gmsd_re_004010007
Napsal: 11 led 2016 20:48
Dobrý den, mam problém ohledně toho programu či složky nevim na co slouží, ale mam od ni viry. Můj antivirus se může pokaždý přetrhnout. Můj antivirus je Kaspersky Internet Security. Nevím se rady.
Logfile of random's system information tool 1.10 (written by random/random)
Run by SSShe at 2016-01-11 20:56:17
Microsoft Windows 10 Home
System drive C: has 832 GB (89%) free of 935 GB
Total RAM: 8031 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:57:31, on 11.01.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16603)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
C:\Users\SSShe\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe
C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Users\SSShe\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Tasks.exe
C:\Program Files\trend micro\SSShe.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [PowerDVD14Agent] "C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe"
O4 - HKLM\..\RunOnce: [upgmsd_re_004010007.exe] C:\Users\SSShe\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe -runonce
O4 - HKCU\..\Run: [OneDrive] "C:\Users\SSShe\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Intel® SGX AESM (AESMService) - Intel Corporation - C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
O23 - Service: @oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\Windows\system32\BtwRSupportService.exe (file missing)
O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Unknown owner - C:\Windows\system32\IntelCpHDCPSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @oem7.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Intel Corporation - C:\Windows\SysWOW64\esif_uf.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update-Dienst (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem2.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vssbrigde64 - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12578 bytes
======Listing Processes======
C:\Windows\system32\lsass.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-68907f1e-c6e1-48c2-8791-181dd85deac8 -SystemEventPortName:HostProcess-b038564a-75f6-4f32-9b66-f87925647f75 -IoCancelEventPortName:HostProcess-ef7c45ec-d841-41a5-9d85-0dc506e7f674 -NonStateChangingEventPortName:HostProcess-8b0bc67f-25aa-485d-b4ca-f5474d2f6053 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1b8b05ae-c3cc-4197-89e5-34b2ea7e853f -DeviceGroupId:
C:\Windows\System32\svchost.exe -k NetworkService
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\WLANExt.exe 1082381463248
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe" -r
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\SysWOW64\esif_uf.exe
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe" -hidden
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\TEMP\DPTF\esif_assist_64.exe"
taskeng.exe {03D5C0DF-C75F-4A04-9563-B8AFBC21411D}
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
igfxEM.exe
igfxHK.exe
C:\Windows\system32\svchost.exe -k appmodel
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetServiceDss -RestrictPrivileges -AccessKey B53FFF77-DFA4-D261-17A0-B45E730C26A0 -Reinvoke
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Users\SSShe\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe" -runhelper
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Users\SSShe\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe"
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\Windows\SysWOW64\WerFault.exe -u -p 6028 -s 1280
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 576 600 620 8192 612
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Tasks.exe" /Run
"C:\Users\SSShe\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="8080.1.1465129386\721775211" "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 8080 "\\.\pipe\gecko-crash-server-pipe.8080" plugin
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe" --proxy-stub-channel=Flash6844.64A0A0B8.4345 --host-broker-channel=Flash6844.64A0A0B8.9630 --host-pid=6844 --host-npapi-version=28 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_20_0_0_267.dll"
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe" --channel=6148.00AEF444.1266016427 --proxy-stub-channel=Flash6844.64A0A0B8.4345 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_20_0_0_267.dll" --host-npapi-version=28 --type=renderer
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\HPCeeScheduleForSSShe.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSSShe (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\SSShe\AppData\Roaming\Mozilla\Firefox\Profiles\db63154f.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C66D064F-82FE-4E1A-B06A-B2490BA48B18}]
Kaspersky Protection plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-12-25 800216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30 629256]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C66D064F-82FE-4E1A-B06A-B2490BA48B18}]
Kaspersky Protection plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-12-25 584664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19 414920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Kaspersky Protection toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-12-25 800216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Kaspersky Protection toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-12-25 584664]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-07-27 8510680]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-23 1571696]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-12-12 3945656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\SSShe\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-12 551112]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2015-07-08 127528]
"HPMessageService"=C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [2015-06-29 653576]
"PowerDVD14Agent"=C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [2015-06-22 795336]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"upgmsd_re_004010007.exe"=C:\Users\SSShe\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe [2015-06-19 3307688]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=181
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
"NoDriveTypeAutoRun"=189
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-11 20:56:18 ----D---- C:\Program Files\trend micro
2016-01-11 20:56:17 ----D---- C:\rsit
2016-01-08 19:36:15 ----D---- C:\Users\SSShe\AppData\Roaming\NVIDIA
2016-01-07 17:28:40 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-12-25 21:16:30 ----D---- C:\Program Files (x86)\MPC AdCleaner
2015-12-25 20:56:55 ----D---- C:\Program Files\CCleaner
2015-12-25 20:55:28 ----D---- C:\Program Files (x86)\Google
2015-12-25 19:53:46 ----A---- C:\Windows\system32\RtNicProp64.dll
2015-12-25 19:51:14 ----A---- C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\IntelOpenCL32.dll
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\IntelCpHeciSvc.exe
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\igfxexps32.dll
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\igfxcmrt32.dll
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\igfxcmjit32.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\MetroIntelGenericUIFramework.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelWiDiUtils64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelWiDiUMS64.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelWiDiMCComp64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelWiDiLogServer64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelOpenCL64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelCpHDCPSvc.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxTray.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxSDKLibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxSDKLib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxSDK.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxOSP.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxLHMLibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxLHMLib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxext.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxexps.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxEMLibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxEMLib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDTCM.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDILibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDILib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDHLibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDHLib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxCUIServicePS.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxCoIn_v4279.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxcmrt64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxcmjit64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfx11cmrt64.dll
2015-12-25 19:48:04 ----A---- C:\Windows\SYSWOW64\igfx11cmrt32.dll
2015-12-25 19:48:04 ----A---- C:\Windows\SYSWOW64\igdusc32.dll
2015-12-25 19:48:04 ----A---- C:\Windows\system32\igdusc64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdrcl32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdmd32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdmcl32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdfcl32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdde32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdbcl32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdail32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igd12umd32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igd11dxva32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igd10idpp32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\ig9icd32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdrcl64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdmd64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdmcl64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdfcl64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdde64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdbcl64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdail64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igd12umd64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igd11dxva64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igd10idpp64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\ig9icd64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\Gfxv4_0.exe
2015-12-25 19:48:03 ----A---- C:\Windows\system32\Gfxv2_0.exe
2015-12-25 19:48:03 ----A---- C:\Windows\system32\GfxUIEx.exe
2015-12-25 19:48:03 ----A---- C:\Windows\system32\GfxResources.dll
2015-12-25 19:48:02 ----A---- C:\Windows\SYSWOW64\common_clang32.dll
2015-12-25 19:48:02 ----A---- C:\Windows\system32\drivers\IntcDAud.sys
2015-12-25 19:48:02 ----A---- C:\Windows\system32\DPTopologyAppv2_0.exe
2015-12-25 19:48:02 ----A---- C:\Windows\system32\DPTopologyApp.exe
2015-12-25 19:48:02 ----A---- C:\Windows\system32\difx64.exe
2015-12-25 19:48:02 ----A---- C:\Windows\system32\common_clang64.dll
2015-12-25 16:14:22 ----A---- C:\Windows\system32\klfphc.dll
2015-12-25 16:12:50 ----D---- C:\ProgramData\Kaspersky Lab
2015-12-25 16:12:50 ----D---- C:\Program Files (x86)\Kaspersky Lab
2015-12-25 16:12:46 ----A---- C:\ProgramData\ntuser.dat
2015-12-25 16:12:23 ----A---- C:\Windows\system32\drivers\klflt.sys
2015-12-25 16:12:21 ----A---- C:\Windows\system32\drivers\klif.sys
2015-12-25 16:12:17 ----A---- C:\Windows\system32\drivers\klhk.sys
2015-12-25 16:12:12 ----N---- C:\Windows\system32\MpSigStub.exe
2015-12-19 20:06:21 ----D---- C:\Users\SSShe\AppData\Roaming\AVAST Software
2015-12-17 13:18:31 ----D---- C:\Program Files (x86)\OpenAL
2015-12-17 13:18:31 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2015-12-17 13:18:31 ----A---- C:\Windows\system32\wrap_oal.dll
2015-12-17 13:18:31 ----A---- C:\Windows\system32\OpenAL32.dll
2015-12-17 13:18:30 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2015-12-15 21:15:33 ----A---- C:\Windows\SYSWOW64\drivers\SECDRV.SYS
2015-12-15 13:17:57 ----D---- C:\Users\SSShe\AppData\Roaming\DropboxOEM
2015-12-13 18:20:50 ----D---- C:\Windows\Minidump
2015-12-13 18:07:24 ----D---- C:\Windows\system32\SleepStudy
2015-12-13 10:36:03 ----D---- C:\Windows\system32\MRT
2015-12-13 10:35:56 ----A---- C:\Windows\system32\MRT.exe
2015-12-12 23:56:08 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-12-12 23:56:08 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-12-12 23:56:08 ----A---- C:\Windows\system32\drivers\WdiWiFi.sys
2015-12-12 23:56:07 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2015-12-12 23:56:07 ----A---- C:\Windows\system32\drivers\gpuenergydrv.sys
2015-12-12 23:56:06 ----A---- C:\Windows\system32\tetheringclient.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\rdbui.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\PimIndexMaintenance.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\ngckeyenum.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\HttpsDataSource.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2015-12-12 23:56:06 ----A---- C:\Windows\system32\drivers\pdc.sys
2015-12-12 23:56:06 ----A---- C:\Windows\system32\drivers\fastfat.sys
2015-12-12 23:56:06 ----A---- C:\Windows\system32\CallHistoryClient.dll
2015-12-12 23:56:05 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\win32kbase.sys
2015-12-12 23:56:05 ----A---- C:\Windows\system32\tetheringservice.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\MFPlay.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\MbaeParserTask.exe
2015-12-12 23:56:05 ----A---- C:\Windows\system32\LocationPermissions.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\LocationFramework.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-12-12 23:56:04 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2015-12-12 23:56:04 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\workfolderssvc.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\wifinetworkmanager.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\syncmlhook.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\mdmmigrator.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\dmcertinst.exe
2015-12-12 23:56:03 ----A---- C:\Windows\system32\wlidsvc.dll
2015-12-12 23:56:03 ----A---- C:\Windows\system32\ngcsvc.dll
2015-12-12 23:56:03 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-12-12 23:56:03 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-12-12 23:56:03 ----A---- C:\Windows\system32\drivers\afd.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\tunnel.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\storport.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\stornvme.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\netio.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-12-12 23:56:01 ----A---- C:\Windows\system32\sysmain.dll
2015-12-12 23:56:01 ----A---- C:\Windows\system32\PsmServiceExtHost.dll
2015-12-12 23:56:01 ----A---- C:\Windows\system32\jscript9.dll
2015-12-12 23:56:01 ----A---- C:\Windows\system32\bisrv.dll
2015-12-12 23:56:00 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-12-12 23:56:00 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-12-12 23:56:00 ----A---- C:\Windows\system32\UserDataService.dll
2015-12-12 23:56:00 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2015-12-12 23:56:00 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-12-12 23:55:59 ----A---- C:\Windows\system32\win32kfull.sys
2015-12-12 23:55:59 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2015-12-12 23:55:58 ----A---- C:\Windows\system32\wuautoappupdate.dll
2015-12-12 23:55:58 ----A---- C:\Windows\system32\MFMediaEngine.dll
2015-12-12 23:55:58 ----A---- C:\Windows\system32\drivers\portcls.sys
2015-12-12 23:55:58 ----A---- C:\Windows\system32\drivers\bthhfenum.sys
2015-12-12 23:55:57 ----A---- C:\Windows\system32\wwansvc.dll
2015-12-12 23:55:57 ----A---- C:\Windows\system32\LocationGeofences.dll
2015-12-12 23:55:57 ----A---- C:\Windows\system32\audiosrv.dll
2015-12-12 23:55:56 ----A---- C:\Windows\system32\enterprisecsps.dll
2015-12-12 23:55:56 ----A---- C:\Windows\system32\dmcsps.dll
2015-12-12 23:55:56 ----A---- C:\Windows\system32\CellularAPI.dll
2015-12-12 23:55:55 ----A---- C:\Windows\system32\Windows.Globalization.dll
2015-12-12 23:55:55 ----A---- C:\Windows\system32\LicenseManager.dll
2015-12-12 23:55:55 ----A---- C:\Windows\system32\configmanager2.dll
2015-12-12 23:55:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-12-12 23:55:53 ----A---- C:\Windows\system32\drivers\buttonconverter.sys
2015-12-12 23:55:53 ----A---- C:\Windows\system32\Chakra.dll
2015-12-12 23:55:52 ----A---- C:\Windows\system32\edgehtml.dll
2015-12-12 23:55:51 ----A---- C:\Windows\system32\rpcrt4.dll
2015-12-12 23:55:51 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-12-12 23:55:51 ----A---- C:\Windows\system32\atmlib.dll
2015-12-12 23:55:50 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-12 23:55:50 ----A---- C:\Windows\system32\aitstatic.exe
2015-12-12 23:55:49 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-12-12 23:55:49 ----A---- C:\Windows\system32\drivers\bthport.sys
2015-12-12 23:55:48 ----A---- C:\Windows\system32\mshtml.dll
2015-12-12 23:55:46 ----A---- C:\Windows\SYSWOW64\shacct.dll
2015-12-12 23:55:46 ----A---- C:\Windows\system32\wwanmm.dll
2015-12-12 23:55:46 ----A---- C:\Windows\system32\winlogon.exe
2015-12-12 23:55:46 ----A---- C:\Windows\system32\shacct.dll
2015-12-12 23:55:46 ----A---- C:\Windows\system32\pnidui.dll
2015-12-12 23:55:46 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-12-12 23:55:45 ----A---- C:\Windows\system32\shell32.dll
2015-12-12 23:55:45 ----A---- C:\Windows\system32\LicenseManagerShellext.exe
2015-12-12 23:55:44 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-12-12 23:55:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-12 23:55:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-12 23:55:43 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-12 23:55:43 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2015-12-12 23:55:42 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2015-12-12 23:55:42 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2015-12-12 23:55:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-12 23:55:39 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2015-12-12 23:55:38 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-12-12 23:55:38 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-12 23:55:37 ----A---- C:\Windows\system32\browserbroker.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\wfdprov.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\RasMediaManager.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\MBMediaManager.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\ieframe.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\EthernetMediaManager.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\DAMediaManager.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\Windows.Speech.Pal.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\VEDataLayerHelpers.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\usoapi.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2015-12-12 23:55:35 ----A---- C:\Windows\system32\WlanMediaManager.dll
2015-12-12 23:55:35 ----A---- C:\Windows\system32\Windows.UI.dll
2015-12-12 23:55:35 ----A---- C:\Windows\system32\NetworkUXBroker.exe
2015-12-12 23:55:34 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2015-12-12 23:55:34 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2015-12-12 23:55:34 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2015-12-12 23:55:34 ----A---- C:\Windows\SYSWOW64\LogonController.dll
2015-12-12 23:55:34 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\VEEventDispatcher.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\TokenBroker.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\CredProvDataModel.dll
2015-12-12 23:55:33 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2015-12-12 23:55:33 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2015-12-12 23:55:32 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.dll
2015-12-12 23:55:32 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2015-12-12 23:55:32 ----A---- C:\Windows\system32\wwanconn.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\VEEventDispatcher.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\OneDriveSettingSyncProvider.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\dssvc.dll
2015-12-12 23:55:31 ----A---- C:\Windows\SYSWOW64\PackageStateRoaming.dll
2015-12-12 23:55:31 ----A---- C:\Windows\system32\Windows.Media.dll
2015-12-12 23:55:31 ----A---- C:\Windows\system32\SettingSync.dll
2015-12-12 23:55:30 ----A---- C:\Windows\SYSWOW64\twinui.dll
2015-12-12 23:55:29 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2015-12-12 23:55:29 ----A---- C:\Windows\system32\LogonController.dll
2015-12-12 23:55:29 ----A---- C:\Windows\system32\LockAppBroker.dll
2015-12-12 23:55:29 ----A---- C:\Windows\system32\CredProvDataModel.dll
2015-12-12 23:55:28 ----A---- C:\Windows\system32\usermgr.dll
2015-12-12 23:55:28 ----A---- C:\Windows\system32\tileobjserver.dll
2015-12-12 23:55:27 ----A---- C:\Windows\system32\Windows.Media.Speech.dll
2015-12-12 23:55:27 ----A---- C:\Windows\system32\PlayToManager.dll
2015-12-12 23:55:27 ----A---- C:\Windows\system32\NotificationController.dll
2015-12-12 23:55:27 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2015-12-12 23:55:26 ----A---- C:\Windows\system32\twinapi.appcore.dll
2015-12-12 23:55:26 ----A---- C:\Windows\system32\SettingSyncHost.exe
2015-12-12 23:55:25 ----A---- C:\Windows\system32\twinui.dll
2015-12-12 23:55:25 ----A---- C:\Windows\system32\TokenBroker.dll
2015-12-12 23:55:25 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2015-12-12 23:55:25 ----A---- C:\Windows\system32\modernexecserver.dll
2015-12-12 23:55:11 ----A---- C:\Windows\system32\NetworkStatus.dll
2015-12-12 23:55:11 ----A---- C:\Windows\system32\DAMM.dll
2015-12-12 23:55:10 ----A---- C:\Windows\system32\BthRadioMedia.dll
2015-12-12 23:55:09 ----A---- C:\Windows\SYSWOW64\explorer.exe
2015-12-12 23:55:09 ----A---- C:\Windows\system32\dot3mm.dll
2015-12-12 23:55:09 ----A---- C:\Windows\explorer.exe
2015-12-12 23:55:06 ----A---- C:\Windows\SYSWOW64\esent.dll
2015-12-12 23:55:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-12-12 23:55:06 ----A---- C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2015-12-12 23:55:06 ----A---- C:\Windows\system32\esent.dll
2015-12-12 23:55:06 ----A---- C:\Windows\system32\AudioEng.dll
2015-12-12 23:55:02 ----A---- C:\Windows\SYSWOW64\remoteaudioendpoint.dll
2015-12-12 23:55:02 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2015-12-12 23:55:02 ----A---- C:\Windows\system32\mfcore.dll
2015-12-12 23:55:02 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2015-12-12 23:55:02 ----A---- C:\Windows\system32\mf.dll
2015-12-12 23:55:00 ----A---- C:\Windows\SYSWOW64\RemoteNaturalLanguage.dll
2015-12-12 23:54:59 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-12 23:54:59 ----A---- C:\Windows\system32\RemoteNaturalLanguage.dll
2015-12-12 23:54:59 ----A---- C:\Windows\system32\iertutil.dll
2015-12-12 23:54:58 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-12-12 23:54:58 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\wcmsvc.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\wcmcsp.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\SubscriptionMgr.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\msxml6.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\d3d9.dll
2015-12-12 23:54:57 ----A---- C:\Windows\SYSWOW64\mfds.dll
2015-12-12 23:54:57 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2015-12-12 23:54:57 ----A---- C:\Windows\system32\wlansvc.dll
2015-12-12 23:54:57 ----A---- C:\Windows\system32\vaultsvc.dll
2015-12-12 23:54:57 ----A---- C:\Windows\system32\psmsrv.dll
2015-12-12 23:54:56 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2015-12-12 23:54:56 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-12-12 23:54:56 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2015-12-12 23:54:56 ----A---- C:\Windows\system32\netcenter.dll
2015-12-12 23:54:56 ----A---- C:\Windows\system32\GdiPlus.dll
2015-12-12 23:54:55 ----A---- C:\Windows\system32\SensorService.dll
2015-12-12 23:54:55 ----A---- C:\Windows\system32\provhandlers.dll
2015-12-12 23:54:55 ----A---- C:\Windows\system32\ntdll.dll
2015-12-12 23:54:54 ----A---- C:\Windows\system32\BingMaps.dll
2015-12-12 23:54:54 ----A---- C:\Windows\system32\AppxSysprep.dll
2015-12-12 23:54:54 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2015-12-12 23:54:54 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2015-12-12 23:54:53 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2015-12-12 23:54:53 ----A---- C:\Windows\system32\windows.storage.dll
2015-12-12 23:54:53 ----A---- C:\Windows\system32\dwmcore.dll
2015-12-12 23:54:52 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-12-12 23:54:52 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2015-12-12 23:54:52 ----A---- C:\Windows\system32\msxml3.dll
2015-12-12 23:54:52 ----A---- C:\Windows\system32\CoreUIComponents.dll
2015-12-12 23:54:51 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2015-12-12 23:54:51 ----A---- C:\Windows\system32\twinui.appcore.dll
2015-12-12 23:54:49 ----A---- C:\Windows\SYSWOW64\SRHInproc.dll
2015-12-12 23:54:49 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-12-12 23:54:49 ----A---- C:\Windows\system32\winmde.dll
2015-12-12 23:54:49 ----A---- C:\Windows\system32\SRHInproc.dll
2015-12-12 23:54:49 ----A---- C:\Windows\system32\remoteaudioendpoint.dll
2015-12-12 23:54:49 ----A---- C:\Windows\system32\diagtrack.dll
2015-12-12 23:54:48 ----A---- C:\Windows\system32\wmpmde.dll
2015-12-12 23:54:48 ----A---- C:\Windows\system32\mos.dll
2015-12-12 23:54:47 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2015-12-12 23:54:47 ----A---- C:\Windows\SYSWOW64\mos.dll
2015-12-12 23:54:47 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-12 23:54:47 ----A---- C:\Windows\system32\hevcdecoder.dll
2015-12-12 23:54:47 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-12 23:54:46 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2015-12-12 23:54:45 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2015-12-12 23:54:45 ----A---- C:\Windows\system32\Windows.UI.PicturePassword.dll
2015-12-12 23:54:45 ----A---- C:\Windows\system32\internetmail.dll
2015-12-12 23:54:45 ----A---- C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\winmde.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\LockAppBroker.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-12-12 23:54:44 ----A---- C:\Windows\system32\user32.dll
2015-12-12 23:54:44 ----A---- C:\Windows\system32\authui.dll
2015-12-12 23:54:43 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2015-12-12 23:54:43 ----A---- C:\Windows\system32\UIAutomationCore.dll
2015-12-12 23:54:43 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-12-12 23:54:42 ----A---- C:\Windows\system32\tquery.dll
2015-12-12 23:54:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-12-12 23:54:40 ----A---- C:\Windows\system32\kerberos.dll
2015-12-12 23:54:39 ----A---- C:\Windows\system32\mfsrcsnk.dll
2015-12-12 23:54:39 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2015-12-12 23:54:39 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2015-12-12 23:54:39 ----A---- C:\Windows\system32\mfmkvsrcsnk.dll
2015-12-12 23:54:38 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2015-12-12 23:54:37 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2015-12-12 23:54:37 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2015-12-12 23:54:35 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2015-12-12 23:54:35 ----A---- C:\Windows\SYSWOW64\mfmkvsrcsnk.dll
2015-12-12 23:54:35 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-12-12 23:54:35 ----A---- C:\Windows\system32\appraiser.dll
2015-12-12 23:54:34 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2015-12-12 23:54:34 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-12 23:54:34 ----A---- C:\Windows\system32\schedsvc.dll
2015-12-12 23:54:33 ----A---- C:\Windows\SYSWOW64\SRH.dll
2015-12-12 23:54:33 ----A---- C:\Windows\SYSWOW64\Magnify.exe
2015-12-12 23:54:33 ----A---- C:\Windows\system32\SRH.dll
2015-12-12 23:54:33 ----A---- C:\Windows\system32\Magnify.exe
2015-12-12 23:54:32 ----A---- C:\Windows\system32\wpx.dll
2015-12-12 23:54:32 ----A---- C:\Windows\system32\mfds.dll
2015-12-12 23:54:32 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2015-12-12 23:54:31 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2015-12-12 23:54:31 ----A---- C:\Windows\system32\mfsvr.dll
2015-12-12 23:54:30 ----A---- C:\Windows\SYSWOW64\tquery.dll
2015-12-12 23:54:30 ----A---- C:\Windows\system32\VEDataLayerHelpers.dll
2015-12-12 23:54:30 ----A---- C:\Windows\system32\SettingsHandlers_UserAccount.dll
2015-12-12 23:54:30 ----A---- C:\Windows\system32\KnobsCsp.dll
2015-12-12 23:54:29 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2015-12-12 23:54:29 ----A---- C:\Windows\system32\SharedStartModel.dll
2015-12-12 23:54:29 ----A---- C:\Windows\system32\RDXService.dll
2015-12-12 23:54:28 ----A---- C:\Windows\system32\mssrch.dll
2015-12-12 23:54:28 ----A---- C:\Windows\system32\fveapi.dll
2015-12-12 23:54:28 ----A---- C:\Windows\system32\ci.dll
2015-12-12 23:54:26 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2015-12-12 23:54:26 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-12-12 23:54:26 ----A---- C:\Windows\system32\wininet.dll
2015-12-12 23:54:26 ----A---- C:\Windows\system32\jscript.dll
2015-12-12 23:54:24 ----A---- C:\Windows\system32\ninput.dll
2015-12-12 23:54:24 ----A---- C:\Windows\system32\ieui.dll
2015-12-12 23:54:24 ----A---- C:\Windows\system32\duser.dll
2015-12-12 23:54:24 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2015-12-12 23:54:24 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-12-12 23:54:23 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-12-12 23:54:23 ----A---- C:\Windows\system32\vbscript.dll
2015-12-12 23:54:23 ----A---- C:\Windows\system32\dxgi.dll
2015-12-12 23:54:23 ----A---- C:\Windows\system32\DWrite.dll
2015-12-12 23:54:22 ----A---- C:\Windows\SYSWOW64\directmanipulation.dll
2015-12-12 23:54:21 ----A---- C:\Windows\system32\WUDFx02000.dll
2015-12-12 23:54:21 ----A---- C:\Windows\system32\directmanipulation.dll
2015-12-12 23:54:20 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-12 23:54:19 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2015-12-12 23:54:19 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2015-12-12 23:54:19 ----A---- C:\Windows\system32\wcnwiz.dll
2015-12-12 23:54:19 ----A---- C:\Windows\system32\WcnNetsh.dll
2015-12-12 23:54:18 ----A---- C:\Windows\SYSWOW64\wcnwiz.dll
2015-12-12 23:54:17 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-12-12 23:54:17 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-12-12 23:54:17 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-12-12 23:54:17 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-12-12 23:54:17 ----A---- C:\Windows\system32\StoreAgent.dll
2015-12-12 23:54:17 ----A---- C:\Windows\system32\InstallAgent.exe
2015-12-12 23:54:16 ----A---- C:\Windows\SYSWOW64\ninput.dll
2015-12-12 23:54:16 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-12-12 23:54:16 ----A---- C:\Windows\SYSWOW64\duser.dll
2015-12-12 23:54:16 ----A---- C:\Windows\system32\fontdrvhost.exe
2015-12-12 23:54:16 ----A---- C:\Windows\system32\Chakradiag.dll
2015-12-12 23:54:15 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2015-12-12 23:54:15 ----A---- C:\Windows\SYSWOW64\dlnashext.dll
2015-12-12 23:54:15 ----A---- C:\Windows\system32\dlnashext.dll
2015-12-12 23:54:14 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-12 23:54:14 ----A---- C:\Windows\system32\InputService.dll
2015-12-12 23:54:14 ----A---- C:\Windows\system32\coredpus.dll
2015-12-12 23:54:14 ----A---- C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2015-12-12 23:54:14 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-12 23:54:13 ----A---- C:\Windows\system32\atmfd.dll
2015-12-12 23:54:12 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-12 23:54:11 ----A---- C:\Windows\system32\wwancfg.dll
2015-12-12 23:54:11 ----A---- C:\Windows\system32\MbaeApi.dll
2015-12-12 23:54:10 ----A---- C:\Windows\system32\AudioSes.dll
2015-12-12 23:54:09 ----A---- C:\Windows\SYSWOW64\ncryptprov.dll
2015-12-12 23:54:09 ----A---- C:\Windows\SYSWOW64\msctfuimanager.dll
2015-12-12 23:54:09 ----A---- C:\Windows\system32\ncryptprov.dll
2015-12-12 23:54:09 ----A---- C:\Windows\system32\msctfuimanager.dll
2015-12-12 23:54:08 ----A---- C:\Windows\SYSWOW64\tetheringclient.dll
2015-12-12 23:54:08 ----A---- C:\Windows\SYSWOW64\InputService.dll
2015-12-12 23:54:08 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-12-12 23:54:07 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-12-12 23:54:07 ----A---- C:\Windows\SYSWOW64\MbaeApi.dll
2015-12-12 23:54:07 ----A---- C:\Windows\SYSWOW64\Chakradiag.dll
2015-12-12 23:54:07 ----A---- C:\Windows\system32\Unistore.dll
2015-12-12 23:54:07 ----A---- C:\Windows\system32\notepad.exe
2015-12-12 23:54:07 ----A---- C:\Windows\system32\FntCache.dll
2015-12-12 23:54:07 ----A---- C:\Windows\notepad.exe
2015-12-12 23:54:06 ----A---- C:\Windows\system32\WWanAPI.dll
2015-12-12 23:54:06 ----A---- C:\Windows\system32\wpnapps.dll
2015-12-12 23:54:05 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2015-12-12 23:54:05 ----A---- C:\Windows\system32\NetSetupShim.dll
2015-12-12 23:54:05 ----A---- C:\Windows\system32\CoreMessaging.dll
2015-12-12 23:54:03 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2015-12-12 23:54:03 ----A---- C:\Windows\system32\profsvc.dll
2015-12-12 23:54:03 ----A---- C:\Windows\system32\drivers\sdbus.sys
2015-12-12 23:54:02 ----A---- C:\Windows\system32\DeviceEnroller.exe
2015-12-12 23:54:01 ----A---- C:\Windows\system32\dmenrollengine.dll
2015-12-12 23:54:00 ----A---- C:\Windows\system32\Windows.Speech.Pal.dll
2015-12-12 23:53:59 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2015-12-12 23:53:59 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-12-12 23:53:58 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2015-12-12 23:53:58 ----A---- C:\Windows\system32\provisioningcsp.dll
2015-12-12 23:53:58 ----A---- C:\Windows\system32\provengine.dll
2015-12-12 23:53:57 ----A---- C:\Windows\system32\Windows.Devices.Usb.dll
2015-12-12 23:53:57 ----A---- C:\Windows\system32\syncutil.dll
2015-12-12 23:53:56 ----A---- C:\Windows\SYSWOW64\Unistore.dll
2015-12-12 23:53:56 ----A---- C:\Windows\system32\wpncore.dll
2015-12-12 23:53:55 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2015-12-12 23:53:55 ----A---- C:\Windows\system32\drivers\wof.sys
2015-12-12 23:53:54 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2015-12-12 23:53:54 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2015-12-12 23:53:54 ----A---- C:\Windows\system32\ActionCenter.dll
2015-12-12 23:53:52 ----A---- C:\Windows\system32\ngccredprov.dll
2015-12-12 23:53:52 ----A---- C:\Windows\system32\ContactApis.dll
2015-12-12 23:53:51 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2015-12-12 23:53:51 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Usb.dll
2015-12-12 23:53:51 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-12-12 23:53:51 ----A---- C:\Windows\system32\facecredentialprovider.dll
2015-12-12 23:53:50 ----A---- C:\Windows\SYSWOW64\fwpolicyiomgr.dll
2015-12-12 23:53:50 ----A---- C:\Windows\system32\urlmon.dll
2015-12-12 23:53:50 ----A---- C:\Windows\system32\fwpolicyiomgr.dll
2015-12-12 23:53:50 ----A---- C:\Windows\system32\cloudAP.dll
2015-12-12 23:53:49 ----A---- C:\Windows\SYSWOW64\NotificationObjFactory.dll
2015-12-12 23:53:49 ----A---- C:\Windows\system32\NotificationObjFactory.dll
2015-12-12 23:53:49 ----A---- C:\Windows\system32\MapControlCore.dll
2015-12-12 23:53:48 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2015-12-12 23:53:48 ----A---- C:\Windows\system32\winload.exe
2015-12-12 23:53:48 ----A---- C:\Windows\system32\UserMgrProxy.dll
2015-12-12 23:53:48 ----A---- C:\Windows\system32\accountaccessor.dll
2015-12-12 23:53:47 ----A---- C:\Windows\SYSWOW64\ContactApis.dll
2015-12-12 23:53:47 ----A---- C:\Windows\system32\NetSetupSvc.dll
2015-12-12 23:53:46 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2015-12-12 23:53:45 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2015-12-12 23:53:45 ----A---- C:\Windows\SYSWOW64\AppointmentApis.dll
2015-12-12 23:53:45 ----A---- C:\Windows\system32\reseteng.dll
2015-12-12 23:53:44 ----A---- C:\Windows\SYSWOW64\UserMgrProxy.dll
2015-12-12 23:53:44 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2015-12-12 23:53:44 ----A---- C:\Windows\system32\mdmregistration.dll
2015-12-12 23:53:44 ----A---- C:\Windows\system32\enrollmentapi.dll
2015-12-12 23:53:41 ----A---- C:\Windows\system32\WcnApi.dll
2015-12-12 23:53:40 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-12 23:53:40 ----A---- C:\Windows\SYSWOW64\ChatApis.dll
2015-12-12 23:53:40 ----A---- C:\Windows\system32\fdWCN.dll
2015-12-12 23:53:40 ----A---- C:\Windows\system32\dafWCN.dll
2015-12-12 23:53:40 ----A---- C:\Windows\system32\ChatApis.dll
2015-12-12 23:53:38 ----A---- C:\Windows\system32\omadmapi.dll
2015-12-12 23:53:38 ----A---- C:\Windows\system32\mfps.dll
2015-12-12 23:53:38 ----A---- C:\Windows\system32\comdlg32.dll
2015-12-12 23:53:37 ----A---- C:\Windows\system32\LockAppHost.exe
2015-12-12 23:53:37 ----A---- C:\Windows\system32\drivers\usbhub.sys
2015-12-12 23:53:36 ----A---- C:\Windows\SYSWOW64\VoiceActivationManager.dll
2015-12-12 23:53:36 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2015-12-12 23:53:36 ----A---- C:\Windows\SYSWOW64\EmailApis.dll
2015-12-12 23:53:36 ----A---- C:\Windows\system32\winresume.exe
2015-12-12 23:53:36 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-12-12 23:53:35 ----A---- C:\Windows\system32\WinBioDataModel.dll
2015-12-12 23:53:35 ----A---- C:\Windows\system32\diagtrack_wininternal.dll
2015-12-12 23:53:34 ----A---- C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-12-12 23:53:34 ----A---- C:\Windows\system32\diagtrack_win.dll
2015-12-12 23:53:33 ----A---- C:\Windows\SYSWOW64\SensorsNativeApi.V2.dll
2015-12-12 23:53:33 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2015-12-12 23:53:33 ----A---- C:\Windows\SYSWOW64\CallHistoryClient.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\VPNv2CSP.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\SensorsNativeApi.V2.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\SensorsApi.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\MDMAppInstaller.exe
2015-12-12 23:53:33 ----A---- C:\Windows\system32\acmigration.dll
2015-12-12 23:53:32 ----A---- C:\Windows\SYSWOW64\LockAppHost.exe
2015-12-12 23:53:32 ----A---- C:\Windows\system32\ncsi.dll
2015-12-12 23:53:31 ----A---- C:\Windows\SYSWOW64\MessagingDataModel2.dll
2015-12-12 23:53:31 ----A---- C:\Windows\system32\drivers\wpcfltr.sys
2015-12-12 23:53:30 ----A---- C:\Windows\system32\WWAHost.exe
2015-12-12 23:53:29 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-12-12 23:53:29 ----A---- C:\Windows\system32\KnobsCore.dll
2015-12-12 23:53:29 ----A---- C:\Windows\system32\drivers\msgpiowin32.sys
2015-12-12 23:53:28 ----A---- C:\Windows\system32\MusNotificationUx.exe
2015-12-12 23:53:27 ----A---- C:\Windows\system32\EmailApis.dll
2015-12-12 23:53:25 ----A---- C:\Windows\system32\SettingsHandlers_Notifications.dll
2015-12-12 23:53:23 ----A---- C:\Windows\system32\TextInputFramework.dll
2015-12-12 23:53:22 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2015-12-12 23:53:22 ----A---- C:\Windows\system32\wuuhext.dll
2015-12-12 23:53:22 ----A---- C:\Windows\system32\VoiceActivationManager.dll
2015-12-12 23:53:22 ----A---- C:\Windows\system32\JpMapControl.dll
2015-12-12 23:53:21 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-12-12 23:53:21 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2015-12-12 23:53:20 ----A---- C:\Windows\system32\LocationFrameworkInternalPS.dll
2015-12-12 23:53:17 ----A---- C:\Windows\SYSWOW64\TextInputFramework.dll
2015-12-12 23:53:17 ----A---- C:\Windows\system32\MapsStore.dll
2015-12-12 23:53:16 ----A---- C:\Windows\SYSWOW64\UserDataAccountApis.dll
2015-12-12 23:53:16 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2015-12-12 23:53:16 ----A---- C:\Windows\system32\userenv.dll
2015-12-12 23:53:16 ----A---- C:\Windows\system32\MessagingDataModel2.dll
2015-12-12 23:53:16 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-12-12 23:53:16 ----A---- C:\Windows\system32\AppointmentApis.dll
2015-12-12 23:53:15 ----A---- C:\Windows\SYSWOW64\userenv.dll
2015-12-12 23:53:15 ----A---- C:\Windows\system32\Windows.Cortana.Desktop.dll
2015-12-12 23:53:15 ----A---- C:\Windows\system32\shutdownux.dll
2015-12-12 23:53:15 ----A---- C:\Windows\system32\omadmclient.exe
2015-12-12 23:53:15 ----A---- C:\Windows\system32\NotificationControllerPS.dll
2015-12-12 23:53:15 ----A---- C:\Windows\system32\LocationWiFiAdapter.dll
2015-12-12 23:53:14 ----A---- C:\Windows\SYSWOW64\PhoneCallHistoryApis.dll
2015-12-12 23:53:14 ----A---- C:\Windows\system32\ReAgent.dll
2015-12-12 23:53:14 ----A---- C:\Windows\system32\mfplat.dll
2015-12-12 23:53:14 ----A---- C:\Windows\system32\MapConfiguration.dll
2015-12-12 23:53:12 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2015-12-12 23:53:12 ----A---- C:\Windows\system32\LocationWebproxy.dll
2015-12-12 23:53:12 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-12-12 23:53:11 ----A---- C:\Windows\system32\mssprxy.dll
2015-12-12 23:53:10 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2015-12-12 23:53:10 ----A---- C:\Windows\system32\Windows.Internal.Bluetooth.dll
2015-12-12 23:53:09 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-12 23:53:09 ----A---- C:\Windows\SYSWOW64\KBDAZST.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2015-12-12 23:53:09 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-12 23:53:09 ----A---- C:\Windows\system32\KBDAZST.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-12 23:53:08 ----A---- C:\Windows\system32\LocationPeIP.dll
2015-12-12 23:53:08 ----A---- C:\Windows\system32\LocationCrowdsource.dll
2015-12-12 23:53:07 ----A---- C:\Windows\SYSWOW64\profext.dll
2015-12-12 23:53:07 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2015-12-12 23:53:07 ----A---- C:\Windows\system32\UserDataAccountApis.dll
2015-12-12 23:53:07 ----A---- C:\Windows\system32\profext.dll
2015-12-12 23:53:07 ----A---- C:\Windows\system32\PhoneCallHistoryApis.dll
2015-12-12 23:53:07 ----A---- C:\Windows\system32\MPSSVC.dll
2015-12-12 23:53:06 ----A---- C:\Windows\system32\provops.dll
2015-12-12 23:53:05 ----A---- C:\Windows\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-12 23:53:05 ----A---- C:\Windows\SYSWOW64\GamePanel.exe
2015-12-12 23:53:05 ----A---- C:\Windows\system32\nlasvc.dll
2015-12-12 23:53:05 ----A---- C:\Windows\system32\GamePanel.exe
2015-12-12 23:53:05 ----A---- C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2015-12-12 23:53:04 ----A---- C:\Windows\SYSWOW64\ReInfo.dll
2015-12-12 23:53:04 ----A---- C:\Windows\system32\SharedStartModelShim.dll
2015-12-12 23:53:04 ----A---- C:\Windows\system32\LocationPeWiFi.dll
2015-12-12 23:53:04 ----A---- C:\Windows\system32\LocationPeCell.dll
2015-12-12 23:36:52 ----D---- C:\ProgramData\Codemasters
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\XAudio2_7.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\xactengine3_7.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\d3dcsx_43.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2015-12-12 23:36:41 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2015-12-12 23:36:41 ----A---- C:\Windows\system32\d3dx11_43.dll
2015-12-12 23:36:40 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2015-12-12 23:36:40 ----A---- C:\Windows\system32\d3dx10_43.dll
2015-12-12 23:36:39 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2015-12-12 23:36:39 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2015-12-12 23:36:39 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2015-12-12 23:36:39 ----A---- C:\Windows\system32\XAudio2_6.dll
2015-12-12 23:36:39 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2015-12-12 23:36:39 ----A---- C:\Windows\system32\D3DX9_43.dll
2015-12-12 23:36:38 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2015-12-12 23:36:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2015-12-12 23:36:38 ----A---- C:\Windows\system32\xactengine3_6.dll
2015-12-12 23:36:38 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2015-12-12 23:36:36 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2015-12-12 23:36:36 ----A---- C:\Windows\system32\XAudio2_5.dll
2015-12-12 23:36:35 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2015-12-12 23:36:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2015-12-12 23:36:35 ----A---- C:\Windows\system32\xactengine3_5.dll
2015-12-12 23:36:35 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\system32\d3dx11_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\system32\d3dx10_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\system32\d3dcsx_42.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\XAudio2_4.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\D3DX9_42.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\D3DX9_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\d3dx10_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2015-12-12 23:36:32 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2015-12-12 23:36:32 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2015-12-12 23:36:32 ----A---- C:\Windows\system32\xactengine3_4.dll
2015-12-12 23:36:32 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\XAudio2_3.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\D3DX9_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\d3dx10_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2015-12-12 23:36:30 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2015-12-12 23:36:30 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2015-12-12 23:36:30 ----A---- C:\Windows\system32\xactengine3_3.dll
2015-12-12 23:36:30 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2015-12-12 23:36:29 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2015-12-12 23:36:29 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2015-12-12 23:36:29 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2015-12-12 23:36:29 ----A---- C:\Windows\system32\XAudio2_2.dll
2015-12-12 23:36:29 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2015-12-12 23:36:29 ----A---- C:\Windows\system32\xactengine3_2.dll
2015-12-12 23:36:28 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\system32\D3DX9_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\system32\d3dx10_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2015-12-12 23:36:27 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2015-12-12 23:36:27 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2015-12-12 23:36:27 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2015-12-12 23:36:27 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2015-12-12 23:36:27 ----A---- C:\Windows\system32\XAudio2_1.dll
2015-12-12 23:36:27 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2015-12-12 23:36:27 ----A---- C:\Windows\system32\xactengine3_1.dll
2015-12-12 23:36:27 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2015-12-12 23:36:26 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2015-12-12 23:36:26 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\system32\XAudio2_0.dll
2015-12-12 23:36:26 ----A---- C:\Windows\system32\D3DX9_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\system32\d3dx10_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\xactengine3_0.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\D3DX9_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\d3dx10_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2015-12-12 23:36:24 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2015-12-12 23:36:24 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2015-12-12 23:36:24 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2015-12-12 23:36:24 ----A---- C:\Windows\system32\xactengine2_10.dll
2015-12-12 23:36:24 ----A---- C:\Windows\system32\d3dx10_36.dll
2015-12-12 23:36:24 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\xactengine2_9.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\d3dx9_36.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\d3dx9_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\d3dx10_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\xinput1_3.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\xactengine2_8.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\d3dx9_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\d3dx10_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2015-12-12 23:36:21 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2015-12-12 23:36:21 ----A---- C:\Windows\system32\xactengine2_7.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\xactengine2_6.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\xactengine2_5.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\d3dx9_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\d3dx10_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\xactengine2_4.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\xactengine2_3.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\x3daudio1_1.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\d3dx9_32.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\d3dx9_31.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\d3dx10.dll
2015-12-12 23:36:18 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2015-12-12 23:36:18 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2015-12-12 23:36:18 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2015-12-12 23:36:18 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2015-12-12 23:36:18 ----A---- C:\Windows\system32\xinput1_2.dll
2015-12-12 23:36:18 ----A---- C:\Windows\system32\xinput1_1.dll
2015-12-12 23:36:18 ----A---- C:\Windows\system32\xactengine2_2.dll
2015-12-12 23:36:18 ----A---- C:\Windows\system32\xactengine2_1.dll
2015-12-12 23:36:16 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2015-12-12 23:36:16 ----A---- C:\Windows\system32\d3dx9_30.dll
2015-12-12 23:36:15 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2015-12-12 23:36:15 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2015-12-12 23:36:15 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2015-12-12 23:36:15 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2015-12-12 23:36:15 ----A---- C:\Windows\system32\xactengine2_0.dll
2015-12-12 23:36:15 ----A---- C:\Windows\system32\x3daudio1_0.dll
2015-12-12 23:36:15 ----A---- C:\Windows\system32\d3dx9_29.dll
2015-12-12 23:36:15 ----A---- C:\Windows\system32\d3dx9_28.dll
2015-12-12 23:36:14 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2015-12-12 23:36:14 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2015-12-12 23:36:14 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2015-12-12 23:36:14 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2015-12-12 23:36:14 ----A---- C:\Windows\system32\d3dx9_27.dll
2015-12-12 23:36:14 ----A---- C:\Windows\system32\d3dx9_26.dll
2015-12-12 23:36:14 ----A---- C:\Windows\system32\d3dx9_25.dll
2015-12-12 23:36:14 ----A---- C:\Windows\system32\d3dx9_24.dll
2015-12-12 20:13:43 ----D---- C:\Users\SSShe\AppData\Roaming\CyberLink
2015-12-12 18:58:40 ----D---- C:\ProgramData\Tmp0x0x
2015-12-12 18:57:56 ----A---- C:\Windows\system32\drivers\MPCKpt.sys
2015-12-12 18:57:55 ----D---- C:\Program Files (x86)\MPC Cleaner
2015-12-12 18:57:43 ----D---- C:\Program Files (x86)\gmsd_re_004010007
2015-12-12 18:57:19 ----D---- C:\Program Files (x86)\OLBPre
2015-12-12 16:59:28 ----D---- C:\Program Files (x86)\Steam
2015-12-12 16:35:51 ----D---- C:\Users\SSShe\AppData\Roaming\Skype
2015-12-12 16:35:45 ----RD---- C:\Program Files (x86)\Skype
2015-12-12 16:35:41 ----D---- C:\ProgramData\Skype
2015-12-12 16:29:57 ----D---- C:\Users\SSShe\AppData\Roaming\Mozilla
2015-12-12 16:29:49 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-12 16:17:56 ----A---- C:\Windows\system32\prm0005.dll
2015-12-12 16:15:07 ----D---- C:\Users\SSShe\AppData\Roaming\Macromedia
2015-12-12 16:12:38 ----D---- C:\Users\SSShe\AppData\Roaming\Hewlett-Packard
2015-12-12 16:12:27 ----D---- C:\Users\SSShe\AppData\Roaming\Synaptics
2015-12-12 16:09:05 ----D---- C:\Users\SSShe\AppData\Roaming\Adobe
2015-12-12 16:04:14 ----SD---- C:\Users\SSShe\AppData\Roaming\Microsoft
2015-12-12 16:03:29 ----A---- C:\Windows\system32\drivers\btwampfl.sys
2015-12-12 16:02:39 ----A---- C:\Windows\SYSWOW64\SynCom.dll
2015-12-12 16:02:38 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel_Aux.sys
2015-12-12 16:02:38 ----A---- C:\Windows\system32\drivers\Smb_driver_AMDASF_Aux.sys
2015-12-12 15:57:40 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-12-12 13:42:59 ----D---- C:\Windows\SoftwareDistribution
2015-12-12 13:41:45 ----SHD---- C:\Programme
2015-12-12 13:41:45 ----SHD---- C:\ProgramData\Vorlagen
2015-12-12 13:41:45 ----SHD---- C:\ProgramData\Startmenü
2015-12-12 13:41:45 ----SHD---- C:\ProgramData\Dokumente
2015-12-12 13:41:45 ----SHD---- C:\ProgramData\Anwendungsdaten
2015-12-12 13:41:45 ----SHD---- C:\Program Files\Gemeinsame Dateien
2015-12-12 13:41:45 ----SHD---- C:\Dokumente und Einstellungen
======List of files/folders modified in the last 1 month======
2016-01-11 20:56:31 ----D---- C:\Windows\Prefetch
2016-01-11 20:56:18 ----RD---- C:\Program Files
2016-01-11 20:49:29 ----D---- C:\Windows\Temp
2016-01-11 20:37:38 ----SHD---- C:\System Volume Information
2016-01-11 20:27:21 ----D---- C:\Windows\system32\config
2016-01-11 20:24:16 ----D---- C:\Windows
2016-01-11 20:23:57 ----D---- C:\Windows\INF
2016-01-11 20:20:17 ----D---- C:\Windows\system32\sru
2016-01-11 20:18:45 ----D---- C:\Windows\System32
2016-01-11 19:19:13 ----D---- C:\Windows\AppReadiness
2016-01-11 18:22:27 ----D---- C:\ProgramData\CyberLink
2016-01-11 17:11:56 ----D---- C:\Windows\debug
2016-01-10 21:32:22 ----D---- C:\Windows\WinSxS
2016-01-10 21:07:16 ----D---- C:\Windows\Microsoft.NET
2016-01-09 18:06:03 ----HD---- C:\Program Files\WindowsApps
2016-01-08 19:32:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-01-07 18:44:15 ----RD---- C:\Program Files (x86)
2016-01-07 16:52:25 ----D---- C:\Windows\CbsTemp
2016-01-07 16:52:17 ----D---- C:\Windows\SysWOW64
2016-01-03 02:40:14 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-12-31 19:46:34 ----RSD---- C:\Windows\assembly
2015-12-30 17:20:56 ----D---- C:\Windows\rescache
2015-12-30 17:18:08 ----D---- C:\Windows\Logs
2015-12-30 16:19:36 ----SHD---- C:\Windows\Installer
2015-12-27 14:11:22 ----HD---- C:\ProgramData
2015-12-27 14:10:47 ----D---- C:\Windows\system32\CatRoot
2015-12-27 12:41:08 ----D---- C:\Windows\Tasks
2015-12-27 12:41:08 ----D---- C:\Windows\system32\Tasks
2015-12-25 21:20:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-12-25 21:20:39 ----D---- C:\Windows\system32\catroot2
2015-12-25 21:16:22 ----D---- C:\Windows\Panther
2015-12-25 19:58:53 ----D---- C:\Windows\system32\drivers
2015-12-25 19:54:03 ----D---- C:\Windows\system32\DriverStore
2015-12-25 19:53:46 ----D---- C:\Program Files (x86)\Realtek
2015-12-25 19:53:32 ----D---- C:\SWSetup
2015-12-25 19:52:34 ----D---- C:\Program Files\Intel
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxLHM.dll
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxHK.exe
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxEM.exe
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxDI.dll
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxDH.dll
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxCUIService.exe
2015-12-25 19:47:37 ----A---- C:\Windows\system32\igdumdim64.dll
2015-12-25 19:47:36 ----A---- C:\Windows\SYSWOW64\igdumdim32.dll
2015-12-25 19:47:19 ----A---- C:\Windows\system32\igd10iumd64.dll
2015-12-25 19:47:17 ----A---- C:\Windows\SYSWOW64\igd10iumd32.dll
2015-12-25 19:47:15 ----A---- C:\Windows\system32\igc64.dll
2015-12-25 19:47:14 ----A---- C:\Windows\SYSWOW64\igc32.dll
2015-12-25 19:42:37 ----D---- C:\Windows\Hewlett-Packard
2015-12-25 19:18:45 ----D---- C:\Windows\system32\WDI
2015-12-25 16:58:55 ----D---- C:\Windows\system32\drivers\etc
2015-12-25 16:58:35 ----D---- C:\ProgramData\mcafee
2015-12-25 16:13:34 ----HD---- C:\Windows\ELAMBKUP
2015-12-25 16:08:56 ----D---- C:\Program Files\Common Files
2015-12-20 20:13:35 ----RSD---- C:\Windows\Fonts
2015-12-15 21:15:33 ----D---- C:\Windows\SYSWOW64\drivers
2015-12-15 20:30:22 ----D---- C:\Program Files (x86)\Common Files
2015-12-13 18:22:21 ----SD---- C:\Windows\SYSWOW64\F12
2015-12-13 18:22:21 ----D---- C:\Windows\SYSWOW64\migration
2015-12-13 18:22:21 ----D---- C:\Windows\SYSWOW64\en-GB
2015-12-13 18:22:21 ----D---- C:\Windows\SYSWOW64\de-DE
2015-12-13 18:22:06 ----D---- C:\Windows\system32\WinBioPlugIns
2015-12-13 18:22:05 ----D---- C:\Windows\system32\SystemResetPlatform
2015-12-13 18:22:05 ----D---- C:\Windows\system32\oobe
2015-12-13 18:22:04 ----SD---- C:\Windows\system32\F12
2015-12-13 18:22:04 ----D---- C:\Windows\system32\migration
2015-12-13 18:22:04 ----D---- C:\Windows\system32\en-GB
2015-12-13 18:22:04 ----D---- C:\Windows\system32\drivers\UMDF
2015-12-13 18:22:04 ----D---- C:\Windows\system32\drivers\en-US
2015-12-13 18:22:04 ----D---- C:\Windows\system32\drivers\de-DE
2015-12-13 18:22:03 ----D---- C:\Windows\system32\de-DE
2015-12-13 18:22:03 ----D---- C:\Windows\system32\Boot
2015-12-13 18:22:03 ----D---- C:\Windows\system32\appraiser
2015-12-13 18:21:31 ----RD---- C:\Windows\PurchaseDialog
2015-12-13 18:21:31 ----D---- C:\Windows\Provisioning
2015-12-13 18:21:25 ----D---- C:\Windows\L2Schemas
2015-12-13 18:21:24 ----RD---- C:\Windows\DevicesFlow
2015-12-13 18:21:24 ----D---- C:\Windows\AppPatch
2015-12-13 18:21:23 ----D---- C:\Program Files\Windows Journal
2015-12-13 18:21:23 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-13 18:21:22 ----D---- C:\Program Files\Internet Explorer
2015-12-13 18:21:17 ----D---- C:\Windows\system32\CodeIntegrity
2015-12-13 15:24:00 ----HD---- C:\$WINDOWS.~BT
2015-12-13 10:35:29 ----D---- C:\Windows\appcompat
2015-12-12 16:28:07 ----RD---- C:\Users
2015-12-12 16:18:01 ----D---- C:\Windows\OCR
2015-12-12 16:12:31 ----D---- C:\ProgramData\Hewlett-Packard
2015-12-12 16:09:58 ----SHD---- C:\$Recycle.Bin
2015-12-12 16:09:15 ----AHD---- C:\SYSTEM.SAV
2015-12-12 16:05:55 ----D---- C:\Windows\system32\WinBioDatabase
2015-12-12 16:03:29 ----A---- C:\Windows\system32\BtwRSupportService.exe
2015-12-12 16:03:29 ----A---- C:\Windows\system32\btwdi.dll
2015-12-12 16:02:42 ----A---- C:\Windows\system32\WdfCoInstaller01011.dll
2015-12-12 16:02:39 ----A---- C:\Windows\system32\SynTPCo31-1.dll
2015-12-12 16:02:39 ----A---- C:\Windows\system32\SynTPAPI.dll
2015-12-12 16:02:39 ----A---- C:\Windows\system32\SynCOM.dll
2015-12-12 15:52:29 ----D---- C:\Windows\system32\restore
2015-12-12 15:49:13 ----SD---- C:\ProgramData\Microsoft
2015-12-12 13:41:45 ----D---- C:\Program Files\Windows NT
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 cm_km;Kaspersky Lab ZAO Cryptographic Module x64 (Weak); C:\Windows\system32\DRIVERS\cm_km.sys [2015-07-06 389816]
R0 hpdskflt;@oem2.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2015-06-29 40624]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2015-07-24 1455552]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2015-06-22 478392]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [2015-06-06 53432]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2015-12-01 8192]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\Windows\system32\DRIVERS\klbackupflt.sys [2015-06-27 70512]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2015-12-25 227512]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2015-12-25 934272]
R1 KLIM6;@oem31.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2015-06-11 39608]
R1 klpd;Kaspersky Lab format recognizer driver; C:\Windows\system32\DRIVERS\klpd.sys [2015-12-25 41352]
R1 klwfp;klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [2015-12-25 87944]
R1 Klwtp;Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [2015-06-16 102584]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2015-06-23 187056]
R1 MPCKpt;MPCKpt; C:\Windows\system32\DRIVERS\MPCKpt.sys [2015-12-12 55528]
R2 kldisk;kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [2015-06-06 68280]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 Accelerometer;@oem2.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2015-06-29 53424]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2015-12-12 208176]
R3 BCM43XX;@oem16.inf,%BCM43XX_Service_DispName%;Treiber für Broadcom 802.11-Netzwerkadapter; C:\Windows\system32\DRIVERS\bcmwl63a.sys [2015-09-07 7551240]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2015-07-10 105984]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Treiber für energiearme Bluetooth-Geräte; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2015-07-10 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 clwvd6;@oem27.inf,%clwvd.DeviceDesc% Service;CyberLink WebCam Virtual Driver 6.0 Service; C:\Windows\system32\DRIVERS\clwvd6.sys [2013-10-29 41704]
R3 dptf_cpu;dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [2015-07-19 43000]
R3 esif_lf;esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [2015-07-19 251384]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-12-25 6406544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-07-27 4589784]
R3 IntcDAud;@oem43.inf,%IntcAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-12-25 789768]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2015-12-25 181640]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2015-06-06 41656]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2015-06-07 41656]
R3 MEIx64;@oem4.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverW8x64.sys [2015-07-07 184608]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-07-23 11139216]
R3 nvvad_WaveExtensible;@oem11.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-23 46768]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth-Gerät (RFCOMM-Protokoll-TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-07-10 167936]
R3 rt640x64;@oem22.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\Windows\System32\drivers\rt640x64.sys [2015-12-25 889584]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2015-12-12 42696]
R3 SynTP;@oem28.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2015-12-12 615608]
S0 klelam;klelam; C:\Windows\system32\DRIVERS\klelam.sys [2015-06-24 30328]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2015-07-10 40288]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2015-09-17 929280]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2015-12-12 223024]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\Windows\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\Windows\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-23 19600]
S3 NVSWCFilter;@oem12.inf,%NVSWCFilter.SvcDesc%;NVIDIA SHIELD Wireless Controller Trackpad Service; C:\Windows\System32\drivers\nvswcfilter.sys [2015-07-23 19616]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2015-08-01 934752]
S3 RTSPER;@oem20.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2015-07-21 753368]
S3 SGXEPC;@oem24.inf,%SGXEPC.SVCDESC%;Software Guard Extensions Device Driver; C:\Windows\System32\drivers\sgx_driver.sys [2015-06-19 54768]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2015-07-28 33448]
S4 klkbdflt2;Kaspersky Lab KlKbdFlt2; C:\Windows\system32\DRIVERS\klkbdflt2.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESMService;Intel® SGX AESM; C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe [2015-06-19 3744904]
R2 AVP16.0.0;Kaspersky Anti-Virus Service 16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [2015-12-25 194000]
R2 Bonjour Service;Dienst "Bonjour"; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 esifsvc;@oem7.inf,%ServiceDisplayName%;ESIF Upper Framework Service; C:\Windows\SysWOW64\esif_uf.exe [2015-07-19 1385640]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-07-10 223520]
R2 OneSyncSvc_Session1;Sync Host_Session1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-04-14 389896]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-07-27 298200]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-18 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
R3 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2015-12-25 350312]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Contact Data_Session1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R3 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-22 18856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]
S3 BcmBtRSupport;@oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\Windows\system32\BtwRSupportService.exe [2015-12-12 2286848]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-12-25 282216]
S3 cplspcon;Intel(R) Content Protection HDCP Service; C:\Windows\system32\IntelCpHDCPSvc.exe [2015-12-25 595560]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
Logfile of random's system information tool 1.10 (written by random/random)
Run by SSShe at 2016-01-11 20:56:17
Microsoft Windows 10 Home
System drive C: has 832 GB (89%) free of 935 GB
Total RAM: 8031 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:57:31, on 11.01.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16603)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
C:\Users\SSShe\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe
C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Users\SSShe\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Tasks.exe
C:\Program Files\trend micro\SSShe.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [PowerDVD14Agent] "C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe"
O4 - HKLM\..\RunOnce: [upgmsd_re_004010007.exe] C:\Users\SSShe\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe -runonce
O4 - HKCU\..\Run: [OneDrive] "C:\Users\SSShe\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Intel® SGX AESM (AESMService) - Intel Corporation - C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
O23 - Service: @oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\Windows\system32\BtwRSupportService.exe (file missing)
O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Unknown owner - C:\Windows\system32\IntelCpHDCPSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @oem7.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Intel Corporation - C:\Windows\SysWOW64\esif_uf.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update-Dienst (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem2.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vssbrigde64 - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12578 bytes
======Listing Processes======
C:\Windows\system32\lsass.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-68907f1e-c6e1-48c2-8791-181dd85deac8 -SystemEventPortName:HostProcess-b038564a-75f6-4f32-9b66-f87925647f75 -IoCancelEventPortName:HostProcess-ef7c45ec-d841-41a5-9d85-0dc506e7f674 -NonStateChangingEventPortName:HostProcess-8b0bc67f-25aa-485d-b4ca-f5474d2f6053 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1b8b05ae-c3cc-4197-89e5-34b2ea7e853f -DeviceGroupId:
C:\Windows\System32\svchost.exe -k NetworkService
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\WLANExt.exe 1082381463248
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe" -r
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\SysWOW64\esif_uf.exe
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe" -hidden
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\TEMP\DPTF\esif_assist_64.exe"
taskeng.exe {03D5C0DF-C75F-4A04-9563-B8AFBC21411D}
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
igfxEM.exe
igfxHK.exe
C:\Windows\system32\svchost.exe -k appmodel
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetServiceDss -RestrictPrivileges -AccessKey B53FFF77-DFA4-D261-17A0-B45E730C26A0 -Reinvoke
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Users\SSShe\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe" -runhelper
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Users\SSShe\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe"
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\Windows\SysWOW64\WerFault.exe -u -p 6028 -s 1280
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 576 600 620 8192 612
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Tasks.exe" /Run
"C:\Users\SSShe\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="8080.1.1465129386\721775211" "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 8080 "\\.\pipe\gecko-crash-server-pipe.8080" plugin
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe" --proxy-stub-channel=Flash6844.64A0A0B8.4345 --host-broker-channel=Flash6844.64A0A0B8.9630 --host-pid=6844 --host-npapi-version=28 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_20_0_0_267.dll"
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe" --channel=6148.00AEF444.1266016427 --proxy-stub-channel=Flash6844.64A0A0B8.4345 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_20_0_0_267.dll" --host-npapi-version=28 --type=renderer
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\HPCeeScheduleForSSShe.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSSShe (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\SSShe\AppData\Roaming\Mozilla\Firefox\Profiles\db63154f.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C66D064F-82FE-4E1A-B06A-B2490BA48B18}]
Kaspersky Protection plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-12-25 800216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30 629256]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C66D064F-82FE-4E1A-B06A-B2490BA48B18}]
Kaspersky Protection plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-12-25 584664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19 414920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Kaspersky Protection toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-12-25 800216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Kaspersky Protection toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-12-25 584664]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-07-27 8510680]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-23 1571696]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-12-12 3945656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\SSShe\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-12 551112]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2015-07-08 127528]
"HPMessageService"=C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [2015-06-29 653576]
"PowerDVD14Agent"=C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [2015-06-22 795336]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"upgmsd_re_004010007.exe"=C:\Users\SSShe\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe [2015-06-19 3307688]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=181
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
"NoDriveTypeAutoRun"=189
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-11 20:56:18 ----D---- C:\Program Files\trend micro
2016-01-11 20:56:17 ----D---- C:\rsit
2016-01-08 19:36:15 ----D---- C:\Users\SSShe\AppData\Roaming\NVIDIA
2016-01-07 17:28:40 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-12-25 21:16:30 ----D---- C:\Program Files (x86)\MPC AdCleaner
2015-12-25 20:56:55 ----D---- C:\Program Files\CCleaner
2015-12-25 20:55:28 ----D---- C:\Program Files (x86)\Google
2015-12-25 19:53:46 ----A---- C:\Windows\system32\RtNicProp64.dll
2015-12-25 19:51:14 ----A---- C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\IntelOpenCL32.dll
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\IntelCpHeciSvc.exe
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\igfxexps32.dll
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\igfxcmrt32.dll
2015-12-25 19:48:05 ----A---- C:\Windows\SYSWOW64\igfxcmjit32.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\MetroIntelGenericUIFramework.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelWiDiUtils64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelWiDiUMS64.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelWiDiMCComp64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelWiDiLogServer64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelOpenCL64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\IntelCpHDCPSvc.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxTray.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxSDKLibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxSDKLib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxSDK.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxOSP.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxLHMLibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxLHMLib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxext.exe
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxexps.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxEMLibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxEMLib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDTCM.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDILibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDILib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDHLibv2_0.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxDHLib.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxCUIServicePS.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxCoIn_v4279.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxcmrt64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfxcmjit64.dll
2015-12-25 19:48:05 ----A---- C:\Windows\system32\igfx11cmrt64.dll
2015-12-25 19:48:04 ----A---- C:\Windows\SYSWOW64\igfx11cmrt32.dll
2015-12-25 19:48:04 ----A---- C:\Windows\SYSWOW64\igdusc32.dll
2015-12-25 19:48:04 ----A---- C:\Windows\system32\igdusc64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdrcl32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdmd32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdmcl32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdfcl32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdde32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdbcl32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igdail32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igd12umd32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igd11dxva32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\igd10idpp32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\SYSWOW64\ig9icd32.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdrcl64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdmd64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdmcl64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdfcl64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdde64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdbcl64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igdail64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igd12umd64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igd11dxva64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\igd10idpp64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\ig9icd64.dll
2015-12-25 19:48:03 ----A---- C:\Windows\system32\Gfxv4_0.exe
2015-12-25 19:48:03 ----A---- C:\Windows\system32\Gfxv2_0.exe
2015-12-25 19:48:03 ----A---- C:\Windows\system32\GfxUIEx.exe
2015-12-25 19:48:03 ----A---- C:\Windows\system32\GfxResources.dll
2015-12-25 19:48:02 ----A---- C:\Windows\SYSWOW64\common_clang32.dll
2015-12-25 19:48:02 ----A---- C:\Windows\system32\drivers\IntcDAud.sys
2015-12-25 19:48:02 ----A---- C:\Windows\system32\DPTopologyAppv2_0.exe
2015-12-25 19:48:02 ----A---- C:\Windows\system32\DPTopologyApp.exe
2015-12-25 19:48:02 ----A---- C:\Windows\system32\difx64.exe
2015-12-25 19:48:02 ----A---- C:\Windows\system32\common_clang64.dll
2015-12-25 16:14:22 ----A---- C:\Windows\system32\klfphc.dll
2015-12-25 16:12:50 ----D---- C:\ProgramData\Kaspersky Lab
2015-12-25 16:12:50 ----D---- C:\Program Files (x86)\Kaspersky Lab
2015-12-25 16:12:46 ----A---- C:\ProgramData\ntuser.dat
2015-12-25 16:12:23 ----A---- C:\Windows\system32\drivers\klflt.sys
2015-12-25 16:12:21 ----A---- C:\Windows\system32\drivers\klif.sys
2015-12-25 16:12:17 ----A---- C:\Windows\system32\drivers\klhk.sys
2015-12-25 16:12:12 ----N---- C:\Windows\system32\MpSigStub.exe
2015-12-19 20:06:21 ----D---- C:\Users\SSShe\AppData\Roaming\AVAST Software
2015-12-17 13:18:31 ----D---- C:\Program Files (x86)\OpenAL
2015-12-17 13:18:31 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2015-12-17 13:18:31 ----A---- C:\Windows\system32\wrap_oal.dll
2015-12-17 13:18:31 ----A---- C:\Windows\system32\OpenAL32.dll
2015-12-17 13:18:30 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2015-12-15 21:15:33 ----A---- C:\Windows\SYSWOW64\drivers\SECDRV.SYS
2015-12-15 13:17:57 ----D---- C:\Users\SSShe\AppData\Roaming\DropboxOEM
2015-12-13 18:20:50 ----D---- C:\Windows\Minidump
2015-12-13 18:07:24 ----D---- C:\Windows\system32\SleepStudy
2015-12-13 10:36:03 ----D---- C:\Windows\system32\MRT
2015-12-13 10:35:56 ----A---- C:\Windows\system32\MRT.exe
2015-12-12 23:56:08 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-12-12 23:56:08 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-12-12 23:56:08 ----A---- C:\Windows\system32\drivers\WdiWiFi.sys
2015-12-12 23:56:07 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2015-12-12 23:56:07 ----A---- C:\Windows\system32\drivers\gpuenergydrv.sys
2015-12-12 23:56:06 ----A---- C:\Windows\system32\tetheringclient.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\rdbui.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\PimIndexMaintenance.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\ngckeyenum.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\HttpsDataSource.dll
2015-12-12 23:56:06 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2015-12-12 23:56:06 ----A---- C:\Windows\system32\drivers\pdc.sys
2015-12-12 23:56:06 ----A---- C:\Windows\system32\drivers\fastfat.sys
2015-12-12 23:56:06 ----A---- C:\Windows\system32\CallHistoryClient.dll
2015-12-12 23:56:05 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\win32kbase.sys
2015-12-12 23:56:05 ----A---- C:\Windows\system32\tetheringservice.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\MFPlay.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\MbaeParserTask.exe
2015-12-12 23:56:05 ----A---- C:\Windows\system32\LocationPermissions.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\LocationFramework.dll
2015-12-12 23:56:05 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-12-12 23:56:04 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2015-12-12 23:56:04 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\workfolderssvc.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\wifinetworkmanager.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\syncmlhook.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\mdmmigrator.dll
2015-12-12 23:56:04 ----A---- C:\Windows\system32\dmcertinst.exe
2015-12-12 23:56:03 ----A---- C:\Windows\system32\wlidsvc.dll
2015-12-12 23:56:03 ----A---- C:\Windows\system32\ngcsvc.dll
2015-12-12 23:56:03 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-12-12 23:56:03 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-12-12 23:56:03 ----A---- C:\Windows\system32\drivers\afd.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\tunnel.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\storport.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\stornvme.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\netio.sys
2015-12-12 23:56:02 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-12-12 23:56:01 ----A---- C:\Windows\system32\sysmain.dll
2015-12-12 23:56:01 ----A---- C:\Windows\system32\PsmServiceExtHost.dll
2015-12-12 23:56:01 ----A---- C:\Windows\system32\jscript9.dll
2015-12-12 23:56:01 ----A---- C:\Windows\system32\bisrv.dll
2015-12-12 23:56:00 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-12-12 23:56:00 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-12-12 23:56:00 ----A---- C:\Windows\system32\UserDataService.dll
2015-12-12 23:56:00 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2015-12-12 23:56:00 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-12-12 23:55:59 ----A---- C:\Windows\system32\win32kfull.sys
2015-12-12 23:55:59 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2015-12-12 23:55:58 ----A---- C:\Windows\system32\wuautoappupdate.dll
2015-12-12 23:55:58 ----A---- C:\Windows\system32\MFMediaEngine.dll
2015-12-12 23:55:58 ----A---- C:\Windows\system32\drivers\portcls.sys
2015-12-12 23:55:58 ----A---- C:\Windows\system32\drivers\bthhfenum.sys
2015-12-12 23:55:57 ----A---- C:\Windows\system32\wwansvc.dll
2015-12-12 23:55:57 ----A---- C:\Windows\system32\LocationGeofences.dll
2015-12-12 23:55:57 ----A---- C:\Windows\system32\audiosrv.dll
2015-12-12 23:55:56 ----A---- C:\Windows\system32\enterprisecsps.dll
2015-12-12 23:55:56 ----A---- C:\Windows\system32\dmcsps.dll
2015-12-12 23:55:56 ----A---- C:\Windows\system32\CellularAPI.dll
2015-12-12 23:55:55 ----A---- C:\Windows\system32\Windows.Globalization.dll
2015-12-12 23:55:55 ----A---- C:\Windows\system32\LicenseManager.dll
2015-12-12 23:55:55 ----A---- C:\Windows\system32\configmanager2.dll
2015-12-12 23:55:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-12-12 23:55:53 ----A---- C:\Windows\system32\drivers\buttonconverter.sys
2015-12-12 23:55:53 ----A---- C:\Windows\system32\Chakra.dll
2015-12-12 23:55:52 ----A---- C:\Windows\system32\edgehtml.dll
2015-12-12 23:55:51 ----A---- C:\Windows\system32\rpcrt4.dll
2015-12-12 23:55:51 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-12-12 23:55:51 ----A---- C:\Windows\system32\atmlib.dll
2015-12-12 23:55:50 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-12 23:55:50 ----A---- C:\Windows\system32\aitstatic.exe
2015-12-12 23:55:49 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-12-12 23:55:49 ----A---- C:\Windows\system32\drivers\bthport.sys
2015-12-12 23:55:48 ----A---- C:\Windows\system32\mshtml.dll
2015-12-12 23:55:46 ----A---- C:\Windows\SYSWOW64\shacct.dll
2015-12-12 23:55:46 ----A---- C:\Windows\system32\wwanmm.dll
2015-12-12 23:55:46 ----A---- C:\Windows\system32\winlogon.exe
2015-12-12 23:55:46 ----A---- C:\Windows\system32\shacct.dll
2015-12-12 23:55:46 ----A---- C:\Windows\system32\pnidui.dll
2015-12-12 23:55:46 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-12-12 23:55:45 ----A---- C:\Windows\system32\shell32.dll
2015-12-12 23:55:45 ----A---- C:\Windows\system32\LicenseManagerShellext.exe
2015-12-12 23:55:44 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-12-12 23:55:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-12 23:55:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-12 23:55:43 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-12 23:55:43 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2015-12-12 23:55:42 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2015-12-12 23:55:42 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2015-12-12 23:55:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-12 23:55:39 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2015-12-12 23:55:38 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-12-12 23:55:38 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-12 23:55:37 ----A---- C:\Windows\system32\browserbroker.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\wfdprov.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\RasMediaManager.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\MBMediaManager.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\ieframe.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\EthernetMediaManager.dll
2015-12-12 23:55:36 ----A---- C:\Windows\system32\DAMediaManager.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\Windows.Speech.Pal.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\VEDataLayerHelpers.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\usoapi.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-12-12 23:55:35 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2015-12-12 23:55:35 ----A---- C:\Windows\system32\WlanMediaManager.dll
2015-12-12 23:55:35 ----A---- C:\Windows\system32\Windows.UI.dll
2015-12-12 23:55:35 ----A---- C:\Windows\system32\NetworkUXBroker.exe
2015-12-12 23:55:34 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2015-12-12 23:55:34 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2015-12-12 23:55:34 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2015-12-12 23:55:34 ----A---- C:\Windows\SYSWOW64\LogonController.dll
2015-12-12 23:55:34 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\VEEventDispatcher.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\TokenBroker.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2015-12-12 23:55:33 ----A---- C:\Windows\SYSWOW64\CredProvDataModel.dll
2015-12-12 23:55:33 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2015-12-12 23:55:33 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2015-12-12 23:55:32 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.dll
2015-12-12 23:55:32 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2015-12-12 23:55:32 ----A---- C:\Windows\system32\wwanconn.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\VEEventDispatcher.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\OneDriveSettingSyncProvider.dll
2015-12-12 23:55:32 ----A---- C:\Windows\system32\dssvc.dll
2015-12-12 23:55:31 ----A---- C:\Windows\SYSWOW64\PackageStateRoaming.dll
2015-12-12 23:55:31 ----A---- C:\Windows\system32\Windows.Media.dll
2015-12-12 23:55:31 ----A---- C:\Windows\system32\SettingSync.dll
2015-12-12 23:55:30 ----A---- C:\Windows\SYSWOW64\twinui.dll
2015-12-12 23:55:29 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2015-12-12 23:55:29 ----A---- C:\Windows\system32\LogonController.dll
2015-12-12 23:55:29 ----A---- C:\Windows\system32\LockAppBroker.dll
2015-12-12 23:55:29 ----A---- C:\Windows\system32\CredProvDataModel.dll
2015-12-12 23:55:28 ----A---- C:\Windows\system32\usermgr.dll
2015-12-12 23:55:28 ----A---- C:\Windows\system32\tileobjserver.dll
2015-12-12 23:55:27 ----A---- C:\Windows\system32\Windows.Media.Speech.dll
2015-12-12 23:55:27 ----A---- C:\Windows\system32\PlayToManager.dll
2015-12-12 23:55:27 ----A---- C:\Windows\system32\NotificationController.dll
2015-12-12 23:55:27 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2015-12-12 23:55:26 ----A---- C:\Windows\system32\twinapi.appcore.dll
2015-12-12 23:55:26 ----A---- C:\Windows\system32\SettingSyncHost.exe
2015-12-12 23:55:25 ----A---- C:\Windows\system32\twinui.dll
2015-12-12 23:55:25 ----A---- C:\Windows\system32\TokenBroker.dll
2015-12-12 23:55:25 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2015-12-12 23:55:25 ----A---- C:\Windows\system32\modernexecserver.dll
2015-12-12 23:55:11 ----A---- C:\Windows\system32\NetworkStatus.dll
2015-12-12 23:55:11 ----A---- C:\Windows\system32\DAMM.dll
2015-12-12 23:55:10 ----A---- C:\Windows\system32\BthRadioMedia.dll
2015-12-12 23:55:09 ----A---- C:\Windows\SYSWOW64\explorer.exe
2015-12-12 23:55:09 ----A---- C:\Windows\system32\dot3mm.dll
2015-12-12 23:55:09 ----A---- C:\Windows\explorer.exe
2015-12-12 23:55:06 ----A---- C:\Windows\SYSWOW64\esent.dll
2015-12-12 23:55:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-12-12 23:55:06 ----A---- C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2015-12-12 23:55:06 ----A---- C:\Windows\system32\esent.dll
2015-12-12 23:55:06 ----A---- C:\Windows\system32\AudioEng.dll
2015-12-12 23:55:02 ----A---- C:\Windows\SYSWOW64\remoteaudioendpoint.dll
2015-12-12 23:55:02 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2015-12-12 23:55:02 ----A---- C:\Windows\system32\mfcore.dll
2015-12-12 23:55:02 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2015-12-12 23:55:02 ----A---- C:\Windows\system32\mf.dll
2015-12-12 23:55:00 ----A---- C:\Windows\SYSWOW64\RemoteNaturalLanguage.dll
2015-12-12 23:54:59 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-12 23:54:59 ----A---- C:\Windows\system32\RemoteNaturalLanguage.dll
2015-12-12 23:54:59 ----A---- C:\Windows\system32\iertutil.dll
2015-12-12 23:54:58 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-12-12 23:54:58 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\wcmsvc.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\wcmcsp.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\SubscriptionMgr.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\msxml6.dll
2015-12-12 23:54:58 ----A---- C:\Windows\system32\d3d9.dll
2015-12-12 23:54:57 ----A---- C:\Windows\SYSWOW64\mfds.dll
2015-12-12 23:54:57 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2015-12-12 23:54:57 ----A---- C:\Windows\system32\wlansvc.dll
2015-12-12 23:54:57 ----A---- C:\Windows\system32\vaultsvc.dll
2015-12-12 23:54:57 ----A---- C:\Windows\system32\psmsrv.dll
2015-12-12 23:54:56 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2015-12-12 23:54:56 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-12-12 23:54:56 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2015-12-12 23:54:56 ----A---- C:\Windows\system32\netcenter.dll
2015-12-12 23:54:56 ----A---- C:\Windows\system32\GdiPlus.dll
2015-12-12 23:54:55 ----A---- C:\Windows\system32\SensorService.dll
2015-12-12 23:54:55 ----A---- C:\Windows\system32\provhandlers.dll
2015-12-12 23:54:55 ----A---- C:\Windows\system32\ntdll.dll
2015-12-12 23:54:54 ----A---- C:\Windows\system32\BingMaps.dll
2015-12-12 23:54:54 ----A---- C:\Windows\system32\AppxSysprep.dll
2015-12-12 23:54:54 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2015-12-12 23:54:54 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2015-12-12 23:54:53 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2015-12-12 23:54:53 ----A---- C:\Windows\system32\windows.storage.dll
2015-12-12 23:54:53 ----A---- C:\Windows\system32\dwmcore.dll
2015-12-12 23:54:52 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-12-12 23:54:52 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2015-12-12 23:54:52 ----A---- C:\Windows\system32\msxml3.dll
2015-12-12 23:54:52 ----A---- C:\Windows\system32\CoreUIComponents.dll
2015-12-12 23:54:51 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2015-12-12 23:54:51 ----A---- C:\Windows\system32\twinui.appcore.dll
2015-12-12 23:54:49 ----A---- C:\Windows\SYSWOW64\SRHInproc.dll
2015-12-12 23:54:49 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-12-12 23:54:49 ----A---- C:\Windows\system32\winmde.dll
2015-12-12 23:54:49 ----A---- C:\Windows\system32\SRHInproc.dll
2015-12-12 23:54:49 ----A---- C:\Windows\system32\remoteaudioendpoint.dll
2015-12-12 23:54:49 ----A---- C:\Windows\system32\diagtrack.dll
2015-12-12 23:54:48 ----A---- C:\Windows\system32\wmpmde.dll
2015-12-12 23:54:48 ----A---- C:\Windows\system32\mos.dll
2015-12-12 23:54:47 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2015-12-12 23:54:47 ----A---- C:\Windows\SYSWOW64\mos.dll
2015-12-12 23:54:47 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-12 23:54:47 ----A---- C:\Windows\system32\hevcdecoder.dll
2015-12-12 23:54:47 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-12 23:54:46 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2015-12-12 23:54:45 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2015-12-12 23:54:45 ----A---- C:\Windows\system32\Windows.UI.PicturePassword.dll
2015-12-12 23:54:45 ----A---- C:\Windows\system32\internetmail.dll
2015-12-12 23:54:45 ----A---- C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\winmde.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\LockAppBroker.dll
2015-12-12 23:54:44 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-12-12 23:54:44 ----A---- C:\Windows\system32\user32.dll
2015-12-12 23:54:44 ----A---- C:\Windows\system32\authui.dll
2015-12-12 23:54:43 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2015-12-12 23:54:43 ----A---- C:\Windows\system32\UIAutomationCore.dll
2015-12-12 23:54:43 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-12-12 23:54:42 ----A---- C:\Windows\system32\tquery.dll
2015-12-12 23:54:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-12-12 23:54:40 ----A---- C:\Windows\system32\kerberos.dll
2015-12-12 23:54:39 ----A---- C:\Windows\system32\mfsrcsnk.dll
2015-12-12 23:54:39 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2015-12-12 23:54:39 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2015-12-12 23:54:39 ----A---- C:\Windows\system32\mfmkvsrcsnk.dll
2015-12-12 23:54:38 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2015-12-12 23:54:37 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2015-12-12 23:54:37 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2015-12-12 23:54:35 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2015-12-12 23:54:35 ----A---- C:\Windows\SYSWOW64\mfmkvsrcsnk.dll
2015-12-12 23:54:35 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-12-12 23:54:35 ----A---- C:\Windows\system32\appraiser.dll
2015-12-12 23:54:34 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2015-12-12 23:54:34 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-12 23:54:34 ----A---- C:\Windows\system32\schedsvc.dll
2015-12-12 23:54:33 ----A---- C:\Windows\SYSWOW64\SRH.dll
2015-12-12 23:54:33 ----A---- C:\Windows\SYSWOW64\Magnify.exe
2015-12-12 23:54:33 ----A---- C:\Windows\system32\SRH.dll
2015-12-12 23:54:33 ----A---- C:\Windows\system32\Magnify.exe
2015-12-12 23:54:32 ----A---- C:\Windows\system32\wpx.dll
2015-12-12 23:54:32 ----A---- C:\Windows\system32\mfds.dll
2015-12-12 23:54:32 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2015-12-12 23:54:31 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2015-12-12 23:54:31 ----A---- C:\Windows\system32\mfsvr.dll
2015-12-12 23:54:30 ----A---- C:\Windows\SYSWOW64\tquery.dll
2015-12-12 23:54:30 ----A---- C:\Windows\system32\VEDataLayerHelpers.dll
2015-12-12 23:54:30 ----A---- C:\Windows\system32\SettingsHandlers_UserAccount.dll
2015-12-12 23:54:30 ----A---- C:\Windows\system32\KnobsCsp.dll
2015-12-12 23:54:29 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2015-12-12 23:54:29 ----A---- C:\Windows\system32\SharedStartModel.dll
2015-12-12 23:54:29 ----A---- C:\Windows\system32\RDXService.dll
2015-12-12 23:54:28 ----A---- C:\Windows\system32\mssrch.dll
2015-12-12 23:54:28 ----A---- C:\Windows\system32\fveapi.dll
2015-12-12 23:54:28 ----A---- C:\Windows\system32\ci.dll
2015-12-12 23:54:26 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2015-12-12 23:54:26 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-12-12 23:54:26 ----A---- C:\Windows\system32\wininet.dll
2015-12-12 23:54:26 ----A---- C:\Windows\system32\jscript.dll
2015-12-12 23:54:24 ----A---- C:\Windows\system32\ninput.dll
2015-12-12 23:54:24 ----A---- C:\Windows\system32\ieui.dll
2015-12-12 23:54:24 ----A---- C:\Windows\system32\duser.dll
2015-12-12 23:54:24 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2015-12-12 23:54:24 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-12-12 23:54:23 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-12-12 23:54:23 ----A---- C:\Windows\system32\vbscript.dll
2015-12-12 23:54:23 ----A---- C:\Windows\system32\dxgi.dll
2015-12-12 23:54:23 ----A---- C:\Windows\system32\DWrite.dll
2015-12-12 23:54:22 ----A---- C:\Windows\SYSWOW64\directmanipulation.dll
2015-12-12 23:54:21 ----A---- C:\Windows\system32\WUDFx02000.dll
2015-12-12 23:54:21 ----A---- C:\Windows\system32\directmanipulation.dll
2015-12-12 23:54:20 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-12 23:54:19 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2015-12-12 23:54:19 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2015-12-12 23:54:19 ----A---- C:\Windows\system32\wcnwiz.dll
2015-12-12 23:54:19 ----A---- C:\Windows\system32\WcnNetsh.dll
2015-12-12 23:54:18 ----A---- C:\Windows\SYSWOW64\wcnwiz.dll
2015-12-12 23:54:17 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-12-12 23:54:17 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-12-12 23:54:17 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-12-12 23:54:17 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-12-12 23:54:17 ----A---- C:\Windows\system32\StoreAgent.dll
2015-12-12 23:54:17 ----A---- C:\Windows\system32\InstallAgent.exe
2015-12-12 23:54:16 ----A---- C:\Windows\SYSWOW64\ninput.dll
2015-12-12 23:54:16 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-12-12 23:54:16 ----A---- C:\Windows\SYSWOW64\duser.dll
2015-12-12 23:54:16 ----A---- C:\Windows\system32\fontdrvhost.exe
2015-12-12 23:54:16 ----A---- C:\Windows\system32\Chakradiag.dll
2015-12-12 23:54:15 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2015-12-12 23:54:15 ----A---- C:\Windows\SYSWOW64\dlnashext.dll
2015-12-12 23:54:15 ----A---- C:\Windows\system32\dlnashext.dll
2015-12-12 23:54:14 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-12 23:54:14 ----A---- C:\Windows\system32\InputService.dll
2015-12-12 23:54:14 ----A---- C:\Windows\system32\coredpus.dll
2015-12-12 23:54:14 ----A---- C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2015-12-12 23:54:14 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-12 23:54:13 ----A---- C:\Windows\system32\atmfd.dll
2015-12-12 23:54:12 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-12 23:54:11 ----A---- C:\Windows\system32\wwancfg.dll
2015-12-12 23:54:11 ----A---- C:\Windows\system32\MbaeApi.dll
2015-12-12 23:54:10 ----A---- C:\Windows\system32\AudioSes.dll
2015-12-12 23:54:09 ----A---- C:\Windows\SYSWOW64\ncryptprov.dll
2015-12-12 23:54:09 ----A---- C:\Windows\SYSWOW64\msctfuimanager.dll
2015-12-12 23:54:09 ----A---- C:\Windows\system32\ncryptprov.dll
2015-12-12 23:54:09 ----A---- C:\Windows\system32\msctfuimanager.dll
2015-12-12 23:54:08 ----A---- C:\Windows\SYSWOW64\tetheringclient.dll
2015-12-12 23:54:08 ----A---- C:\Windows\SYSWOW64\InputService.dll
2015-12-12 23:54:08 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-12-12 23:54:07 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-12-12 23:54:07 ----A---- C:\Windows\SYSWOW64\MbaeApi.dll
2015-12-12 23:54:07 ----A---- C:\Windows\SYSWOW64\Chakradiag.dll
2015-12-12 23:54:07 ----A---- C:\Windows\system32\Unistore.dll
2015-12-12 23:54:07 ----A---- C:\Windows\system32\notepad.exe
2015-12-12 23:54:07 ----A---- C:\Windows\system32\FntCache.dll
2015-12-12 23:54:07 ----A---- C:\Windows\notepad.exe
2015-12-12 23:54:06 ----A---- C:\Windows\system32\WWanAPI.dll
2015-12-12 23:54:06 ----A---- C:\Windows\system32\wpnapps.dll
2015-12-12 23:54:05 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2015-12-12 23:54:05 ----A---- C:\Windows\system32\NetSetupShim.dll
2015-12-12 23:54:05 ----A---- C:\Windows\system32\CoreMessaging.dll
2015-12-12 23:54:03 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2015-12-12 23:54:03 ----A---- C:\Windows\system32\profsvc.dll
2015-12-12 23:54:03 ----A---- C:\Windows\system32\drivers\sdbus.sys
2015-12-12 23:54:02 ----A---- C:\Windows\system32\DeviceEnroller.exe
2015-12-12 23:54:01 ----A---- C:\Windows\system32\dmenrollengine.dll
2015-12-12 23:54:00 ----A---- C:\Windows\system32\Windows.Speech.Pal.dll
2015-12-12 23:53:59 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2015-12-12 23:53:59 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-12-12 23:53:58 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2015-12-12 23:53:58 ----A---- C:\Windows\system32\provisioningcsp.dll
2015-12-12 23:53:58 ----A---- C:\Windows\system32\provengine.dll
2015-12-12 23:53:57 ----A---- C:\Windows\system32\Windows.Devices.Usb.dll
2015-12-12 23:53:57 ----A---- C:\Windows\system32\syncutil.dll
2015-12-12 23:53:56 ----A---- C:\Windows\SYSWOW64\Unistore.dll
2015-12-12 23:53:56 ----A---- C:\Windows\system32\wpncore.dll
2015-12-12 23:53:55 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2015-12-12 23:53:55 ----A---- C:\Windows\system32\drivers\wof.sys
2015-12-12 23:53:54 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2015-12-12 23:53:54 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2015-12-12 23:53:54 ----A---- C:\Windows\system32\ActionCenter.dll
2015-12-12 23:53:52 ----A---- C:\Windows\system32\ngccredprov.dll
2015-12-12 23:53:52 ----A---- C:\Windows\system32\ContactApis.dll
2015-12-12 23:53:51 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2015-12-12 23:53:51 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Usb.dll
2015-12-12 23:53:51 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-12-12 23:53:51 ----A---- C:\Windows\system32\facecredentialprovider.dll
2015-12-12 23:53:50 ----A---- C:\Windows\SYSWOW64\fwpolicyiomgr.dll
2015-12-12 23:53:50 ----A---- C:\Windows\system32\urlmon.dll
2015-12-12 23:53:50 ----A---- C:\Windows\system32\fwpolicyiomgr.dll
2015-12-12 23:53:50 ----A---- C:\Windows\system32\cloudAP.dll
2015-12-12 23:53:49 ----A---- C:\Windows\SYSWOW64\NotificationObjFactory.dll
2015-12-12 23:53:49 ----A---- C:\Windows\system32\NotificationObjFactory.dll
2015-12-12 23:53:49 ----A---- C:\Windows\system32\MapControlCore.dll
2015-12-12 23:53:48 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2015-12-12 23:53:48 ----A---- C:\Windows\system32\winload.exe
2015-12-12 23:53:48 ----A---- C:\Windows\system32\UserMgrProxy.dll
2015-12-12 23:53:48 ----A---- C:\Windows\system32\accountaccessor.dll
2015-12-12 23:53:47 ----A---- C:\Windows\SYSWOW64\ContactApis.dll
2015-12-12 23:53:47 ----A---- C:\Windows\system32\NetSetupSvc.dll
2015-12-12 23:53:46 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2015-12-12 23:53:45 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2015-12-12 23:53:45 ----A---- C:\Windows\SYSWOW64\AppointmentApis.dll
2015-12-12 23:53:45 ----A---- C:\Windows\system32\reseteng.dll
2015-12-12 23:53:44 ----A---- C:\Windows\SYSWOW64\UserMgrProxy.dll
2015-12-12 23:53:44 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2015-12-12 23:53:44 ----A---- C:\Windows\system32\mdmregistration.dll
2015-12-12 23:53:44 ----A---- C:\Windows\system32\enrollmentapi.dll
2015-12-12 23:53:41 ----A---- C:\Windows\system32\WcnApi.dll
2015-12-12 23:53:40 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-12 23:53:40 ----A---- C:\Windows\SYSWOW64\ChatApis.dll
2015-12-12 23:53:40 ----A---- C:\Windows\system32\fdWCN.dll
2015-12-12 23:53:40 ----A---- C:\Windows\system32\dafWCN.dll
2015-12-12 23:53:40 ----A---- C:\Windows\system32\ChatApis.dll
2015-12-12 23:53:38 ----A---- C:\Windows\system32\omadmapi.dll
2015-12-12 23:53:38 ----A---- C:\Windows\system32\mfps.dll
2015-12-12 23:53:38 ----A---- C:\Windows\system32\comdlg32.dll
2015-12-12 23:53:37 ----A---- C:\Windows\system32\LockAppHost.exe
2015-12-12 23:53:37 ----A---- C:\Windows\system32\drivers\usbhub.sys
2015-12-12 23:53:36 ----A---- C:\Windows\SYSWOW64\VoiceActivationManager.dll
2015-12-12 23:53:36 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2015-12-12 23:53:36 ----A---- C:\Windows\SYSWOW64\EmailApis.dll
2015-12-12 23:53:36 ----A---- C:\Windows\system32\winresume.exe
2015-12-12 23:53:36 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-12-12 23:53:35 ----A---- C:\Windows\system32\WinBioDataModel.dll
2015-12-12 23:53:35 ----A---- C:\Windows\system32\diagtrack_wininternal.dll
2015-12-12 23:53:34 ----A---- C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-12-12 23:53:34 ----A---- C:\Windows\system32\diagtrack_win.dll
2015-12-12 23:53:33 ----A---- C:\Windows\SYSWOW64\SensorsNativeApi.V2.dll
2015-12-12 23:53:33 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2015-12-12 23:53:33 ----A---- C:\Windows\SYSWOW64\CallHistoryClient.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\VPNv2CSP.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\SensorsNativeApi.V2.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\SensorsApi.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2015-12-12 23:53:33 ----A---- C:\Windows\system32\MDMAppInstaller.exe
2015-12-12 23:53:33 ----A---- C:\Windows\system32\acmigration.dll
2015-12-12 23:53:32 ----A---- C:\Windows\SYSWOW64\LockAppHost.exe
2015-12-12 23:53:32 ----A---- C:\Windows\system32\ncsi.dll
2015-12-12 23:53:31 ----A---- C:\Windows\SYSWOW64\MessagingDataModel2.dll
2015-12-12 23:53:31 ----A---- C:\Windows\system32\drivers\wpcfltr.sys
2015-12-12 23:53:30 ----A---- C:\Windows\system32\WWAHost.exe
2015-12-12 23:53:29 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-12-12 23:53:29 ----A---- C:\Windows\system32\KnobsCore.dll
2015-12-12 23:53:29 ----A---- C:\Windows\system32\drivers\msgpiowin32.sys
2015-12-12 23:53:28 ----A---- C:\Windows\system32\MusNotificationUx.exe
2015-12-12 23:53:27 ----A---- C:\Windows\system32\EmailApis.dll
2015-12-12 23:53:25 ----A---- C:\Windows\system32\SettingsHandlers_Notifications.dll
2015-12-12 23:53:23 ----A---- C:\Windows\system32\TextInputFramework.dll
2015-12-12 23:53:22 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2015-12-12 23:53:22 ----A---- C:\Windows\system32\wuuhext.dll
2015-12-12 23:53:22 ----A---- C:\Windows\system32\VoiceActivationManager.dll
2015-12-12 23:53:22 ----A---- C:\Windows\system32\JpMapControl.dll
2015-12-12 23:53:21 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-12-12 23:53:21 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2015-12-12 23:53:20 ----A---- C:\Windows\system32\LocationFrameworkInternalPS.dll
2015-12-12 23:53:17 ----A---- C:\Windows\SYSWOW64\TextInputFramework.dll
2015-12-12 23:53:17 ----A---- C:\Windows\system32\MapsStore.dll
2015-12-12 23:53:16 ----A---- C:\Windows\SYSWOW64\UserDataAccountApis.dll
2015-12-12 23:53:16 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2015-12-12 23:53:16 ----A---- C:\Windows\system32\userenv.dll
2015-12-12 23:53:16 ----A---- C:\Windows\system32\MessagingDataModel2.dll
2015-12-12 23:53:16 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-12-12 23:53:16 ----A---- C:\Windows\system32\AppointmentApis.dll
2015-12-12 23:53:15 ----A---- C:\Windows\SYSWOW64\userenv.dll
2015-12-12 23:53:15 ----A---- C:\Windows\system32\Windows.Cortana.Desktop.dll
2015-12-12 23:53:15 ----A---- C:\Windows\system32\shutdownux.dll
2015-12-12 23:53:15 ----A---- C:\Windows\system32\omadmclient.exe
2015-12-12 23:53:15 ----A---- C:\Windows\system32\NotificationControllerPS.dll
2015-12-12 23:53:15 ----A---- C:\Windows\system32\LocationWiFiAdapter.dll
2015-12-12 23:53:14 ----A---- C:\Windows\SYSWOW64\PhoneCallHistoryApis.dll
2015-12-12 23:53:14 ----A---- C:\Windows\system32\ReAgent.dll
2015-12-12 23:53:14 ----A---- C:\Windows\system32\mfplat.dll
2015-12-12 23:53:14 ----A---- C:\Windows\system32\MapConfiguration.dll
2015-12-12 23:53:12 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2015-12-12 23:53:12 ----A---- C:\Windows\system32\LocationWebproxy.dll
2015-12-12 23:53:12 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-12-12 23:53:11 ----A---- C:\Windows\system32\mssprxy.dll
2015-12-12 23:53:10 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2015-12-12 23:53:10 ----A---- C:\Windows\system32\Windows.Internal.Bluetooth.dll
2015-12-12 23:53:09 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-12 23:53:09 ----A---- C:\Windows\SYSWOW64\KBDAZST.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2015-12-12 23:53:09 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-12 23:53:09 ----A---- C:\Windows\system32\KBDAZST.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-12 23:53:09 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-12 23:53:08 ----A---- C:\Windows\system32\LocationPeIP.dll
2015-12-12 23:53:08 ----A---- C:\Windows\system32\LocationCrowdsource.dll
2015-12-12 23:53:07 ----A---- C:\Windows\SYSWOW64\profext.dll
2015-12-12 23:53:07 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2015-12-12 23:53:07 ----A---- C:\Windows\system32\UserDataAccountApis.dll
2015-12-12 23:53:07 ----A---- C:\Windows\system32\profext.dll
2015-12-12 23:53:07 ----A---- C:\Windows\system32\PhoneCallHistoryApis.dll
2015-12-12 23:53:07 ----A---- C:\Windows\system32\MPSSVC.dll
2015-12-12 23:53:06 ----A---- C:\Windows\system32\provops.dll
2015-12-12 23:53:05 ----A---- C:\Windows\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-12 23:53:05 ----A---- C:\Windows\SYSWOW64\GamePanel.exe
2015-12-12 23:53:05 ----A---- C:\Windows\system32\nlasvc.dll
2015-12-12 23:53:05 ----A---- C:\Windows\system32\GamePanel.exe
2015-12-12 23:53:05 ----A---- C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2015-12-12 23:53:04 ----A---- C:\Windows\SYSWOW64\ReInfo.dll
2015-12-12 23:53:04 ----A---- C:\Windows\system32\SharedStartModelShim.dll
2015-12-12 23:53:04 ----A---- C:\Windows\system32\LocationPeWiFi.dll
2015-12-12 23:53:04 ----A---- C:\Windows\system32\LocationPeCell.dll
2015-12-12 23:36:52 ----D---- C:\ProgramData\Codemasters
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2015-12-12 23:36:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\XAudio2_7.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\xactengine3_7.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\d3dcsx_43.dll
2015-12-12 23:36:42 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2015-12-12 23:36:41 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2015-12-12 23:36:41 ----A---- C:\Windows\system32\d3dx11_43.dll
2015-12-12 23:36:40 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2015-12-12 23:36:40 ----A---- C:\Windows\system32\d3dx10_43.dll
2015-12-12 23:36:39 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2015-12-12 23:36:39 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2015-12-12 23:36:39 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2015-12-12 23:36:39 ----A---- C:\Windows\system32\XAudio2_6.dll
2015-12-12 23:36:39 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2015-12-12 23:36:39 ----A---- C:\Windows\system32\D3DX9_43.dll
2015-12-12 23:36:38 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2015-12-12 23:36:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2015-12-12 23:36:38 ----A---- C:\Windows\system32\xactengine3_6.dll
2015-12-12 23:36:38 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2015-12-12 23:36:36 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2015-12-12 23:36:36 ----A---- C:\Windows\system32\XAudio2_5.dll
2015-12-12 23:36:35 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2015-12-12 23:36:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2015-12-12 23:36:35 ----A---- C:\Windows\system32\xactengine3_5.dll
2015-12-12 23:36:35 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\system32\d3dx11_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\system32\d3dx10_42.dll
2015-12-12 23:36:34 ----A---- C:\Windows\system32\d3dcsx_42.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\XAudio2_4.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\D3DX9_42.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\D3DX9_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\d3dx10_41.dll
2015-12-12 23:36:33 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2015-12-12 23:36:32 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2015-12-12 23:36:32 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2015-12-12 23:36:32 ----A---- C:\Windows\system32\xactengine3_4.dll
2015-12-12 23:36:32 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\XAudio2_3.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\D3DX9_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\d3dx10_40.dll
2015-12-12 23:36:31 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2015-12-12 23:36:30 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2015-12-12 23:36:30 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2015-12-12 23:36:30 ----A---- C:\Windows\system32\xactengine3_3.dll
2015-12-12 23:36:30 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2015-12-12 23:36:29 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2015-12-12 23:36:29 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2015-12-12 23:36:29 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2015-12-12 23:36:29 ----A---- C:\Windows\system32\XAudio2_2.dll
2015-12-12 23:36:29 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2015-12-12 23:36:29 ----A---- C:\Windows\system32\xactengine3_2.dll
2015-12-12 23:36:28 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\system32\D3DX9_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\system32\d3dx10_39.dll
2015-12-12 23:36:28 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2015-12-12 23:36:27 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2015-12-12 23:36:27 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2015-12-12 23:36:27 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2015-12-12 23:36:27 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2015-12-12 23:36:27 ----A---- C:\Windows\system32\XAudio2_1.dll
2015-12-12 23:36:27 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2015-12-12 23:36:27 ----A---- C:\Windows\system32\xactengine3_1.dll
2015-12-12 23:36:27 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2015-12-12 23:36:26 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2015-12-12 23:36:26 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\system32\XAudio2_0.dll
2015-12-12 23:36:26 ----A---- C:\Windows\system32\D3DX9_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\system32\d3dx10_38.dll
2015-12-12 23:36:26 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\xactengine3_0.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\D3DX9_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\d3dx10_37.dll
2015-12-12 23:36:25 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2015-12-12 23:36:24 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2015-12-12 23:36:24 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2015-12-12 23:36:24 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2015-12-12 23:36:24 ----A---- C:\Windows\system32\xactengine2_10.dll
2015-12-12 23:36:24 ----A---- C:\Windows\system32\d3dx10_36.dll
2015-12-12 23:36:24 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\xactengine2_9.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\d3dx9_36.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\d3dx9_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\d3dx10_35.dll
2015-12-12 23:36:23 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\xinput1_3.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\xactengine2_8.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\d3dx9_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\d3dx10_34.dll
2015-12-12 23:36:22 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2015-12-12 23:36:21 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2015-12-12 23:36:21 ----A---- C:\Windows\system32\xactengine2_7.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\xactengine2_6.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\xactengine2_5.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\d3dx9_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\d3dx10_33.dll
2015-12-12 23:36:20 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2015-12-12 23:36:19 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\xactengine2_4.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\xactengine2_3.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\x3daudio1_1.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\d3dx9_32.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\d3dx9_31.dll
2015-12-12 23:36:19 ----A---- C:\Windows\system32\d3dx10.dll
2015-12-12 23:36:18 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2015-12-12 23:36:18 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2015-12-12 23:36:18 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2015-12-12 23:36:18 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2015-12-12 23:36:18 ----A---- C:\Windows\system32\xinput1_2.dll
2015-12-12 23:36:18 ----A---- C:\Windows\system32\xinput1_1.dll
2015-12-12 23:36:18 ----A---- C:\Windows\system32\xactengine2_2.dll
2015-12-12 23:36:18 ----A---- C:\Windows\system32\xactengine2_1.dll
2015-12-12 23:36:16 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2015-12-12 23:36:16 ----A---- C:\Windows\system32\d3dx9_30.dll
2015-12-12 23:36:15 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2015-12-12 23:36:15 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2015-12-12 23:36:15 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2015-12-12 23:36:15 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2015-12-12 23:36:15 ----A---- C:\Windows\system32\xactengine2_0.dll
2015-12-12 23:36:15 ----A---- C:\Windows\system32\x3daudio1_0.dll
2015-12-12 23:36:15 ----A---- C:\Windows\system32\d3dx9_29.dll
2015-12-12 23:36:15 ----A---- C:\Windows\system32\d3dx9_28.dll
2015-12-12 23:36:14 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2015-12-12 23:36:14 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2015-12-12 23:36:14 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2015-12-12 23:36:14 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2015-12-12 23:36:14 ----A---- C:\Windows\system32\d3dx9_27.dll
2015-12-12 23:36:14 ----A---- C:\Windows\system32\d3dx9_26.dll
2015-12-12 23:36:14 ----A---- C:\Windows\system32\d3dx9_25.dll
2015-12-12 23:36:14 ----A---- C:\Windows\system32\d3dx9_24.dll
2015-12-12 20:13:43 ----D---- C:\Users\SSShe\AppData\Roaming\CyberLink
2015-12-12 18:58:40 ----D---- C:\ProgramData\Tmp0x0x
2015-12-12 18:57:56 ----A---- C:\Windows\system32\drivers\MPCKpt.sys
2015-12-12 18:57:55 ----D---- C:\Program Files (x86)\MPC Cleaner
2015-12-12 18:57:43 ----D---- C:\Program Files (x86)\gmsd_re_004010007
2015-12-12 18:57:19 ----D---- C:\Program Files (x86)\OLBPre
2015-12-12 16:59:28 ----D---- C:\Program Files (x86)\Steam
2015-12-12 16:35:51 ----D---- C:\Users\SSShe\AppData\Roaming\Skype
2015-12-12 16:35:45 ----RD---- C:\Program Files (x86)\Skype
2015-12-12 16:35:41 ----D---- C:\ProgramData\Skype
2015-12-12 16:29:57 ----D---- C:\Users\SSShe\AppData\Roaming\Mozilla
2015-12-12 16:29:49 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-12 16:17:56 ----A---- C:\Windows\system32\prm0005.dll
2015-12-12 16:15:07 ----D---- C:\Users\SSShe\AppData\Roaming\Macromedia
2015-12-12 16:12:38 ----D---- C:\Users\SSShe\AppData\Roaming\Hewlett-Packard
2015-12-12 16:12:27 ----D---- C:\Users\SSShe\AppData\Roaming\Synaptics
2015-12-12 16:09:05 ----D---- C:\Users\SSShe\AppData\Roaming\Adobe
2015-12-12 16:04:14 ----SD---- C:\Users\SSShe\AppData\Roaming\Microsoft
2015-12-12 16:03:29 ----A---- C:\Windows\system32\drivers\btwampfl.sys
2015-12-12 16:02:39 ----A---- C:\Windows\SYSWOW64\SynCom.dll
2015-12-12 16:02:38 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel_Aux.sys
2015-12-12 16:02:38 ----A---- C:\Windows\system32\drivers\Smb_driver_AMDASF_Aux.sys
2015-12-12 15:57:40 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-12-12 13:42:59 ----D---- C:\Windows\SoftwareDistribution
2015-12-12 13:41:45 ----SHD---- C:\Programme
2015-12-12 13:41:45 ----SHD---- C:\ProgramData\Vorlagen
2015-12-12 13:41:45 ----SHD---- C:\ProgramData\Startmenü
2015-12-12 13:41:45 ----SHD---- C:\ProgramData\Dokumente
2015-12-12 13:41:45 ----SHD---- C:\ProgramData\Anwendungsdaten
2015-12-12 13:41:45 ----SHD---- C:\Program Files\Gemeinsame Dateien
2015-12-12 13:41:45 ----SHD---- C:\Dokumente und Einstellungen
======List of files/folders modified in the last 1 month======
2016-01-11 20:56:31 ----D---- C:\Windows\Prefetch
2016-01-11 20:56:18 ----RD---- C:\Program Files
2016-01-11 20:49:29 ----D---- C:\Windows\Temp
2016-01-11 20:37:38 ----SHD---- C:\System Volume Information
2016-01-11 20:27:21 ----D---- C:\Windows\system32\config
2016-01-11 20:24:16 ----D---- C:\Windows
2016-01-11 20:23:57 ----D---- C:\Windows\INF
2016-01-11 20:20:17 ----D---- C:\Windows\system32\sru
2016-01-11 20:18:45 ----D---- C:\Windows\System32
2016-01-11 19:19:13 ----D---- C:\Windows\AppReadiness
2016-01-11 18:22:27 ----D---- C:\ProgramData\CyberLink
2016-01-11 17:11:56 ----D---- C:\Windows\debug
2016-01-10 21:32:22 ----D---- C:\Windows\WinSxS
2016-01-10 21:07:16 ----D---- C:\Windows\Microsoft.NET
2016-01-09 18:06:03 ----HD---- C:\Program Files\WindowsApps
2016-01-08 19:32:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-01-07 18:44:15 ----RD---- C:\Program Files (x86)
2016-01-07 16:52:25 ----D---- C:\Windows\CbsTemp
2016-01-07 16:52:17 ----D---- C:\Windows\SysWOW64
2016-01-03 02:40:14 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-12-31 19:46:34 ----RSD---- C:\Windows\assembly
2015-12-30 17:20:56 ----D---- C:\Windows\rescache
2015-12-30 17:18:08 ----D---- C:\Windows\Logs
2015-12-30 16:19:36 ----SHD---- C:\Windows\Installer
2015-12-27 14:11:22 ----HD---- C:\ProgramData
2015-12-27 14:10:47 ----D---- C:\Windows\system32\CatRoot
2015-12-27 12:41:08 ----D---- C:\Windows\Tasks
2015-12-27 12:41:08 ----D---- C:\Windows\system32\Tasks
2015-12-25 21:20:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-12-25 21:20:39 ----D---- C:\Windows\system32\catroot2
2015-12-25 21:16:22 ----D---- C:\Windows\Panther
2015-12-25 19:58:53 ----D---- C:\Windows\system32\drivers
2015-12-25 19:54:03 ----D---- C:\Windows\system32\DriverStore
2015-12-25 19:53:46 ----D---- C:\Program Files (x86)\Realtek
2015-12-25 19:53:32 ----D---- C:\SWSetup
2015-12-25 19:52:34 ----D---- C:\Program Files\Intel
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxLHM.dll
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxHK.exe
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxEM.exe
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxDI.dll
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxDH.dll
2015-12-25 19:47:38 ----A---- C:\Windows\system32\igfxCUIService.exe
2015-12-25 19:47:37 ----A---- C:\Windows\system32\igdumdim64.dll
2015-12-25 19:47:36 ----A---- C:\Windows\SYSWOW64\igdumdim32.dll
2015-12-25 19:47:19 ----A---- C:\Windows\system32\igd10iumd64.dll
2015-12-25 19:47:17 ----A---- C:\Windows\SYSWOW64\igd10iumd32.dll
2015-12-25 19:47:15 ----A---- C:\Windows\system32\igc64.dll
2015-12-25 19:47:14 ----A---- C:\Windows\SYSWOW64\igc32.dll
2015-12-25 19:42:37 ----D---- C:\Windows\Hewlett-Packard
2015-12-25 19:18:45 ----D---- C:\Windows\system32\WDI
2015-12-25 16:58:55 ----D---- C:\Windows\system32\drivers\etc
2015-12-25 16:58:35 ----D---- C:\ProgramData\mcafee
2015-12-25 16:13:34 ----HD---- C:\Windows\ELAMBKUP
2015-12-25 16:08:56 ----D---- C:\Program Files\Common Files
2015-12-20 20:13:35 ----RSD---- C:\Windows\Fonts
2015-12-15 21:15:33 ----D---- C:\Windows\SYSWOW64\drivers
2015-12-15 20:30:22 ----D---- C:\Program Files (x86)\Common Files
2015-12-13 18:22:21 ----SD---- C:\Windows\SYSWOW64\F12
2015-12-13 18:22:21 ----D---- C:\Windows\SYSWOW64\migration
2015-12-13 18:22:21 ----D---- C:\Windows\SYSWOW64\en-GB
2015-12-13 18:22:21 ----D---- C:\Windows\SYSWOW64\de-DE
2015-12-13 18:22:06 ----D---- C:\Windows\system32\WinBioPlugIns
2015-12-13 18:22:05 ----D---- C:\Windows\system32\SystemResetPlatform
2015-12-13 18:22:05 ----D---- C:\Windows\system32\oobe
2015-12-13 18:22:04 ----SD---- C:\Windows\system32\F12
2015-12-13 18:22:04 ----D---- C:\Windows\system32\migration
2015-12-13 18:22:04 ----D---- C:\Windows\system32\en-GB
2015-12-13 18:22:04 ----D---- C:\Windows\system32\drivers\UMDF
2015-12-13 18:22:04 ----D---- C:\Windows\system32\drivers\en-US
2015-12-13 18:22:04 ----D---- C:\Windows\system32\drivers\de-DE
2015-12-13 18:22:03 ----D---- C:\Windows\system32\de-DE
2015-12-13 18:22:03 ----D---- C:\Windows\system32\Boot
2015-12-13 18:22:03 ----D---- C:\Windows\system32\appraiser
2015-12-13 18:21:31 ----RD---- C:\Windows\PurchaseDialog
2015-12-13 18:21:31 ----D---- C:\Windows\Provisioning
2015-12-13 18:21:25 ----D---- C:\Windows\L2Schemas
2015-12-13 18:21:24 ----RD---- C:\Windows\DevicesFlow
2015-12-13 18:21:24 ----D---- C:\Windows\AppPatch
2015-12-13 18:21:23 ----D---- C:\Program Files\Windows Journal
2015-12-13 18:21:23 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-13 18:21:22 ----D---- C:\Program Files\Internet Explorer
2015-12-13 18:21:17 ----D---- C:\Windows\system32\CodeIntegrity
2015-12-13 15:24:00 ----HD---- C:\$WINDOWS.~BT
2015-12-13 10:35:29 ----D---- C:\Windows\appcompat
2015-12-12 16:28:07 ----RD---- C:\Users
2015-12-12 16:18:01 ----D---- C:\Windows\OCR
2015-12-12 16:12:31 ----D---- C:\ProgramData\Hewlett-Packard
2015-12-12 16:09:58 ----SHD---- C:\$Recycle.Bin
2015-12-12 16:09:15 ----AHD---- C:\SYSTEM.SAV
2015-12-12 16:05:55 ----D---- C:\Windows\system32\WinBioDatabase
2015-12-12 16:03:29 ----A---- C:\Windows\system32\BtwRSupportService.exe
2015-12-12 16:03:29 ----A---- C:\Windows\system32\btwdi.dll
2015-12-12 16:02:42 ----A---- C:\Windows\system32\WdfCoInstaller01011.dll
2015-12-12 16:02:39 ----A---- C:\Windows\system32\SynTPCo31-1.dll
2015-12-12 16:02:39 ----A---- C:\Windows\system32\SynTPAPI.dll
2015-12-12 16:02:39 ----A---- C:\Windows\system32\SynCOM.dll
2015-12-12 15:52:29 ----D---- C:\Windows\system32\restore
2015-12-12 15:49:13 ----SD---- C:\ProgramData\Microsoft
2015-12-12 13:41:45 ----D---- C:\Program Files\Windows NT
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 cm_km;Kaspersky Lab ZAO Cryptographic Module x64 (Weak); C:\Windows\system32\DRIVERS\cm_km.sys [2015-07-06 389816]
R0 hpdskflt;@oem2.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2015-06-29 40624]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2015-07-24 1455552]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2015-06-22 478392]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [2015-06-06 53432]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2015-12-01 8192]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\Windows\system32\DRIVERS\klbackupflt.sys [2015-06-27 70512]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2015-12-25 227512]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2015-12-25 934272]
R1 KLIM6;@oem31.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2015-06-11 39608]
R1 klpd;Kaspersky Lab format recognizer driver; C:\Windows\system32\DRIVERS\klpd.sys [2015-12-25 41352]
R1 klwfp;klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [2015-12-25 87944]
R1 Klwtp;Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [2015-06-16 102584]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2015-06-23 187056]
R1 MPCKpt;MPCKpt; C:\Windows\system32\DRIVERS\MPCKpt.sys [2015-12-12 55528]
R2 kldisk;kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [2015-06-06 68280]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 Accelerometer;@oem2.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2015-06-29 53424]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2015-12-12 208176]
R3 BCM43XX;@oem16.inf,%BCM43XX_Service_DispName%;Treiber für Broadcom 802.11-Netzwerkadapter; C:\Windows\system32\DRIVERS\bcmwl63a.sys [2015-09-07 7551240]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2015-07-10 105984]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Treiber für energiearme Bluetooth-Geräte; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2015-07-10 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 clwvd6;@oem27.inf,%clwvd.DeviceDesc% Service;CyberLink WebCam Virtual Driver 6.0 Service; C:\Windows\system32\DRIVERS\clwvd6.sys [2013-10-29 41704]
R3 dptf_cpu;dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [2015-07-19 43000]
R3 esif_lf;esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [2015-07-19 251384]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-12-25 6406544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-07-27 4589784]
R3 IntcDAud;@oem43.inf,%IntcAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-12-25 789768]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2015-12-25 181640]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2015-06-06 41656]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2015-06-07 41656]
R3 MEIx64;@oem4.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverW8x64.sys [2015-07-07 184608]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-07-23 11139216]
R3 nvvad_WaveExtensible;@oem11.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-23 46768]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth-Gerät (RFCOMM-Protokoll-TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-07-10 167936]
R3 rt640x64;@oem22.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\Windows\System32\drivers\rt640x64.sys [2015-12-25 889584]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2015-12-12 42696]
R3 SynTP;@oem28.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2015-12-12 615608]
S0 klelam;klelam; C:\Windows\system32\DRIVERS\klelam.sys [2015-06-24 30328]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2015-07-10 40288]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2015-09-17 929280]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2015-12-12 223024]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\Windows\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\Windows\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-23 19600]
S3 NVSWCFilter;@oem12.inf,%NVSWCFilter.SvcDesc%;NVIDIA SHIELD Wireless Controller Trackpad Service; C:\Windows\System32\drivers\nvswcfilter.sys [2015-07-23 19616]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2015-08-01 934752]
S3 RTSPER;@oem20.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2015-07-21 753368]
S3 SGXEPC;@oem24.inf,%SGXEPC.SVCDESC%;Software Guard Extensions Device Driver; C:\Windows\System32\drivers\sgx_driver.sys [2015-06-19 54768]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2015-07-28 33448]
S4 klkbdflt2;Kaspersky Lab KlKbdFlt2; C:\Windows\system32\DRIVERS\klkbdflt2.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESMService;Intel® SGX AESM; C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe [2015-06-19 3744904]
R2 AVP16.0.0;Kaspersky Anti-Virus Service 16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [2015-12-25 194000]
R2 Bonjour Service;Dienst "Bonjour"; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 esifsvc;@oem7.inf,%ServiceDisplayName%;ESIF Upper Framework Service; C:\Windows\SysWOW64\esif_uf.exe [2015-07-19 1385640]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-07-10 223520]
R2 OneSyncSvc_Session1;Sync Host_Session1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-04-14 389896]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-07-27 298200]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-18 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
R3 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2015-12-25 350312]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Contact Data_Session1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R3 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-22 18856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]
S3 BcmBtRSupport;@oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\Windows\system32\BtwRSupportService.exe [2015-12-12 2286848]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-12-25 282216]
S3 cplspcon;Intel(R) Content Protection HDCP Service; C:\Windows\system32\IntelCpHDCPSvc.exe [2015-12-25 595560]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
