochrany: 10.04.17
Čas události ochrany: 13:18
Logovací soubor:
Správce: Ano

-Informace o softwaru-
Verze: 3.0.6.1469
Verze komponentů: 1.0.96
Aktualizovat verzi balíku komponent: 1.0.1697
Licence: Zkušební

-Systémová informace-
OS: Windows 10
CPU: x64
Systém souborů: NTFS
Uživatel: System

-Podrobnosti o zablokovaném webu-
Škodlivý web: 1
, , Zablokováno, [-1], [-1],0.0.0

-Údaje o webu-
Doména: www.pcrisk.com
IP Adresa: 104.20.16.14
Port: [51556]
Typ: Odchozí
Soubor: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe



(end)



Předtím mi některý z těch programů mimo jiné zresetoval nastavení Chromu. Chvíli se nic nedělo, poté jsem se přihlásil do google účtu a zase to začalo zlobit - viz výše (ale nevím, zda to byla náhoda, nebo to spolu má souvislost).

Moc prosím o pomoc, pokud to bude možné. Díky.

[fibou]

Ještě dodávám log z FRST, ať můžu poskytnout co nejvíc informací (Opět dvě části)

1.část:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by fibou (administrator) on NOTEBOOK (10-04-2017 13:40:35)
Running from C:\Users\fibou\Desktop
Loaded Profiles: fibou (Available Profiles: fibou)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
() C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1703.601.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\fibou\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [S6000Mnt] => C:\WINDOWS\WebCam\S6000\S6000Mnt.exe [516608 2016-02-24] (Alcor)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848 2015-08-31] ()
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-03-22] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-04-05] (AVAST Software)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110008 2015-07-21] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492472 2015-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (CANON INC.)
HKLM-x32\...\Run: [kbdsprt] => [X]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-05] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-05] (AVAST Software)
BootExecute: autocheck autochk * aswBoot.exe /M:c6814985a /wow /dir:"C:\Program Files\AVAST Software\Avast"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

AutoConfigURL: [S-1-5-21-3287823714-3707918364-1892592251-1001] => hxxp://tech-access.biz/wpad.dat?785f380b9834956c16bd6af6e627656628090532
Tcpip\Parameters: [DhcpNameServer] 160.218.161.54 194.228.41.65
Tcpip\..\Interfaces\{4453a3f6-68f0-4cab-b330-e91c755e8a3e}: [DhcpNameServer] 160.218.161.54 194.228.41.65
Tcpip\..\Interfaces\{6ed95b22-30bb-441d-8eb7-e5aed9fdacdf}: [DhcpNameServer] 160.218.161.54 194.228.41.65
Tcpip\..\Interfaces\{e2514a77-cd3a-436d-b9bd-1cb6418bc6ce}: [DhcpNameServer] 172.20.10.1
ManualProxies: 0hxxp://tech-access.biz/wpad.dat?785f380b9834956c16bd6af6e627656628090532

Internet Explorer:
==================
HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
SearchScopes: HKLM -> DefaultScope {643AA4CC-DCA3-47A4-838E-6675CE843F01} URL =
SearchScopes: HKLM-x32 -> DefaultScope {643AA4CC-DCA3-47A4-838E-6675CE843F01} URL =
SearchScopes: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-11-06]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-11-06]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-04-09] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-04-09] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default [2017-04-10]
CHR Extension: (Prezentace Google) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-10]
CHR Extension: (Dokumenty Google) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-10]
CHR Extension: (Disk Google) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-10]
CHR Extension: (YouTube) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-10]
CHR Extension: (Adobe Acrobat) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-10]
CHR Extension: (Avast SafePrice) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-04-10]
CHR Extension: (Tabulky Google) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-10]
CHR Extension: (Gmail) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-10]
CHR Extension: (Chrome Media Router) - C:\Users\fibou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-10]
CHR Profile: C:\Users\fibou\AppData\Local\Google\Chrome\User Data\System Profile [2017-04-10]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-03-17] (Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7398336 2017-04-05] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [261712 2017-04-05] (AVAST Software)
R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-22] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-02] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 ImControllerService; c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [58688 2017-03-03] (Lenovo Group Limited)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273216 2017-02-14] (Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-06-12] ()
S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-22] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-22] (Electronic Arts)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [255608 2016-06-01] (Synaptics Incorporated)
R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-03-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831200 2015-06-12] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [307736 2017-04-05] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-04-05] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334088 2017-04-05] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-04-05] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-04-05] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32600 2017-04-05] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [127112 2017-04-05] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [101152 2017-04-05] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-04-05] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1005048 2017-04-05] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [556784 2017-04-05] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [164064 2017-04-05] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [339696 2017-04-05] (AVAST Software)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-03-24] ()
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [231168 2017-01-13] (Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-04-09] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-04-10] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-04-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [251832 2017-04-10] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92096 2017-04-10] (Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3776792 2015-06-22] (Intel Corporation)
S3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_dc8ffafad3ea7ddd\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2016-01-04] (Realsil Semiconductor Corporation)
R3 S6000KNT; C:\WINDOWS\System32\Drivers\S6000KNT.sys [732672 2016-02-24] (Alcor Micro, Corp.)
R3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-10 13:40 - 2017-04-10 13:41 - 00017223 _____ C:\Users\fibou\Desktop\FRST.txt
2017-04-10 13:40 - 2017-04-10 13:40 - 00000000 ____D C:\FRST
2017-04-10 13:39 - 2017-04-10 13:39 - 00112640 _____ (forum.viry.cz) C:\Users\fibou\Desktop\FRSTLauncher.exe
2017-04-10 13:31 - 2017-04-10 13:31 - 02424832 _____ (Farbar) C:\Users\fibou\Desktop\FRST64.exe
2017-04-10 13:13 - 2017-04-09 22:01 - 00002585 _____ C:\Users\fibou\Downloads\AdwCleaner[S0].txt
2017-04-10 12:54 - 2017-04-10 12:53 - 00001659 _____ C:\Users\fibou\Downloads\AdwCleaner[S2].txt
2017-04-10 12:54 - 2017-04-09 23:34 - 00003385 _____ C:\Users\fibou\Downloads\AdwCleaner[S1].txt
2017-04-10 12:44 - 2017-04-10 12:44 - 00001480 _____ C:\Users\fibou\Downloads\malwarebytes-log.txt
2017-04-10 09:59 - 2017-04-10 09:59 - 00000547 _____ C:\Users\fibou\Downloads\JRT.txt
2017-04-10 09:59 - 2017-04-10 09:59 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-04-10 09:50 - 2017-04-10 08:47 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2017-04-10 08:47 - 2017-04-10 09:41 - 00000000 ____D C:\zoek_backup
2017-04-09 23:53 - 2017-04-09 23:54 - 00000000 ____D C:\rsit
2017-04-09 23:53 - 2017-04-09 23:53 - 00000000 ____D C:\Program Files\trend micro
2017-04-09 23:51 - 2017-04-09 23:53 - 01222144 _____ C:\Users\fibou\Desktop\RSITx64.exe
2017-04-09 23:29 - 2017-04-10 08:47 - 01309184 _____ C:\Users\fibou\Desktop\zoek.exe
2017-04-09 23:29 - 2017-04-09 23:29 - 01663904 _____ (Malwarebytes) C:\Users\fibou\Desktop\JRT.exe
2017-04-09 23:26 - 2017-04-09 23:28 - 04089296 _____ C:\Users\fibou\Desktop\adwcleaner_6.045.exe
2017-04-09 22:57 - 2017-04-10 09:52 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-09 22:57 - 2017-04-10 09:52 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-04-09 22:57 - 2017-04-10 09:52 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-04-09 22:57 - 2017-04-09 22:57 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-04-09 22:57 - 2017-04-09 22:57 - 00001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-04-09 22:57 - 2017-03-24 04:10 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-04-09 22:56 - 2017-04-09 22:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-04-09 22:56 - 2017-04-09 22:56 - 00000000 ____D C:\Program Files\Malwarebytes
2017-04-09 22:26 - 2017-04-09 22:26 - 00002355 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-09 22:25 - 2017-04-09 22:25 - 00003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-09 22:25 - 2017-04-09 22:25 - 00003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-09 22:08 - 2017-04-10 13:04 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-04-09 22:03 - 2017-04-09 22:04 - 00234664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-09 22:00 - 2017-04-10 12:53 - 00000000 ____D C:\AdwCleaner
2017-04-05 11:30 - 2017-04-05 11:30 - 00399944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-04-02 21:59 - 2017-04-02 21:59 - 00000000 ____D C:\Users\fibou\AppData\LocalLow\WeersProductions
2017-03-31 17:06 - 2017-03-31 17:10 - 00000000 ____D C:\Users\fibou\Documents\Simutrans
2017-03-31 10:24 - 2017-03-31 10:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-03-31 10:24 - 2017-03-31 10:24 - 00000000 ____D C:\Program Files\iPod
2017-03-31 10:23 - 2017-03-31 10:24 - 00000000 ____D C:\Program Files\iTunes
2017-03-31 10:21 - 2017-03-31 10:21 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2017-03-31 10:21 - 2017-03-31 10:21 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2017-03-29 17:49 - 2017-03-29 17:50 - 00000000 ____D C:\Users\fibou\AppData\Roaming\ViberPC
2017-03-29 17:49 - 2017-03-29 17:49 - 00001079 _____ C:\Users\fibou\AppData\Roaming\Microsoft\Windows\Start Menu\Viber.lnk
2017-03-29 17:49 - 2017-03-29 17:49 - 00000000 ____D C:\Users\fibou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber
2017-03-29 17:49 - 2017-03-29 17:49 - 00000000 ____D C:\Users\fibou\AppData\Local\Viber
2017-03-29 17:49 - 2017-03-29 17:49 - 00000000 ____D C:\Users\fibou\AppData\Local\Package Cache
2017-03-27 17:17 - 2017-03-27 17:17 - 00004642 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-03-27 17:17 - 2017-03-27 17:17 - 00004496 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-03-22 21:27 - 2017-03-22 21:28 - 00000000 ____D C:\Users\fibou\Documents\cossacks
2017-03-22 21:06 - 2017-03-22 21:06 - 00000222 _____ C:\Users\fibou\Desktop\Cossacks 3.url
2017-03-14 23:36 - 2017-03-04 09:40 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-03-14 23:36 - 2017-03-04 08:53 - 02256080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-03-14 23:36 - 2017-03-04 08:45 - 00173408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-03-14 23:36 - 2017-03-04 08:42 - 01260784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-03-14 23:36 - 2017-03-04 08:42 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2017-03-14 23:36 - 2017-03-04 08:40 - 00306800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2017-03-14 23:36 - 2017-03-04 08:36 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-03-14 23:36 - 2017-03-04 08:29 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfp.dll
2017-03-14 23:36 - 2017-03-04 08:27 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2017-03-14 23:36 - 2017-03-04 08:25 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-03-14 23:36 - 2017-03-04 08:25 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscandui.dll
2017-03-14 23:36 - 2017-03-04 08:25 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2017-03-14 23:36 - 2017-03-04 08:25 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
2017-03-14 23:36 - 2017-03-04 08:24 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-03-14 23:36 - 2017-03-04 08:24 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfui.dll
2017-03-14 23:36 - 2017-03-04 08:22 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-03-14 23:36 - 2017-03-04 08:21 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\main.cpl
2017-03-14 23:36 - 2017-03-04 08:21 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2017-03-14 23:36 - 2017-03-04 08:20 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2017-03-14 23:36 - 2017-03-04 08:20 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPTpm12.dll
2017-03-14 23:36 - 2017-03-04 08:20 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-03-14 23:36 - 2017-03-04 08:20 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2017-03-14 23:36 - 2017-03-04 08:20 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2017-03-14 23:36 - 2017-03-04 08:19 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-03-14 23:36 - 2017-03-04 08:19 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-03-14 23:36 - 2017-03-04 08:18 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2017-03-14 23:36 - 2017-03-04 08:16 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-03-14 23:36 - 2017-03-04 08:16 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-03-14 23:36 - 2017-03-04 08:16 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2017-03-14 23:36 - 2017-03-04 08:16 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2017-03-14 23:36 - 2017-03-04 08:16 - 00762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2017-03-14 23:36 - 2017-03-04 08:16 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2017-03-14 23:36 - 2017-03-04 08:15 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2017-03-14 23:36 - 2017-03-04 08:15 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2017-03-14 23:36 - 2017-03-04 08:13 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2017-03-14 23:36 - 2017-03-04 08:13 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-03-14 23:36 - 2017-03-04 08:12 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-03-14 23:36 - 2017-03-04 08:12 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2017-03-14 23:36 - 2017-03-04 08:11 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2017-03-14 23:36 - 2017-03-04 08:10 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2017-03-14 23:36 - 2017-03-04 08:09 - 00570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2017-03-14 23:36 - 2017-03-04 08:07 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-03-14 23:36 - 2017-03-04 08:06 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-03-14 23:36 - 2017-03-04 08:05 - 07468544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-03-14 23:36 - 2017-03-04 08:05 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2017-03-14 23:36 - 2017-03-04 08:03 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxclu.dll
2017-03-14 23:36 - 2017-03-04 08:02 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2017-03-14 23:36 - 2017-03-04 08:02 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-03-14 23:36 - 2017-03-04 08:01 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2017-03-14 23:36 - 2017-03-04 08:01 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-03-14 23:36 - 2017-03-04 08:01 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-03-14 23:36 - 2017-03-04 08:00 - 02483200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-03-14 23:36 - 2017-03-04 08:00 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-03-14 23:36 - 2017-03-04 08:00 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2017-03-14 23:36 - 2017-03-04 07:57 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2017-03-14 23:35 - 2017-03-04 09:09 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-03-14 23:35 - 2017-03-04 09:09 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2017-03-14 23:35 - 2017-03-04 09:06 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-03-14 23:35 - 2017-03-04 09:04 - 01362512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2017-03-14 23:35 - 2017-03-04 09:02 - 00184416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2017-03-14 23:35 - 2017-03-04 08:56 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-03-14 23:35 - 2017-03-04 08:53 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-03-14 23:35 - 2017-03-04 08:53 - 01431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-03-14 23:35 - 2017-03-04 08:53 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-03-14 23:35 - 2017-03-04 08:53 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-03-14 23:35 - 2017-03-04 08:53 - 00781152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-03-14 23:35 - 2017-03-04 08:53 - 00493912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-03-14 23:35 - 2017-03-04 08:53 - 00313568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-03-14 23:35 - 2017-03-04 08:52 - 00549088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-03-14 23:35 - 2017-03-04 08:52 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-03-14 23:35 - 2017-03-04 08:51 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 06667528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 04023000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 01853224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 01344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 01277856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 01202384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 00981376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 00976184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 00530480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 00374448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2017-03-14 23:35 - 2017-03-04 08:47 - 00352760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-03-14 23:35 - 2017-03-04 08:46 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2017-03-14 23:35 - 2017-03-04 08:30 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-03-14 23:35 - 2017-03-04 08:30 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2017-03-14 23:35 - 2017-03-04 08:30 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-03-14 23:35 - 2017-03-04 08:30 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-03-14 23:35 - 2017-03-04 08:29 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2017-03-14 23:35 - 2017-03-04 08:29 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll
2017-03-14 23:35 - 2017-03-04 08:29 - 00019968 _____ C:\WINDOWS\SysWOW64\GamePanelExternalHook.dll
2017-03-14 23:35 - 2017-03-04 08:28 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2017-03-14 23:35 - 2017-03-04 08:27 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accountaccessor.dll
2017-03-14 23:35 - 2017-03-04 08:27 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2017-03-14 23:35 - 2017-03-04 08:26 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-03-14 23:35 - 2017-03-04 08:26 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-03-14 23:35 - 2017-03-04 08:26 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2017-03-14 23:35 - 2017-03-04 08:26 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-03-14 23:35 - 2017-03-04 08:26 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2017-03-14 23:35 - 2017-03-04 08:26 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:35 - 2017-03-04 08:26 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-14 23:35 - 2017-03-04 08:26 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2017-03-14 23:35 - 2017-03-04 08:26 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2017-03-14 23:35 - 2017-03-04 08:25 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2017-03-14 23:35 - 2017-03-04 08:25 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCCSEngineShared.dll
2017-03-14 23:35 - 2017-03-04 08:25 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2017-03-14 23:35 - 2017-03-04 08:25 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2017-03-14 23:35 - 2017-03-04 08:25 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2017-03-14 23:35 - 2017-03-04 08:24 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-03-14 23:35 - 2017-03-04 08:24 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:35 - 2017-03-04 08:24 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2017-03-14 23:35 - 2017-03-04 08:23 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-03-14 23:35 - 2017-03-04 08:23 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2017-03-14 23:35 - 2017-03-04 08:23 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2017-03-14 23:35 - 2017-03-04 08:23 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:35 - 2017-03-04 08:23 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2017-03-14 23:35 - 2017-03-04 08:23 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:35 - 2017-03-04 08:23 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2017-03-14 23:35 - 2017-03-04 08:22 - 01299968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-03-14 23:35 - 2017-03-04 08:22 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-03-14 23:35 - 2017-03-04 08:22 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-03-14 23:35 - 2017-03-04 08:22 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2017-03-14 23:35 - 2017-03-04 08:22 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2017-03-14 23:35 - 2017-03-04 08:22 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2017-03-14 23:35 - 2017-03-04 08:22 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2017-03-14 23:35 - 2017-03-04 08:22 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2017-03-14 23:35 - 2017-03-04 08:22 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2017-03-14 23:35 - 2017-03-04 08:21 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-03-14 23:35 - 2017-03-04 08:21 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2017-03-14 23:35 - 2017-03-04 08:21 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-03-14 23:35 - 2017-03-04 08:21 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2017-03-14 23:35 - 2017-03-04 08:21 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 23:35 - 2017-03-04 08:20 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-14 23:35 - 2017-03-04 08:20 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-14 23:35 - 2017-03-04 08:20 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2017-03-14 23:35 - 2017-03-04 08:20 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2017-03-14 23:35 - 2017-03-04 08:20 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2017-03-14 23:35 - 2017-03-04 08:20 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2017-03-14 23:35 - 2017-03-04 08:19 - 00714752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2017-03-14 23:35 - 2017-03-04 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2017-03-14 23:35 - 2017-03-04 08:19 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-03-14 23:35 - 2017-03-04 08:19 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2017-03-14 23:35 - 2017-03-04 08:19 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2017-03-14 23:35 - 2017-03-04 08:18 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-03-14 23:35 - 2017-03-04 08:17 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-03-14 23:35 - 2017-03-04 08:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2017-03-14 23:35 - 2017-03-04 08:17 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-03-14 23:35 - 2017-03-04 08:17 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-03-14 23:35 - 2017-03-04 08:16 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2017-03-14 23:35 - 2017-03-04 08:16 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2017-03-14 23:35 - 2017-03-04 08:16 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-03-14 23:35 - 2017-03-04 08:16 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-03-14 23:35 - 2017-03-04 08:16 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-14 23:35 - 2017-03-04 08:16 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2017-03-14 23:35 - 2017-03-04 08:16 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2017-03-14 23:35 - 2017-03-04 08:16 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-03-14 23:35 - 2017-03-04 08:16 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-03-14 23:35 - 2017-03-04 08:15 - 18362368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-03-14 23:35 - 2017-03-04 08:15 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-03-14 23:35 - 2017-03-04 08:14 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-03-14 23:35 - 2017-03-04 08:14 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2017-03-14 23:35 - 2017-03-04 08:13 - 19411968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-03-14 23:35 - 2017-03-04 08:13 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-03-14 23:35 - 2017-03-04 08:13 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-03-14 23:35 - 2017-03-04 08:13 - 04613120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-03-14 23:35 - 2017-03-04 08:13 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2017-03-14 23:35 - 2017-03-04 08:13 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-03-14 23:35 - 2017-03-04 08:13 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-03-14 23:35 - 2017-03-04 08:13 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-03-14 23:35 - 2017-03-04 08:12 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-03-14 23:35 - 2017-03-04 08:12 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-03-14 23:35 - 2017-03-04 08:11 - 01357312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2017-03-14 23:35 - 2017-03-04 08:11 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-03-14 23:35 - 2017-03-04 08:11 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-03-14 23:35 - 2017-03-04 08:11 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2017-03-14 23:35 - 2017-03-04 08:10 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-03-14 23:35 - 2017-03-04 08:10 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2017-03-14 23:35 - 2017-03-04 08:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-14 23:35 - 2017-03-04 08:10 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2017-03-14 23:35 - 2017-03-04 08:09 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2017-03-14 23:35 - 2017-03-04 08:09 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-03-14 23:35 - 2017-03-04 08:09 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2017-03-14 23:35 - 2017-03-04 08:08 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-03-14 23:35 - 2017-03-04 08:08 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-03-14 23:35 - 2017-03-04 08:07 - 12178944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-03-14 23:35 - 2017-03-04 08:07 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-03-14 23:35 - 2017-03-04 08:07 - 02643456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-03-14 23:35 - 2017-03-04 08:07 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-03-14 23:35 - 2017-03-04 08:07 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2017-03-14 23:35 - 2017-03-04 08:06 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-03-14 23:35 - 2017-03-04 08:06 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-03-14 23:35 - 2017-03-04 08:06 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2017-03-14 23:35 - 2017-03-04 08:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2017-03-14 23:35 - 2017-03-04 08:05 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2017-03-14 23:35 - 2017-03-04 08:05 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-03-14 23:35 - 2017-03-04 08:05 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2017-03-14 23:35 - 2017-03-04 08:05 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2017-03-14 23:35 - 2017-03-04 08:04 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2017-03-14 23:35 - 2017-03-04 08:04 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-03-14 23:35 - 2017-03-04 08:03 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-03-14 23:35 - 2017-03-04 08:03 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-03-14 23:35 - 2017-03-04 08:03 - 02363904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2017-03-14 23:35 - 2017-03-04 08:03 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2017-03-14 23:35 - 2017-03-04 08:03 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2017-03-14 23:35 - 2017-03-04 08:03 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-03-14 23:35 - 2017-03-04 08:02 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-03-14 23:35 - 2017-03-04 08:02 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-03-14 23:35 - 2017-03-04 08:02 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-03-14 23:35 - 2017-03-04 08:02 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-03-14 23:35 - 2017-03-04 08:02 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-03-14 23:35 - 2017-03-04 08:02 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 03478528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 01571840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 01493504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-03-14 23:35 - 2017-03-04 08:01 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 01154560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-03-14 23:35 - 2017-03-04 08:01 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-03-14 23:35 - 2017-03-04 08:01 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 02996736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-03-14 23:35 - 2017-03-04 08:00 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 00862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-03-14 23:35 - 2017-03-04 08:00 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2017-03-14 23:35 - 2017-03-04 07:59 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-03-14 23:35 - 2017-03-04 07:59 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2017-03-14 23:35 - 2017-03-04 07:57 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-03-14 23:35 - 2017-03-04 07:57 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2017-03-14 23:35 - 2017-03-04 07:57 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-03-14 23:35 - 2016-05-29 20:38 - 08886976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSetup.exe
2017-03-14 23:34 - 2017-03-04 09:57 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-03-14 23:34 - 2017-03-04 09:57 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-03-14 23:34 - 2017-03-04 09:57 - 00192352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-03-14 23:34 - 2017-03-04 09:09 - 00497416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-03-14 23:34 - 2017-03-04 09:04 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-03-14 23:34 - 2017-03-04 08:56 - 00248992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-03-14 23:34 - 2017-03-04 08:54 - 02277288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-03-14 23:34 - 2017-03-04 08:54 - 00524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-03-14 23:34 - 2017-03-04 08:53 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2017-03-14 23:34 - 2017-03-04 08:51 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-03-14 23:34 - 2017-03-04 08:50 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2017-03-14 23:34 - 2017-03-04 08:47 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2017-03-14 23:34 - 2017-03-04 08:47 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2017-03-14 23:34 - 2017-03-04 08:46 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-03-14 23:34 - 2017-03-04 08:45 - 00112120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2017-03-14 23:34 - 2017-03-04 08:42 - 01415240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-03-14 23:34 - 2017-03-04 08:42 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-03-14 23:34 - 2017-03-04 08:30 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-03-14 23:34 - 2017-03-04 08:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2017-03-14 23:34 - 2017-03-04 08:26 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2017-03-14 23:34 - 2017-03-04 08:26 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2017-03-14 23:34 - 2017-03-04 08:24 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-03-14 23:34 - 2017-03-04 08:24 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2017-03-14 23:34 - 2017-03-04 08:24 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-03-14 23:34 - 2017-03-04 08:23 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-03-14 23:34 - 2017-03-04 08:23 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2017-03-14 23:34 - 2017-03-04 08:23 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-14 23:34 - 2017-03-04 08:23 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2017-03-14 23:34 - 2017-03-04 08:22 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-03-14 23:34 - 2017-03-04 08:21 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2017-03-14 23:34 - 2017-03-04 08:21 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2017-03-14 23:34 - 2017-03-04 08:21 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-03-14 23:34 - 2017-03-04 08:21 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-14 23:34 - 2017-03-04 08:20 - 13873664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-03-14 23:34 - 2017-03-04 08:20 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2017-03-14 23:34 - 2017-03-04 08:20 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-03-14 23:34 - 2017-03-04 08:20 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-03-14 23:34 - 2017-03-04 08:20 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2017-03-14 23:34 - 2017-03-04 08:20 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-03-14 23:34 - 2017-03-04 08:19 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2017-03-14 23:34 - 2017-03-04 08:19 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2017-03-14 23:34 - 2017-03-04 08:19 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2017-03-14 23:34 - 2017-03-04 08:18 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2017-03-14 23:34 - 2017-03-04 08:18 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2017-03-14 23:34 - 2017-03-04 08:16 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2017-03-14 23:34 - 2017-03-04 08:15 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-03-14 23:34 - 2017-03-04 08:13 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-03-14 23:34 - 2017-03-04 08:13 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-03-14 23:34 - 2017-03-04 08:12 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-14 23:34 - 2017-03-04 08:12 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2017-03-14 23:34 - 2017-03-04 08:06 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-03-14 23:34 - 2017-03-04 08:05 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2017-03-14 23:34 - 2017-03-04 08:05 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2017-03-14 23:34 - 2017-03-04 08:05 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2017-03-14 23:34 - 2017-03-04 08:04 - 00753152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2017-03-14 23:34 - 2017-03-04 08:03 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2017-03-14 23:34 - 2017-03-04 08:02 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-03-14 23:34 - 2017-03-04 08:02 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2017-03-14 23:34 - 2017-03-04 08:01 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-03-14 23:34 - 2017-03-04 08:01 - 01564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-03-14 23:34 - 2017-03-04 08:01 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-03-14 23:34 - 2017-03-04 08:00 - 02003968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-03-14 23:34 - 2017-03-04 08:00 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-03-14 23:34 - 2017-03-04 07:36 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-03-14 23:24 - 2017-03-04 09:11 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-03-14 23:24 - 2017-03-04 09:07 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-03-14 23:24 - 2017-03-04 08:36 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2017-03-14 23:24 - 2017-03-04 08:34 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-03-14 23:24 - 2017-03-04 08:33 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:24 - 2017-03-04 08:33 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll
2017-03-14 23:24 - 2017-03-04 08:32 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2017-03-14 23:24 - 2017-03-04 08:32 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-03-14 23:24 - 2017-03-04 08:31 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:24 - 2017-03-04 08:31 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-03-14 23:24 - 2017-03-04 08:31 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-03-14 23:24 - 2017-03-04 08:30 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-03-14 23:24 - 2017-03-04 08:30 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2017-03-14 23:24 - 2017-03-04 08:29 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-03-14 23:24 - 2017-03-04 08:29 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-03-14 23:24 - 2017-03-04 08:28 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-03-14 23:24 - 2017-03-04 08:28 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:24 - 2017-03-04 08:27 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2017-03-14 23:24 - 2017-03-04 08:27 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-03-14 23:24 - 2017-03-04 08:27 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-03-14 23:24 - 2017-03-04 08:25 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-03-14 23:24 - 2017-03-04 08:25 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2017-03-14 23:24 - 2017-03-04 08:24 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-03-14 23:24 - 2017-03-04 08:23 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-03-14 23:24 - 2017-03-04 08:22 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2017-03-14 23:24 - 2017-03-04 08:20 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-03-14 23:24 - 2017-03-04 08:14 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2017-03-14 23:24 - 2017-03-04 08:11 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-14 23:24 - 2017-03-04 08:08 - 03405312 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-03-14 23:24 - 2017-03-04 08:08 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-03-14 23:24 - 2017-03-04 08:07 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-03-14 23:24 - 2017-03-04 08:06 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-03-14 23:23 - 2017-03-04 09:25 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-03-14 23:23 - 2017-03-04 09:24 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2017-03-14 23:23 - 2017-03-04 09:23 - 02512304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2017-03-14 23:23 - 2017-03-04 09:15 - 00404320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2017-03-14 23:23 - 2017-03-04 09:09 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2017-03-14 23:23 - 2017-03-04 09:08 - 00342456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-03-14 23:23 - 2017-03-04 09:08 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-03-14 23:23 - 2017-03-04 09:04 - 08169536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:23 - 2017-03-04 09:03 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-03-14 23:23 - 2017-03-04 08:37 - 00025088 _____ C:\WINDOWS\system32\GamePanelExternalHook.dll
2017-03-14 23:23 - 2017-03-04 08:28 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-03-14 23:23 - 2017-03-04 08:27 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2017-03-14 23:23 - 2017-03-04 08:26 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2017-03-14 23:23 - 2017-03-04 08:26 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2017-03-14 23:23 - 2017-03-04 08:25 - 01016320 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-03-14 23:23 - 2017-03-04 08:23 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-03-14 23:23 - 2017-03-04 08:23 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-03-14 23:23 - 2017-03-04 08:20 - 01913856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-03-14 23:23 - 2017-03-04 08:19 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-03-14 23:23 - 2017-03-04 08:16 - 03289088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-03-14 23:23 - 2017-03-04 08:13 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2017-03-14 23:23 - 2017-03-04 08:12 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-03-14 23:23 - 2017-03-04 08:11 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-03-14 23:23 - 2017-03-04 08:11 - 00818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-03-14 23:23 - 2017-03-04 08:10 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2017-03-14 23:23 - 2017-03-04 08:10 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-03-14 23:23 - 2017-03-04 08:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-03-14 23:23 - 2017-03-04 08:07 - 02914816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-03-14 23:23 - 2017-03-04 08:07 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-03-14 23:23 - 2017-03-04 08:07 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-14 23:23 - 2017-03-04 08:06 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2017-03-14 23:23 - 2017-03-04 08:06 - 03614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-03-14 23:23 - 2017-03-04 08:05 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-14 23:23 - 2017-02-22 04:17 - 00448285 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-03-14 23:23 - 2016-07-16 04:29 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CspCellularSettings.dll
2017-03-14 23:23 - 2016-07-16 04:28 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-03-14 23:23 - 2016-07-16 04:26 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-03-14 23:22 - 2017-03-04 09:24 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2017-03-14 23:22 - 2017-03-04 09:24 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-03-14 23:22 - 2017-03-04 09:20 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-03-14 23:22 - 2017-03-04 09:19 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-03-14 23:22 - 2017-03-04 09:18 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2017-03-14 23:22 - 2017-03-04 09:18 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-03-14 23:22 - 2017-03-04 09:17 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2017-03-14 23:22 - 2017-03-04 09:15 - 01000280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-03-14 23:22 - 2017-03-04 09:10 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-03-14 23:22 - 2017-03-04 09:09 - 01860288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-03-14 23:22 - 2017-03-04 09:09 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-03-14 23:22 - 2017-03-04 09:09 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-14 23:22 - 2017-03-04 09:09 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-03-14 23:22 - 2017-03-04 09:09 - 00681312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-03-14 23:22 - 2017-03-04 09:09 - 00578392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-14 23:22 - 2017-03-04 09:08 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-03-14 23:22 - 2017-03-04 09:08 - 00450400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-03-14 23:22 - 2017-03-04 09:08 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-03-14 23:22 - 2017-03-04 09:07 - 00432992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-03-14 23:22 - 2017-03-04 09:03 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-03-14 23:22 - 2017-03-04 09:03 - 01723560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2017-03-14 23:22 - 2017-03-04 09:03 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-03-14 23:22 - 2017-03-04 09:01 - 00201568 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-03-14 23:22 - 2017-03-04 09:01 - 00137936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2017-03-14 23:22 - 2017-03-04 08:58 - 01416224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-03-14 23:22 - 2017-03-04 08:58 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2017-03-14 23:22 - 2017-03-04 08:57 - 02536288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-03-14 23:22 - 2017-03-04 08:39 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-14 23:22 - 2017-03-04 08:36 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2017-03-14 23:22 - 2017-03-04 08:36 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-14 23:22 - 2017-03-04 08:36 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2017-03-14 23:22 - 2017-03-04 08:36 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-03-14 23:22 - 2017-03-04 08:36 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-03-14 23:22 - 2017-03-04 08:36 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-03-14 23:22 - 2017-03-04 08:35 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-14 23:22 - 2017-03-04 08:35 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-03-14 23:22 - 2017-03-04 08:34 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-03-14 23:22 - 2017-03-04 08:34 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-03-14 23:22 - 2017-03-04 08:34 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-03-14 23:22 - 2017-03-04 08:34 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfui.dll
2017-03-14 23:22 - 2017-03-04 08:34 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-03-14 23:22 - 2017-03-04 08:33 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-03-14 23:22 - 2017-03-04 08:33 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2017-03-14 23:22 - 2017-03-04 08:33 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothDesktopHandlers.dll
2017-03-14 23:22 - 2017-03-04 08:33 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2017-03-14 23:22 - 2017-03-04 08:33 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2017-03-14 23:22 - 2017-03-04 08:32 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2017-03-14 23:22 - 2017-03-04 08:32 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-03-14 23:22 - 2017-03-04 08:32 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-03-14 23:22 - 2017-03-04 08:32 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-14 23:22 - 2017-03-04 08:31 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2017-03-14 23:22 - 2017-03-04 08:31 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-03-14 23:22 - 2017-03-04 08:30 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-03-14 23:22 - 2017-03-04 08:30 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscandui.dll
2017-03-14 23:22 - 2017-03-04 08:30 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-03-14 23:22 - 2017-03-04 08:30 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-03-14 23:22 - 2017-03-04 08:30 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2017-03-14 23:22 - 2017-03-04 08:30 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-14 23:22 - 2017-03-04 08:30 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2017-03-14 23:22 - 2017-03-04 08:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2017-03-14 23:22 - 2017-03-04 08:30 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2017-03-14 23:22 - 2017-03-04 08:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-03-14 23:22 - 2017-03-04 08:29 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-14 23:22 - 2017-03-04 08:29 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2017-03-14 23:22 - 2017-03-04 08:29 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2017-03-14 23:22 - 2017-03-04 08:29 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2017-03-14 23:22 - 2017-03-04 08:28 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-03-14 23:22 - 2017-03-04 08:28 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2017-03-14 23:22 - 2017-03-04 08:28 - 00556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-03-14 23:22 - 2017-03-04 08:28 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2017-03-14 23:22 - 2017-03-04 08:28 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-03-14 23:22 - 2017-03-04 08:28 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-03-14 23:22 - 2017-03-04 08:27 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-03-14 23:22 - 2017-03-04 08:27 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-03-14 23:22 - 2017-03-04 08:27 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-03-14 23:22 - 2017-03-04 08:27 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-03-14 23:22 - 2017-03-04 08:27 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-03-14 23:22 - 2017-03-04 08:27 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-03-14 23:22 - 2017-03-04 08:27 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 23:22 - 2017-03-04 08:27 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2017-03-14 23:22 - 2017-03-04 08:26 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-03-14 23:22 - 2017-03-04 08:26 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-03-14 23:22 - 2017-03-04 08:26 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2017-03-14 23:22 - 2017-03-04 08:26 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2017-03-14 23:22 - 2017-03-04 08:26 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2017-03-14 23:22 - 2017-03-04 08:26 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-03-14 23:22 - 2017-03-04 08:26 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-03-14 23:22 - 2017-03-04 08:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-14 23:22 - 2017-03-04 08:25 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-03-14 23:22 - 2017-03-04 08:25 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-03-14 23:22 - 2017-03-04 08:25 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-03-14 23:22 - 2017-03-04 08:25 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-14 23:22 - 2017-03-04 08:25 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-03-14 23:22 - 2017-03-04 08:25 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 23:22 - 2017-03-04 08:25 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-03-14 23:22 - 2017-03-04 08:24 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2017-03-14 23:22 - 2017-03-04 08:24 - 01092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-14 23:22 - 2017-03-04 08:24 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2017-03-14 23:22 - 2017-03-04 08:24 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2017-03-14 23:22 - 2017-03-04 08:23 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2017-03-14 23:22 - 2017-03-04 08:23 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-03-14 23:22 - 2017-03-04 08:23 - 00945152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-03-14 23:22 - 2017-03-04 08:23 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-03-14 23:22 - 2017-03-04 08:23 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-03-14 23:22 - 2017-03-04 08:23 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2017-03-14 23:22 - 2017-03-04 08:23 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-03-14 23:22 - 2017-03-04 08:23 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-14 23:22 - 2017-03-04 08:23 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-03-14 23:22 - 2017-03-04 08:23 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-03-14 23:22 - 2017-03-04 08:22 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-03-14 23:22 - 2017-03-04 08:21 - 06285824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-03-14 23:22 - 2017-03-04 08:21 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-14 23:22 - 2017-03-04 08:21 - 00776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabletPC.cpl
2017-03-14 23:22 - 2017-03-04 08:21 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-03-14 23:22 - 2017-03-04 08:21 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-03-14 23:22 - 2017-03-04 08:20 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-03-14 23:22 - 2017-03-04 08:20 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-14 23:22 - 2017-03-04 08:20 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-03-14 23:22 - 2017-03-04 08:20 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-03-14 23:22 - 2017-03-04 08:20 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2017-03-14 23:22 - 2017-03-04 08:19 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-03-14 23:22 - 2017-03-04 08:19 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2017-03-14 23:22 - 2017-03-04 08:19 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-03-14 23:22 - 2017-03-04 08:19 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Tabbtn.dll
2017-03-14 23:22 - 2017-03-04 08:19 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\tabcal.exe
2017-03-14 23:22 - 2017-03-04 08:18 - 01189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2017-03-14 23:22 - 2017-03-04 08:18 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2017-03-14 23:22 - 2017-03-04 08:18 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2017-03-14 23:22 - 2017-03-04 08:17 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-03-14 23:22 - 2017-03-04 08:17 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-03-14 23:22 - 2017-03-04 08:17 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-03-14 23:22 - 2017-03-04 08:16 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-14 23:22 - 2017-03-04 08:16 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2017-03-14 23:22 - 2017-03-04 08:16 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2017-03-14 23:22 - 2017-03-04 08:16 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2017-03-14 23:22 - 2017-03-04 08:15 - 09130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-03-14 23:22 - 2017-03-04 08:15 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-03-14 23:22 - 2017-03-04 08:15 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2017-03-14 23:22 - 2017-03-04 08:14 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-14 23:22 - 2017-03-04 08:14 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2017-03-14 23:22 - 2017-03-04 08:14 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-03-14 23:22 - 2017-03-04 08:14 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2017-03-14 23:22 - 2017-03-04 08:13 - 01366016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-03-14 23:22 - 2017-03-04 08:13 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2017-03-14 23:22 - 2017-03-04 08:13 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-03-14 23:22 - 2017-03-04 08:13 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2017-03-14 23:22 - 2017-03-04 08:13 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MultiDigiMon.exe
2017-03-14 23:22 - 2017-03-04 08:11 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-03-14 23:22 - 2017-03-04 08:11 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-03-14 23:22 - 2017-03-04 08:11 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2017-03-14 23:22 - 2017-03-04 08:10 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-14 23:22 - 2017-03-04 08:10 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-03-14 23:22 - 2017-03-04 08:10 - 01536000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-03-14 23:22 - 2017-03-04 08:10 - 01399296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2017-03-14 23:22 - 2017-03-04 08:10 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-03-14 23:22 - 2017-03-04 08:09 - 08125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

[fibou]

FRST část 2:

2017-03-14 23:22 - 2017-03-04 08:09 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-03-14 23:22 - 2017-03-04 08:09 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2017-03-14 23:22 - 2017-03-04 08:09 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-03-14 23:22 - 2017-03-04 08:09 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-14 23:22 - 2017-03-04 08:08 - 08076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-03-14 23:22 - 2017-03-04 08:08 - 01981440 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-03-14 23:22 - 2017-03-04 08:08 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-03-14 23:22 - 2017-03-04 08:08 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-03-14 23:22 - 2017-03-04 08:08 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-03-14 23:22 - 2017-03-04 08:08 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 01792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 01512448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-03-14 23:22 - 2017-03-04 08:07 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2017-03-14 23:22 - 2017-03-04 08:06 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-03-14 23:22 - 2017-03-04 08:06 - 04060672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-03-14 23:22 - 2017-03-04 08:06 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-03-14 23:22 - 2017-03-04 08:06 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-03-14 23:22 - 2017-03-04 08:06 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-03-14 23:22 - 2017-03-04 08:06 - 01131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-03-14 23:22 - 2017-03-04 08:06 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2017-03-14 23:22 - 2017-03-04 08:06 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-03-14 23:22 - 2017-03-04 08:05 - 01328640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-03-14 23:22 - 2017-03-04 08:05 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-03-14 23:22 - 2017-03-04 08:04 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-03-14 23:22 - 2017-03-04 08:04 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-03-14 23:22 - 2017-03-04 08:04 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2017-03-14 23:22 - 2017-03-04 08:04 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2017-03-14 23:22 - 2017-03-04 08:03 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-03-14 23:21 - 2017-03-04 09:26 - 00794416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-14 23:21 - 2017-03-04 09:24 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-14 23:21 - 2017-03-04 09:22 - 07786336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-03-14 23:21 - 2017-03-04 09:22 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-03-14 23:21 - 2017-03-04 09:21 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-03-14 23:21 - 2017-03-04 09:18 - 01181024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-03-14 23:21 - 2017-03-04 09:10 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-03-14 23:21 - 2017-03-04 09:09 - 07220696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-03-14 23:21 - 2017-03-04 09:09 - 02750384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-03-14 23:21 - 2017-03-04 09:09 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-03-14 23:21 - 2017-03-04 09:09 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-03-14 23:21 - 2017-03-04 09:09 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2017-03-14 23:21 - 2017-03-04 09:08 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-03-14 23:21 - 2017-03-04 09:07 - 02446704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-03-14 23:21 - 2017-03-04 09:04 - 01063472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 04260576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 01989072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 01473048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 01454512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 01301112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 00596040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 00443232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 00424616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2017-03-14 23:21 - 2017-03-04 09:03 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2017-03-14 23:21 - 2017-03-04 08:57 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-03-14 23:21 - 2017-03-04 08:36 - 22565376 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-03-14 23:21 - 2017-03-04 08:36 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2017-03-14 23:21 - 2017-03-04 08:35 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-03-14 23:21 - 2017-03-04 08:34 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2017-03-14 23:21 - 2017-03-04 08:32 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCCSEngineShared.dll
2017-03-14 23:21 - 2017-03-04 08:32 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:21 - 2017-03-04 08:31 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2017-03-14 23:21 - 2017-03-04 08:31 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2017-03-14 23:21 - 2017-03-04 08:30 - 00535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-03-14 23:21 - 2017-03-04 08:30 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2017-03-14 23:21 - 2017-03-04 08:29 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-03-14 23:21 - 2017-03-04 08:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-03-14 23:21 - 2017-03-04 08:29 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2017-03-14 23:21 - 2017-03-04 08:28 - 00741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-03-14 23:21 - 2017-03-04 08:28 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-03-14 23:21 - 2017-03-04 08:28 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2017-03-14 23:21 - 2017-03-04 08:28 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-03-14 23:21 - 2017-03-04 08:27 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2017-03-14 23:21 - 2017-03-04 08:27 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-03-14 23:21 - 2017-03-04 08:27 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2017-03-14 23:21 - 2017-03-04 08:27 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-03-14 23:21 - 2017-03-04 08:26 - 00643072 _____ (Microsoft Corporation) C:\WINDOWS\system32\main.cpl
2017-03-14 23:21 - 2017-03-04 08:26 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-14 23:21 - 2017-03-04 08:26 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2017-03-14 23:21 - 2017-03-04 08:26 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-03-14 23:21 - 2017-03-04 08:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-14 23:21 - 2017-03-04 08:25 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-03-14 23:21 - 2017-03-04 08:24 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-03-14 23:21 - 2017-03-04 08:24 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-03-14 23:21 - 2017-03-04 08:23 - 00820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2017-03-14 23:21 - 2017-03-04 08:21 - 01937920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2017-03-14 23:21 - 2017-03-04 08:21 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-14 23:21 - 2017-03-04 08:19 - 23676416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-03-14 23:21 - 2017-03-04 08:19 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-14 23:21 - 2017-03-04 08:18 - 01762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2017-03-14 23:21 - 2017-03-04 08:17 - 07812096 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-03-14 23:21 - 2017-03-04 08:17 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-14 23:21 - 2017-03-04 08:16 - 13441536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-03-14 23:21 - 2017-03-04 08:16 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2017-03-14 23:21 - 2017-03-04 08:15 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-03-14 23:21 - 2017-03-04 08:13 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-03-14 23:21 - 2017-03-04 08:13 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-03-14 23:21 - 2017-03-04 08:13 - 00937472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-03-14 23:21 - 2017-03-04 08:12 - 13085184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-03-14 23:21 - 2017-03-04 08:12 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-03-14 23:21 - 2017-03-04 08:12 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-03-14 23:21 - 2017-03-04 08:12 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-03-14 23:21 - 2017-03-04 08:12 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-03-14 23:21 - 2017-03-04 08:11 - 03441664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-03-14 23:21 - 2017-03-04 08:11 - 02953216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-03-14 23:21 - 2017-03-04 08:10 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-03-14 23:21 - 2017-03-04 08:10 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-03-14 23:21 - 2017-03-04 08:10 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-14 23:21 - 2017-03-04 08:10 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-03-14 23:21 - 2017-03-04 08:10 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-03-14 23:21 - 2017-03-04 08:10 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-03-14 23:21 - 2017-03-04 08:10 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-03-14 23:21 - 2017-03-04 08:09 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-03-14 23:21 - 2017-03-04 08:08 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-03-14 23:21 - 2017-03-04 08:07 - 02895872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-03-14 23:21 - 2017-03-04 08:07 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-03-14 23:21 - 2017-03-04 08:07 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-03-14 23:21 - 2017-03-04 08:07 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-03-14 23:21 - 2017-03-04 08:06 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-03-14 23:21 - 2017-03-04 08:06 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-03-14 23:21 - 2017-03-04 08:06 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-03-14 23:21 - 2017-03-04 08:05 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-14 23:21 - 2017-03-04 08:04 - 01826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-03-14 23:21 - 2017-03-04 08:04 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-03-14 23:20 - 2017-03-04 09:35 - 01617760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-03-14 23:20 - 2017-03-04 09:35 - 00655200 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-03-14 23:20 - 2017-03-04 09:35 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-03-14 23:20 - 2017-03-04 09:35 - 00315232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-03-14 23:20 - 2017-03-04 09:35 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-03-14 23:20 - 2017-03-04 09:35 - 00086368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-14 23:20 - 2017-03-04 09:35 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-03-14 23:20 - 2017-03-04 09:27 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-03-14 23:20 - 2017-03-04 09:24 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-03-14 23:20 - 2017-03-04 09:24 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-03-14 23:20 - 2017-03-04 09:24 - 00646688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-03-14 23:20 - 2017-03-04 09:22 - 01354312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-03-14 23:20 - 2017-03-04 09:22 - 01172984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-03-14 23:20 - 2017-03-04 09:20 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2017-03-14 23:20 - 2017-03-04 09:19 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-14 23:20 - 2017-03-04 09:15 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-03-14 23:20 - 2017-03-04 09:13 - 00635456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-03-14 23:20 - 2017-03-04 09:11 - 00266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-03-14 23:20 - 2017-03-04 09:10 - 02828384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-03-14 23:20 - 2017-03-04 09:09 - 00635864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-03-14 23:20 - 2017-03-04 09:07 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-03-14 23:20 - 2017-03-04 09:07 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-03-14 23:20 - 2017-03-04 09:07 - 00682808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-03-14 23:20 - 2017-03-04 09:03 - 04674360 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-03-14 23:20 - 2017-03-04 09:03 - 00755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2017-03-14 23:20 - 2017-03-04 09:03 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2017-03-14 23:20 - 2017-03-04 09:03 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-14 23:20 - 2017-03-04 09:03 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-03-14 23:20 - 2017-03-04 09:03 - 00038768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2017-03-14 23:20 - 2017-03-04 09:01 - 00128648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2017-03-14 23:20 - 2017-03-04 08:59 - 01570208 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-03-14 23:20 - 2017-03-04 08:58 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-03-14 23:20 - 2017-03-04 08:42 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-14 23:20 - 2017-03-04 08:37 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-03-14 23:20 - 2017-03-04 08:35 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2017-03-14 23:20 - 2017-03-04 08:33 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-03-14 23:20 - 2017-03-04 08:33 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-03-14 23:20 - 2017-03-04 08:32 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-03-14 23:20 - 2017-03-04 08:31 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-03-14 23:20 - 2017-03-04 08:31 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2017-03-14 23:20 - 2017-03-04 08:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-03-14 23:20 - 2017-03-04 08:30 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-03-14 23:20 - 2017-03-04 08:30 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-14 23:20 - 2017-03-04 08:30 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-03-14 23:20 - 2017-03-04 08:29 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-03-14 23:20 - 2017-03-04 08:29 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-14 23:20 - 2017-03-04 08:29 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-03-14 23:20 - 2017-03-04 08:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2017-03-14 23:20 - 2017-03-04 08:28 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-03-14 23:20 - 2017-03-04 08:28 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-03-14 23:20 - 2017-03-04 08:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-14 23:20 - 2017-03-04 08:27 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2017-03-14 23:20 - 2017-03-04 08:27 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-03-14 23:20 - 2017-03-04 08:27 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-03-14 23:20 - 2017-03-04 08:26 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-03-14 23:20 - 2017-03-04 08:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2017-03-14 23:20 - 2017-03-04 08:26 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-03-14 23:20 - 2017-03-04 08:26 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-14 23:20 - 2017-03-04 08:26 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-03-14 23:20 - 2017-03-04 08:26 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-03-14 23:20 - 2017-03-04 08:26 - 00264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-03-14 23:20 - 2017-03-04 08:25 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-03-14 23:20 - 2017-03-04 08:24 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2017-03-14 23:20 - 2017-03-04 08:23 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2017-03-14 23:20 - 2017-03-04 08:20 - 01280512 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-03-14 23:20 - 2017-03-04 08:19 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-03-14 23:20 - 2017-03-04 08:19 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-03-14 23:20 - 2017-03-04 08:19 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2017-03-14 23:20 - 2017-03-04 08:18 - 17198592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-14 23:20 - 2017-03-04 08:18 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2017-03-14 23:20 - 2017-03-04 08:17 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-03-14 23:20 - 2017-03-04 08:17 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-03-14 23:20 - 2017-03-04 08:16 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-03-14 23:20 - 2017-03-04 08:16 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2017-03-14 23:20 - 2017-03-04 08:15 - 01837056 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-03-14 23:20 - 2017-03-04 08:14 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2017-03-14 23:20 - 2017-03-04 08:14 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-03-14 23:20 - 2017-03-04 08:13 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-03-14 23:20 - 2017-03-04 08:13 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2017-03-14 23:20 - 2017-03-04 08:13 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2017-03-14 23:20 - 2017-03-04 08:13 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2017-03-14 23:20 - 2017-03-04 08:13 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2017-03-14 23:20 - 2017-03-04 08:13 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2017-03-14 23:20 - 2017-03-04 08:12 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-03-14 23:20 - 2017-03-04 08:11 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-14 23:20 - 2017-03-04 08:11 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-03-14 23:20 - 2017-03-04 08:11 - 00975872 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-03-14 23:20 - 2017-03-04 08:11 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2017-03-14 23:20 - 2017-03-04 08:11 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2017-03-14 23:20 - 2017-03-04 08:10 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-03-14 23:20 - 2017-03-04 08:10 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-14 23:20 - 2017-03-04 08:10 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-03-14 23:20 - 2017-03-04 08:10 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-03-14 23:20 - 2017-03-04 08:10 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2017-03-14 23:20 - 2017-03-04 08:09 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-03-14 23:20 - 2017-03-04 08:08 - 01780224 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-03-14 23:20 - 2017-03-04 08:08 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-03-14 23:20 - 2017-03-04 08:08 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-03-14 23:20 - 2017-03-04 08:07 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-03-14 23:20 - 2017-03-04 08:06 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-14 23:20 - 2017-03-04 08:06 - 02475008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-03-14 23:20 - 2017-03-04 08:06 - 02287104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-03-14 23:20 - 2017-03-04 08:05 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2017-03-14 23:19 - 2017-03-04 09:35 - 01294688 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-03-14 23:19 - 2017-03-04 09:35 - 00590952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-03-14 23:19 - 2017-03-04 09:35 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-03-14 23:19 - 2017-03-04 09:35 - 00343904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-03-14 23:19 - 2017-03-04 09:35 - 00242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-03-14 23:19 - 2017-03-04 09:24 - 00090976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2017-03-14 23:19 - 2017-03-04 09:18 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-03-14 23:19 - 2017-03-04 09:09 - 00178520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-03-14 23:19 - 2017-03-04 09:07 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-03-14 23:19 - 2017-03-04 09:07 - 00989016 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-03-14 23:19 - 2017-03-04 09:07 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-03-14 23:19 - 2017-03-04 09:07 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-03-14 23:19 - 2017-03-04 09:07 - 00557400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-03-14 23:19 - 2017-03-04 09:07 - 00110944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2017-03-14 23:19 - 2017-03-04 09:07 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-03-14 23:19 - 2017-03-04 08:57 - 00372432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-03-14 23:19 - 2017-03-04 08:34 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-03-14 23:19 - 2017-03-04 08:34 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-03-14 23:19 - 2017-03-04 08:33 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2017-03-14 23:19 - 2017-03-04 08:30 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-03-14 23:19 - 2017-03-04 08:28 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-03-14 23:19 - 2017-03-04 08:28 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-03-14 23:19 - 2017-03-04 08:28 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2017-03-14 23:19 - 2017-03-04 08:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-03-14 23:19 - 2017-03-04 08:27 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-03-14 23:19 - 2017-03-04 08:27 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-14 23:19 - 2017-03-04 08:27 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-03-14 23:19 - 2017-03-04 08:24 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-03-14 23:19 - 2017-03-04 08:24 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-03-14 23:19 - 2017-03-04 08:24 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2017-03-14 23:19 - 2017-03-04 08:23 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-03-14 23:19 - 2017-03-04 08:22 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-03-14 23:19 - 2017-03-04 08:20 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2017-03-14 23:19 - 2017-03-04 08:14 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2017-03-14 23:19 - 2017-03-04 08:12 - 01692160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-03-14 23:19 - 2017-03-04 08:12 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-03-14 23:19 - 2017-03-04 08:11 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-14 23:19 - 2017-03-04 08:07 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-03-14 23:19 - 2017-03-04 08:06 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-03-11 22:15 - 2017-04-05 11:31 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-03-11 22:15 - 2017-04-05 11:30 - 00334088 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-03-11 22:15 - 2017-04-05 11:30 - 00307736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-03-11 22:15 - 2017-04-05 11:30 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-03-11 22:15 - 2017-04-05 11:30 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-10 12:43 - 2016-09-29 23:42 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-10 09:57 - 2016-11-17 12:07 - 00222905 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2017-04-10 09:56 - 2016-07-17 00:25 - 01676076 _____ C:\WINDOWS\system32\perfh005.dat
2017-04-10 09:56 - 2016-07-17 00:25 - 00448298 _____ C:\WINDOWS\system32\perfc005.dat
2017-04-10 09:56 - 2015-07-16 17:54 - 03823332 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-10 09:51 - 2016-09-30 00:12 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-10 09:51 - 2016-09-29 23:49 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-10 09:51 - 2016-09-29 23:47 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-04-10 09:51 - 2016-01-04 09:24 - 00000000 __SHD C:\Users\fibou\IntelGraphicsProfiles
2017-04-10 09:50 - 2016-07-16 08:04 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-04-10 08:49 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-10 08:49 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-10 08:49 - 2016-06-14 10:24 - 00000000 ____D C:\Users\fibou\AppData\Local\CrashDumps
2017-04-09 22:26 - 2016-01-03 19:13 - 00000000 ____D C:\Users\fibou\AppData\Local\Google
2017-04-09 22:26 - 2016-01-03 19:13 - 00000000 ____D C:\Program Files (x86)\Google
2017-04-09 22:04 - 2016-09-29 23:53 - 00000000 ____D C:\Users\fibou
2017-04-09 21:56 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-04-09 21:39 - 2016-01-03 20:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-04-09 21:39 - 2016-01-03 20:30 - 00000000 ____D C:\Program Files\7-Zip
2017-04-09 21:32 - 2016-01-03 20:08 - 00000000 ____D C:\Program Files (x86)\Steam
2017-04-08 17:40 - 2016-01-04 17:28 - 00000000 ____D C:\Users\fibou\Documents\domacnost
2017-04-06 10:23 - 2016-09-30 00:12 - 00004008 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1461404058
2017-04-06 10:23 - 2016-04-23 11:34 - 00001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-04-05 11:30 - 2016-04-23 11:31 - 00032600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-04-05 11:30 - 2016-01-03 19:21 - 01005048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-04-05 11:30 - 2016-01-03 19:21 - 00556784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-04-05 11:30 - 2016-01-03 19:21 - 00339696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-04-05 11:30 - 2016-01-03 19:21 - 00164064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-04-05 11:30 - 2016-01-03 19:21 - 00127112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-04-05 11:30 - 2016-01-03 19:21 - 00101152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-04-05 11:30 - 2016-01-03 19:21 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-04-05 11:30 - 2016-01-03 19:21 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-03-31 17:11 - 2016-01-03 19:46 - 00000000 ____D C:\Hry
2017-03-31 10:23 - 2016-01-04 19:17 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-03-31 10:21 - 2016-01-04 19:17 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2017-03-27 17:18 - 2016-01-04 12:01 - 00000000 ____D C:\Users\fibou\AppData\Local\Adobe
2017-03-27 17:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-03-27 17:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-03-25 23:05 - 2016-10-03 18:12 - 00000000 ____D C:\Users\fibou\AppData\Roaming\Lenovo
2017-03-25 23:04 - 2016-10-03 17:54 - 00002165 _____ C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2017-03-25 23:04 - 2016-10-03 17:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-25 23:04 - 2016-09-30 00:12 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-03-25 23:04 - 2015-08-31 12:40 - 00000000 ____D C:\Program Files\Lenovo
2017-03-25 23:03 - 2015-08-31 12:40 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2017-03-17 02:03 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2017-03-17 01:41 - 2016-01-03 19:20 - 00000000 ____D C:\ProgramData\AVAST Software
2017-03-16 19:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-03-16 19:52 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-15 11:10 - 2015-07-16 17:49 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-15 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-15 00:01 - 2016-01-03 18:50 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-14 23:58 - 2016-01-03 18:50 - 138634176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-12 10:01 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-03-11 22:17 - 2017-02-10 22:25 - 00000000 ____D C:\temp
2017-03-11 22:15 - 2016-01-03 19:21 - 00547904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.148926335534304
2017-03-11 13:14 - 2015-08-31 13:47 - 00000000 ____D C:\ProgramData\Lenovo

==================== Files in the root of some directories =======

2016-01-06 12:58 - 2016-01-06 12:59 - 0000415 _____ () C:\Users\fibou\AppData\Roaming\PhotoView.ini
2016-06-05 12:58 - 2016-06-05 12:58 - 0003584 _____ () C:\Users\fibou\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-09-29 23:47 - 2016-09-29 23:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-04-25 20:49 - 2016-04-25 20:49 - 0004907 _____ () C:\ProgramData\hogvxayw.vts

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\fibou\Desktop" je 10 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

[Rudy]

Zdravím!
Vy jste samoodpovídač! Pak se nedivte, že se k vám nikdo nehlásí. Rádci se řídí počtem odpovědí u daného vlákna a když vidí, že tam jsou, téma neotvírají. To bycho nic neudělali. Pokud chcete pomoc, dejte 1 (max 2) posty a čekejte, až se k tomu něko přihlásí. Díky kolegovi, který na to občas koukne, jsem se k vám dostal. Jak to vypadá teď, po těch mnoha skenech?

[fibou]

Ok, příště se polepším Ikdyž bych radši, kdyby příště nebylo, ale známe to

Vypadá to tak pořád stejně, bohužel. Ještě jsem zkoušel kompletní test Avast - nenašel nic.
Odpoledne jsem ještě znova zkoušel ADW cleaner, a ten znovu našel 3 hrozby - log přikládám níže.
Zkoušel jsem chvíli brouzdat po netu v EDGE, a tam jsem problémy nezaznamenal (ale byl jsem tam tak 5 minut, takže těžko říct.)
Nicméně přivedlo mě to k myšlence, zda to není usídlené někde přímo v Chromu, nebo potažmo v google účtu - ale to jsou jen domněnky, vy máte určitě mnohonásobné zkušenosti, takže radšji počkám na váš nápad a radu
Díky.

# AdwCleaner v6.045 - Log vytvořen 10/04/2017 v 17:11:34
# Aktualizováno dne 28/03/2017 z Malwarebytes
# Databáze : 2017-04-06.1 [Místní]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : fibou - NOTEBOOK
# Spuštěno z : C:\Users\fibou\Desktop\adwcleaner_6.045.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.


***** [ Složky ] *****

Nebyly nalezeny žádné škodlivé složky.


***** [ Soubory ] *****

Nebyly nalezeny žádné škodlivé soubory.


***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL.


***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.


***** [ Zástupci ] *****

Žádný infikovaný zástupce nenalezen.


***** [ Naplánované úlohy ] *****

Žádná nebezpečná úloha nenalezena.


***** [ Registry ] *****

Klíč nalezen: HKU\S-1-5-21-3287823714-3707918364-1892592251-1001\Software\Conduit
Klíč nalezen: HKCU\Software\Conduit
Klíč nalezen: [x64] HKCU\Software\Conduit


***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [2287 Bajty] - [09/04/2017 22:02:34]
C:\AdwCleaner\AdwCleaner[C2].txt - [3002 Bajty] - [09/04/2017 23:35:02]
C:\AdwCleaner\AdwCleaner[S0].txt - [2585 Bajty] - [09/04/2017 22:01:57]
C:\AdwCleaner\AdwCleaner[S1].txt - [3385 Bajty] - [09/04/2017 23:33:52]
C:\AdwCleaner\AdwCleaner[S2].txt - [1659 Bajty] - [10/04/2017 12:53:43]
C:\AdwCleaner\AdwCleaner[S3].txt - [1687 Bajty] - [10/04/2017 17:11:34]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1760 Bajty] ##########

[Rudy]

Chrome zazálohujte pomocí ChromeBackup: http://www.stahuj.centrum.cz/internet_a ... me-backup/ . Pak Chrome kompletně odinstalujte vč. jeho profilu (podadresáře Mozilla v c:\users\fibou\appdata\local, c:\users\fibou\appdata\roaming, c:\users\fibou\data aplikací, c:\users\fibou\local settings a v c:\program data musí být smazány). Potom udělejte novou, čistou instalaci Chrome a ze zálohy nakopírujte zpět pouze záložky a hesla.

[fibou]

Chrome jsem odinstaloval a smazal patřičné soubory v adresářích "c:\users\fibou\appdata\local" a "c:\users\fibou\appdata\roaming". Jiné jsem nenašel - hledám blbě já, nebo je možný, že některý tu nebudou?

I tak jdu zkusit instalaci, v nejhorším si postup zopakuju.