VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

mrzne ntbk

https://forum.viry.cz:443/viewtopic.php?t=149110

Stránka 1 z 2

mrzne ntbk

Napsal: 02 čer 2016 15:07
od airplane
Dobry den,

prosim o pomoc s ntbk. Po 10 - 15 min prace zamrzne, nepohybuje sa sipka mysi, nefunguje klavesnica. Jedine mozne riesenie je tvrdy restart.
Doteraz vyskusane programy combofix, adwcleaner, mbam, norton sec., superant.sp.ware nepomohli.
Dakujem.

Logfile of random's system information tool 1.10 (written by random/random)
Run by europe at 2016-06-02 15:47:43
Microsoft Windows 8
System drive C: has 360 GB (79%) free of 458 GB
Total RAM: 3986 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:47:53, on 2.6.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17568)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\europe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKCU\..\Run: [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Advanced SystemCare 9] "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 9 (AdvancedSystemCareService9) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem23.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10129 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 10987 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
dashost.exe {045c503e-d43b-42ce-a2e3e146ed7e1280}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\diMaster.dll" /prefetch:1
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe" /c /a /s UserSession
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\WINDOWS\System32\hkcmd.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\europe\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=51.0.2704.63 --handshake-handle=0x128
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/NewSuggestType_A10_Stable_R2/OutOfProcessPac/Default/PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PreRead/Default/*QUIC/EnabledNoId/RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/SafeBrowsingIncidentReportingService/Default/SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Disabled/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --type=gpu-process --channel="4836.0.1260588905\1530341719" --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,10,12,13,25,46,54 --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.982.6.0 --mojo-platform-channel-handle=1036 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" -byrunkey
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A10_Stable_R2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SyncHttpContentCompression/Disabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=C23E17BB3D0D41866DC49C38BD70C2F0 --lang=sk --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4836.12.866702404\87773006" --mojo-platform-channel-handle=2980 /prefetch:1
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A10_Stable_R2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SyncHttpContentCompression/Disabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=480B8948377F85F00F517836B58C3BFD --lang=sk --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4836.13.1164192649\656705994" --mojo-platform-channel-handle=1064 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A10_Stable_R2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SyncHttpContentCompression/Disabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=45F4268320F77A828AAE1508BB915BE9 --lang=sk --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4836.14.210707660\421806896" --mojo-platform-channel-handle=2260 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A10_Stable_R2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SyncHttpContentCompression/Disabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=89A5E25400209ECA5766501BAA47BA2C --lang=sk --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4836.15.1625941362\826271702" --mojo-platform-channel-handle=3420 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A10_Stable_R2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SyncHttpContentCompression/Disabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=36CA64AA72301EEC9F36FC08DBBB3168 --lang=sk --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4836.16.770885885\781691296" --mojo-platform-channel-handle=2840 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 552 556 564 65536 560

"C:\Users\europe\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\ASC9_SkipUac_europe.job - C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /SkipUac
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForeurope.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForeurope (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12 2472224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 209504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21 1051320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll [2016-02-21 805560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 6141528]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21 1051320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll [2016-02-21 805560]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-24 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-24 398656]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2016-05-25 1664000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Power2GoExpress8"=C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [2013-01-27 1711680]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-05-13 8721624]
"Advanced SystemCare 9"=C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2016-04-26 2022688]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2012-07-26 1475072]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-05-31 7943072]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-06 642216]
"HP CoolSense"=C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2012-11-05 1343904]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-09-07 581024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2016-06-02 15:47:43 ----D---- C:\rsit
2016-06-02 15:47:43 ----D---- C:\Program Files\trend micro
2016-06-02 09:44:49 ----D---- C:\WINDOWS\temp
2016-06-02 09:44:47 ----A---- C:\ComboFix.txt
2016-06-02 09:38:16 ----SHD---- C:\$RECYCLE.BIN
2016-06-02 09:25:06 ----A---- C:\WINDOWS\zip.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\SWXCACLS.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\SWSC.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\SWREG.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\sed.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\PEV.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\NIRCMD.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\MBR.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\grep.exe
2016-06-02 09:24:56 ----D---- C:\Qoobox
2016-06-02 09:24:17 ----D---- C:\WINDOWS\erdnt
2016-06-01 14:57:19 ----D---- C:\Users\europe\AppData\Roaming\SUPERAntiSpyware.com
2016-06-01 14:56:01 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2016-06-01 14:56:01 ----D---- C:\Program Files\SUPERAntiSpyware
2016-06-01 14:43:32 ----N---- C:\bootsqm.dat
2016-05-31 22:13:08 ----ASH---- C:\pagefile.sys
2016-05-31 18:30:52 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-05-31 18:30:10 ----D---- C:\ProgramData\Malwarebytes
2016-05-31 18:30:10 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-31 18:30:10 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2016-05-31 18:30:10 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2016-05-31 18:30:10 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2016-05-31 00:28:56 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2016-05-31 00:28:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2016-05-31 00:28:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2016-05-31 00:28:55 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2016-05-31 00:28:52 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2016-05-31 00:28:51 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2016-05-31 00:28:51 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2016-05-31 00:28:51 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2016-05-31 00:28:45 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2016-05-31 00:28:45 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2016-05-31 00:28:44 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2016-05-31 00:28:44 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2016-05-31 00:28:36 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2016-05-31 00:28:36 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2016-05-31 00:28:36 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2016-05-31 00:28:35 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2016-05-31 00:28:34 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2016-05-31 00:28:34 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2016-05-31 00:28:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2016-05-31 00:28:32 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2016-05-31 00:28:30 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2016-05-31 00:28:30 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2016-05-31 00:28:24 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2016-05-31 00:28:17 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2016-05-31 00:28:17 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2016-05-31 00:28:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2016-05-31 00:28:14 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2016-05-31 00:28:11 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2016-05-31 00:28:10 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2016-05-31 00:28:08 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2016-05-31 00:28:07 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2016-05-31 00:28:06 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2016-05-31 00:28:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2016-05-31 00:28:02 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2016-05-31 00:28:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2016-05-31 00:28:00 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2016-05-31 00:28:00 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2016-05-31 00:27:58 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2016-05-31 00:27:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2016-05-31 00:27:56 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2016-05-31 00:27:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2016-05-31 00:27:55 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2016-05-31 00:27:54 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2016-05-31 00:27:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2016-05-31 00:27:53 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2016-05-31 00:27:51 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2016-05-31 00:27:50 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2016-05-31 00:27:48 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2016-05-31 00:27:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2016-05-31 00:27:46 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2016-05-31 00:27:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2016-05-31 00:27:44 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2016-05-31 00:27:44 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2016-05-31 00:27:43 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2016-05-31 00:27:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2016-05-31 00:27:42 ----A---- C:\WINDOWS\system32\d3dx10.dll
2016-05-31 00:27:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2016-05-31 00:27:34 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2016-05-31 00:27:33 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2016-05-31 00:27:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2016-05-31 00:27:32 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2016-05-31 00:27:32 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2016-05-31 00:27:31 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2016-05-31 00:27:30 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2016-05-31 00:27:30 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2016-05-31 00:27:29 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2016-05-31 00:27:29 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2016-05-31 00:27:28 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2016-05-31 00:27:28 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2016-05-31 00:27:26 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2016-05-31 00:27:25 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2016-05-31 00:27:18 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2016-05-31 00:27:18 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2016-05-31 00:27:17 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2016-05-31 00:27:17 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2016-05-31 00:27:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2016-05-31 00:27:16 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2016-05-31 00:27:15 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2016-05-31 00:27:15 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2016-05-31 00:27:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2016-05-31 00:27:14 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2016-05-31 00:27:13 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2016-05-31 00:27:13 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2016-05-31 00:27:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2016-05-31 00:27:12 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2016-05-31 00:27:12 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2016-05-31 00:27:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2016-05-31 00:27:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2016-05-31 00:27:11 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2016-05-31 00:26:06 ----D---- C:\ProgramData\Package Cache
2016-05-31 00:25:44 ----A---- C:\WINDOWS\SYSWOW64\RtCamX.dll
2016-05-31 00:25:44 ----A---- C:\WINDOWS\system32\RtCamX64.dll
2016-05-31 00:25:44 ----A---- C:\WINDOWS\system32\drivers\rtsuvc.sys
2016-05-31 00:25:44 ----A---- C:\WINDOWS\RtsCM64.exe
2016-05-31 00:25:44 ----A---- C:\WINDOWS\RtCamU64.exe
2016-05-30 23:43:43 ----D---- C:\WINDOWS\Minidump
2016-05-28 23:33:14 ----D---- C:\Program Files (x86)\Adobe
2016-05-28 23:32:49 ----D---- C:\ProgramData\Adobe
2016-05-28 23:16:52 ----HD---- C:\ProgramData\CanonIJScan
2016-05-26 13:09:21 ----HD---- C:\ProgramData\CanonIJEPPEX2
2016-05-26 13:09:21 ----HD---- C:\ProgramData\CanonEPP
2016-05-26 13:09:20 ----D---- C:\Users\europe\AppData\Roaming\Canon
2016-05-26 13:05:05 ----A---- C:\WINDOWS\system32\CNMXLMAT.DLL
2016-05-26 13:04:05 ----D---- C:\ProgramData\Canon IJ Network Tool
2016-05-26 13:03:51 ----A---- C:\WINDOWS\SYSWOW64\CNC_ATU.dll
2016-05-26 13:03:51 ----A---- C:\WINDOWS\SYSWOW64\CNC_ATL.dll
2016-05-26 13:03:50 ----A---- C:\WINDOWS\SYSWOW64\CNHMCA.dll
2016-05-26 13:01:42 ----D---- C:\Program Files\Common Files\CANON
2016-05-26 13:01:34 ----D---- C:\ProgramData\CanonIJWSpt
2016-05-26 12:58:42 ----D---- C:\Program Files\Canon
2016-05-26 12:57:28 ----HD---- C:\ProgramData\CanonBJ
2016-05-26 12:57:14 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2016-05-26 12:56:48 ----A---- C:\WINDOWS\system32\CNMLMAT.DLL
2016-05-26 12:56:34 ----A---- C:\WINDOWS\system32\CNMIUAT.DLL
2016-05-26 12:55:37 ----HD---- C:\Program Files\CanonBJ
2016-05-26 12:55:19 ----D---- C:\WINDOWS\system32\STRING
2016-05-26 12:55:19 ----A---- C:\WINDOWS\system32\CNMN6UI.DLL
2016-05-26 12:55:18 ----A---- C:\WINDOWS\SYSWOW64\CNMNPPM.DLL
2016-05-26 12:55:18 ----A---- C:\WINDOWS\system32\CNMN6PPM.DLL
2016-05-26 12:35:45 ----D---- C:\Program Files (x86)\Canon
2016-05-26 11:54:04 ----D---- C:\Program Files (x86)\Microsoft Works
2016-05-26 11:50:24 ----D---- C:\Program Files\Microsoft Office
2016-05-26 11:49:44 ----D---- C:\ProgramData\Microsoft Help
2016-05-26 11:40:24 ----D---- C:\Users\europe\AppData\Roaming\MyPhoneExplorer
2016-05-26 11:40:11 ----D---- C:\Program Files (x86)\MyPhoneExplorer
2016-05-26 01:31:05 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2016-05-26 01:31:05 ----A---- C:\WINDOWS\system32\drivers\Rt630x64.sys
2016-05-26 01:30:55 ----A---- C:\WINDOWS\SYSWOW64\RsCRIcon.dll
2016-05-26 01:30:55 ----A---- C:\WINDOWS\system32\RtCRX64.dll
2016-05-26 01:30:55 ----A---- C:\WINDOWS\system32\drivers\RtsP2Stor.sys
2016-05-26 01:30:55 ----A---- C:\WINDOWS\RtCRU64.exe
2016-05-26 01:30:11 ----A---- C:\WINDOWS\system32\drivers\athrx.sys
2016-05-26 01:29:59 ----A---- C:\WINDOWS\system32\drivers\btfilter.sys
2016-05-26 01:29:28 ----A---- C:\WINDOWS\system32\drivers\TeeDriverW8x64.sys
2016-05-26 01:08:53 ----D---- C:\WINDOWS\IObit
2016-05-26 01:08:22 ----A---- C:\WINDOWS\SYSWOW64\drivers\HWiNFO64A.SYS
2016-05-26 01:00:17 ----A---- C:\WINDOWS\system32\RegistryDefragBootTime.exe
2016-05-26 00:28:54 ----D---- C:\Program Files\CCleaner
2016-05-25 23:48:32 ----D---- C:\Program Files (x86)\Google
2016-05-25 21:42:24 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-05-25 21:38:37 ----D---- C:\Program Files\Common Files\AV
2016-05-25 20:47:19 ----SD---- C:\WINDOWS\system32\CompatTel
2016-05-25 20:47:19 ----D---- C:\WINDOWS\Migration
2016-05-25 20:47:18 ----D---- C:\WINDOWS\system32\appraiser
2016-05-25 20:44:36 ----D---- C:\WINDOWS\system32\AutoUpdateLicense
2016-05-25 18:13:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-05-25 18:13:26 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-05-25 18:12:04 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2016-05-25 17:56:48 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2016-05-25 17:56:42 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2016-05-25 17:54:06 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-05-25 17:53:32 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\invagent.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\devinv.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\aepic.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-05-25 17:53:29 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2016-05-25 17:53:29 ----A---- C:\WINDOWS\system32\apphelp.dll
2016-05-25 17:53:29 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2016-05-25 17:53:28 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2016-05-25 17:53:28 ----A---- C:\WINDOWS\system32\sdbinst.exe
2016-05-25 17:53:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-05-25 17:53:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-05-25 17:53:13 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-05-25 17:53:13 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-05-25 17:52:19 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2016-05-25 17:51:14 ----A---- C:\WINDOWS\system32\msctf.dll
2016-05-25 17:51:13 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-05-25 17:48:50 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2016-05-25 17:48:50 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2016-05-25 17:48:49 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\sysreset.exe
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\resetengmig.dll
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\ReAgent.dll
2016-05-25 17:47:24 ----A---- C:\WINDOWS\SYSWOW64\cryptdlg.dll
2016-05-25 17:47:24 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2016-05-25 17:47:03 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-05-25 17:47:02 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-05-25 17:47:02 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-05-25 17:47:02 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-05-25 17:46:57 ----A---- C:\WINDOWS\system32\msdrm.dll
2016-05-25 17:46:56 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcalua.exe
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcaevts.dll
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcadm.dll
2016-05-25 17:46:54 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2016-05-25 17:46:54 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2016-05-25 17:46:54 ----A---- C:\WINDOWS\system32\wpdshext.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\VmHostAI.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\tssdisai.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\RDWebAI.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\poqexec.exe
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\appserverai.dll
2016-05-25 17:46:28 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-05-25 17:46:28 ----A---- C:\WINDOWS\system32\esent.dll
2016-05-25 17:45:40 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-05-25 17:45:40 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-05-25 17:45:40 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\system32\msieftp.dll
2016-05-25 17:10:36 ----D---- C:\Users\europe\AppData\Roaming\CyberLink
2016-05-25 15:21:06 ----A---- C:\WINDOWS\system32\drivers\CLVirtualDrive.sys
2016-05-25 10:41:21 ----A---- C:\WINDOWS\system32\Display.dll
2016-05-25 10:41:20 ----A---- C:\WINDOWS\SYSWOW64\KBDKURD.DLL
2016-05-25 10:41:20 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2016-05-25 10:41:20 ----A---- C:\WINDOWS\system32\KBDKURD.DLL
2016-05-25 10:41:16 ----A---- C:\WINDOWS\system32\dskquota.dll
2016-05-25 10:41:15 ----A---- C:\WINDOWS\SYSWOW64\dskquota.dll
2016-05-25 10:40:57 ----A---- C:\WINDOWS\system32\hal.dll
2016-05-25 10:39:29 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-05-25 10:39:24 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2016-05-25 10:39:22 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2016-05-25 10:39:18 ----A---- C:\WINDOWS\system32\Windows.Storage.Compression.dll
2016-05-25 10:39:18 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-05-25 10:39:17 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-05-25 10:39:17 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-05-25 10:39:16 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-05-25 10:39:16 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2016-05-25 10:39:16 ----A---- C:\WINDOWS\system32\drivers\battc.sys
2016-05-25 10:39:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Compression.dll
2016-05-25 10:39:15 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2016-05-25 10:39:15 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-05-25 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2016-05-25 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2016-05-25 10:39:14 ----A---- C:\WINDOWS\system32\input.dll
2016-05-25 10:39:14 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2016-05-25 10:39:13 ----A---- C:\WINDOWS\system32\microsoft-windows-pdc.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\system32\mswsock.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2016-05-25 10:39:11 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2016-05-25 10:39:11 ----A---- C:\WINDOWS\system32\AppxSip.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2016-05-25 10:39:07 ----A---- C:\WINDOWS\SYSWOW64\kbdhebl3.dll
2016-05-25 10:39:07 ----A---- C:\WINDOWS\system32\kbdhebl3.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\system32\shdocvw.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\system32\wvc.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\system32\wdc.dll
2016-05-25 10:37:18 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-05-25 10:37:15 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2016-05-25 10:37:14 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2016-05-25 10:37:14 ----A---- C:\WINDOWS\system32\WSDApi.dll
2016-05-25 10:37:14 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-05-25 10:37:14 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2016-05-25 10:37:13 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2016-05-25 10:37:13 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-05-25 10:36:07 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2016-05-25 10:36:07 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-05-25 10:36:06 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-05-25 10:36:04 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-05-25 10:36:04 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-05-25 10:35:59 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-05-25 10:35:57 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-05-25 10:35:57 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2016-05-25 10:35:53 ----A---- C:\WINDOWS\SYSWOW64\vds_ps.dll
2016-05-25 10:35:53 ----A---- C:\WINDOWS\system32\vdsldr.exe
2016-05-25 10:35:53 ----A---- C:\WINDOWS\system32\vds_ps.dll
2016-05-25 10:35:38 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-05-25 10:35:36 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-05-25 10:35:35 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-05-25 10:35:35 ----A---- C:\WINDOWS\explorer.exe
2016-05-25 10:35:33 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-05-25 10:35:25 ----A---- C:\WINDOWS\system32\vds.exe
2016-05-25 10:35:25 ----A---- C:\WINDOWS\system32\mscms.dll
2016-05-25 10:35:25 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\vdsutil.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\samlib.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2016-05-25 10:35:23 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-05-25 10:35:22 ----A---- C:\WINDOWS\system32\drivers\BthAvrcpTg.sys
2016-05-25 10:35:19 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-05-25 10:34:27 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2016-05-25 10:34:10 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2016-05-25 10:34:08 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-05-25 10:34:01 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-05-25 10:33:55 ----A---- C:\WINDOWS\HelpPane.exe
2016-05-25 10:33:46 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-05-25 10:33:42 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-05-25 10:33:41 ----A---- C:\WINDOWS\system32\dafWCN.dll
2016-05-25 10:33:40 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-05-25 10:33:38 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2016-05-25 10:33:38 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-05-25 10:33:37 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2016-05-25 10:33:37 ----A---- C:\WINDOWS\system32\rdpclip.exe
2016-05-25 10:33:37 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-25 10:33:36 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\system32\WcnApi.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\WcnEapPeerProxy.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\WcnEapAuthProxy.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\fdWCN.dll
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2016-05-25 10:33:31 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2016-05-25 10:33:31 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2016-05-25 10:33:31 ----A---- C:\WINDOWS\system32\drivers\fxppm.sys
2016-05-25 10:33:30 ----A---- C:\WINDOWS\system32\iscsilog.dll
2016-05-25 10:10:06 ----A---- C:\WINDOWS\system32\drivers\evbda.sys
2016-05-25 10:09:51 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-05-25 10:09:46 ----A---- C:\WINDOWS\system32\WinSAT.exe
2016-05-25 10:09:44 ----A---- C:\WINDOWS\system32\drivers\bxvbda.sys
2016-05-25 10:09:38 ----A---- C:\WINDOWS\system32\RacEngn.dll
2016-05-25 10:09:38 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-05-25 10:09:37 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-05-25 10:09:36 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-05-25 10:09:36 ----A---- C:\WINDOWS\system32\provcore.dll
2016-05-25 10:09:36 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2016-05-25 10:09:31 ----A---- C:\WINDOWS\system32\WinSATAPI.dll
2016-05-25 10:09:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-05-25 10:09:29 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2016-05-25 10:09:28 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-05-25 10:09:28 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2016-05-25 10:09:27 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-05-25 10:09:27 ----A---- C:\WINDOWS\system32\combase.dll
2016-05-25 10:09:26 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2016-05-25 10:09:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-05-25 10:09:25 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-05-25 10:09:25 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\taskeng.exe
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\bcdsrv.dll
2016-05-25 10:09:23 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-05-25 10:09:22 ----A---- C:\WINDOWS\system32\VAN.dll
2016-05-25 10:09:22 ----A---- C:\WINDOWS\system32\propsys.dll
2016-05-25 10:09:22 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-05-25 10:09:21 ----A---- C:\WINDOWS\SYSWOW64\WinSATAPI.dll
2016-05-25 10:09:20 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-05-25 10:09:19 ----A---- C:\WINDOWS\system32\mmcss.dll
2016-05-25 10:09:18 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-05-25 10:09:18 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2016-05-25 10:09:17 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2016-05-25 10:09:16 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2016-05-25 10:09:16 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\SYSWOW64\provcore.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\system32\ProximityService.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\avrt.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\system32\avrt.dll
2016-05-25 10:09:13 ----A---- C:\WINDOWS\SYSWOW64\svchost.exe
2016-05-25 10:09:13 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-05-25 10:09:13 ----A---- C:\WINDOWS\SYSWOW64\batmeter.dll
2016-05-25 10:09:13 ----A---- C:\WINDOWS\system32\batmeter.dll
2016-05-25 10:09:12 ----A---- C:\WINDOWS\system32\perfdisk.dll
2016-05-25 10:09:11 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-05-25 10:09:11 ----A---- C:\WINDOWS\SYSWOW64\perfdisk.dll
2016-05-25 10:09:11 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-25 10:09:10 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2016-05-25 10:09:10 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2016-05-25 10:09:10 ----A---- C:\WINDOWS\system32\svchost.exe
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\system32\perfnet.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\lpksetup.exe
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\dwm.exe
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2016-05-25 10:09:07 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-05-25 10:09:07 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2016-05-25 10:09:07 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-05-25 10:09:07 ----A---- C:\WINDOWS\system32\drvinst.exe
2016-05-25 10:09:07 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\SYSWOW64\perfnet.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\system32\webio.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\system32\perfos.dll
2016-05-25 10:09:05 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2016-05-25 10:09:02 ----A---- C:\WINDOWS\system32\umpo.dll
2016-05-25 10:09:02 ----A---- C:\WINDOWS\system32\lpremove.exe
2016-05-25 10:09:02 ----A---- C:\WINDOWS\system32\drivers\ws2ifsl.sys
2016-05-25 10:09:00 ----A---- C:\WINDOWS\SYSWOW64\perfproc.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\SYSWOW64\perfos.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\SYSWOW64\perfctrs.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\system32\perfproc.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\system32\perfctrs.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\shimeng.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\MUILanguageCleanup.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2016-05-25 10:08:22 ----A---- C:\WINDOWS\SYSWOW64\newdev.exe
2016-05-25 10:08:22 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2016-05-25 10:08:22 ----A---- C:\WINDOWS\SYSWOW64\ndadmin.exe
2016-05-25 10:08:22 ----A---- C:\WINDOWS\system32\newdev.exe
2016-05-25 10:08:22 ----A---- C:\WINDOWS\system32\newdev.dll
2016-05-25 10:08:22 ----A---- C:\WINDOWS\system32\ndadmin.exe
2016-05-25 10:08:05 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2016-05-25 10:08:05 ----A---- C:\WINDOWS\system32\wusa.exe
2016-05-25 10:07:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-25 10:07:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-05-25 10:07:34 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-05-25 10:07:34 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2016-05-25 10:07:15 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-05-25 10:07:15 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\SYSWOW64\winmmbase.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\SYSWOW64\winmm.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\WinSCard.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\winmmbase.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\winmm.dll
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\HdAudio.sys
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\openfiles.exe
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\Wwanadvui.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\openfiles.exe
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\LocationApi.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2016-05-25 10:06:58 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-05-25 10:06:57 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2016-05-25 10:06:57 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-05-25 10:06:57 ----A---- C:\WINDOWS\system32\resutils.dll
2016-05-25 10:06:56 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-05-25 10:06:39 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2016-05-25 10:06:39 ----A---- C:\WINDOWS\system32\Robocopy.exe
2016-05-25 10:06:33 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2016-05-25 10:06:33 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2016-05-25 10:06:33 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2016-05-25 10:06:33 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2016-05-25 10:06:32 ----A---- C:\WINDOWS\system32\icfupgd.dll
2016-05-25 10:06:32 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys
2016-05-25 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2016-05-25 10:06:31 ----A---- C:\WINDOWS\system32\wfapigp.dll
2016-05-25 10:06:22 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-05-25 10:06:21 ----A---- C:\WINDOWS\system32\srvsvc.dll
2016-05-25 10:06:21 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-05-25 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\sscore.dll
2016-05-25 10:06:19 ----A---- C:\WINDOWS\system32\sscore.dll
2016-05-25 10:06:19 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-05-25 10:06:19 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-05-25 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\NotificationUI.exe
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\AutoUpdate.exe
2016-05-25 10:06:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-05-25 10:06:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-05-25 10:06:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-05-25 10:06:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-05-25 10:06:05 ----A---- C:\WINDOWS\system32\kernel32.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\system32\gpedit.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2016-05-25 10:06:04 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-05-25 09:50:33 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2016-05-25 09:50:32 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-05-25 09:50:26 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-05-25 09:50:23 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2016-05-25 09:50:20 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-05-25 09:50:19 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-05-25 09:50:19 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-05-25 09:50:19 ----A---- C:\WINDOWS\system32\dwmapi.dll
2016-05-25 09:50:17 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-05-25 09:50:16 ----A---- C:\WINDOWS\system32\defragsvc.dll
2016-05-25 09:50:13 ----A---- C:\WINDOWS\SYSWOW64\KBDRUM.DLL
2016-05-25 09:50:13 ----A---- C:\WINDOWS\system32\KBDRUM.DLL
2016-05-25 09:50:13 ----A---- C:\WINDOWS\system32\Defrag.exe
2016-05-25 09:50:12 ----A---- C:\WINDOWS\SYSWOW64\KBDTAT.DLL
2016-05-25 09:50:12 ----A---- C:\WINDOWS\system32\KBDTAT.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDYAK.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDRU1.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDRU.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDBASH.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDYAK.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDRU1.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDRU.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDBASH.DLL
2016-05-25 09:37:37 ----D---- C:\ProgramData\Atheros
2016-05-25 09:37:27 ----D---- C:\Users\europe\AppData\Roaming\Atheros
2016-05-25 09:26:15 ----D---- C:\Program Files (x86)\Bluetooth Suite
2016-05-25 08:02:19 ----A---- C:\WINDOWS\system32\drivers\athw8x.sys
2016-05-25 07:59:21 ----N---- C:\WINDOWS\system32\stapi64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\stlang64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\stcplx64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\stapo64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EEP64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EEL64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EED64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EEA64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\sttray64.exe
2016-05-25 07:59:20 ----D---- C:\WINDOWS\system32\SRSLabs
2016-05-25 07:58:26 ----A---- C:\WINDOWS\system32\drivers\stwrt64.sys
2016-05-25 07:58:19 ----A---- C:\WINDOWS\system32\st646425.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\SYSWOW64\SynTPCom.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\WdfCoInstaller01009.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\SynTPCo18.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2016-05-25 07:54:32 ----A---- C:\WINDOWS\SYSWOW64\SynCom.dll
2016-05-25 07:54:32 ----A---- C:\WINDOWS\system32\SynCOM.dll
2016-05-25 07:54:30 ----A---- C:\WINDOWS\system32\drivers\Smb_driver_Intel.sys

Re: mrzne ntbk

Napsal: 02 čer 2016 15:09
od airplane
2016-05-24 23:18:01 ----A---- C:\WINDOWS\SYSWOW64\eventcls.dll
2016-05-24 23:18:01 ----A---- C:\WINDOWS\system32\eventcls.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\system32\VSSVC.exe
2016-05-24 23:18:00 ----A---- C:\WINDOWS\system32\vsstrace.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\system32\vssapi.dll
2016-05-24 21:59:54 ----D---- C:\Users\europe\AppData\Roaming\HewlettPackard
2016-05-24 21:40:47 ----D---- C:\Users\europe\AppData\Roaming\Hewlett-Packard
2016-05-24 21:30:18 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-24 21:30:05 ----A---- C:\WINDOWS\system32\netcfg-656875.txt
2016-05-24 21:30:01 ----A---- C:\WINDOWS\system32\netcfg-652921.txt
2016-05-24 21:23:33 ----A---- C:\WINDOWS\system32\netcfg-265484.txt
2016-05-24 20:44:31 ----D---- C:\WINDOWS\system32\MRT
2016-05-24 20:44:21 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-24 20:27:20 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2016-05-24 20:27:20 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-05-24 20:17:20 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-05-24 20:17:18 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2016-05-24 20:17:18 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2016-05-24 20:16:45 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2016-05-24 20:16:24 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2016-05-24 20:16:24 ----A---- C:\WINDOWS\system32\drivers\usbcir.sys
2016-05-24 20:14:51 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-05-24 20:14:50 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-05-24 20:14:45 ----A---- C:\WINDOWS\system32\localspl.dll
2016-05-24 20:14:44 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-05-24 20:14:44 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2016-05-24 20:14:41 ----A---- C:\WINDOWS\system32\wuaext.dll
2016-05-24 20:12:56 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2016-05-24 20:12:56 ----A---- C:\WINDOWS\system32\WebClnt.dll
2016-05-24 20:12:56 ----A---- C:\WINDOWS\system32\davclnt.dll
2016-05-24 20:12:55 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2016-05-24 20:12:40 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\system32\wucltux.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wuwebv.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wudriver.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wuapp.exe
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-05-24 20:11:38 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2016-05-24 20:11:38 ----A---- C:\WINDOWS\system32\scesrv.dll
2016-05-24 20:10:59 ----A---- C:\WINDOWS\system32\tquery.dll
2016-05-24 20:10:58 ----A---- C:\WINDOWS\system32\wmp.dll
2016-05-24 20:10:56 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-05-24 20:10:55 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-05-24 20:10:52 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-05-24 20:10:46 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-05-24 20:10:43 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2016-05-24 20:10:41 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2016-05-24 20:10:40 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-05-24 20:10:40 ----A---- C:\WINDOWS\system32\kd_02_10ec.dll
2016-05-24 20:10:39 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2016-05-24 20:10:39 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-05-24 20:10:39 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2016-05-24 20:10:37 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-05-24 20:10:37 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-05-24 20:10:35 ----A---- C:\WINDOWS\system32\dwmredir.dll
2016-05-24 20:10:35 ----A---- C:\WINDOWS\system32\conhost.exe
2016-05-24 20:10:33 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-05-24 20:10:33 ----A---- C:\WINDOWS\system32\mssph.dll
2016-05-24 20:10:32 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2016-05-24 20:10:30 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-05-24 20:10:29 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-05-24 20:10:28 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-05-24 20:10:27 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-24 20:10:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-05-24 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\rascfg.dll
2016-05-24 20:10:21 ----A---- C:\WINDOWS\system32\ci.dll
2016-05-24 20:10:20 ----A---- C:\WINDOWS\system32\rascfg.dll
2016-05-24 20:10:20 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2016-05-24 20:10:19 ----A---- C:\WINDOWS\system32\XpsRasterService.dll
2016-05-24 20:10:19 ----A---- C:\WINDOWS\system32\fhengine.dll
2016-05-24 20:10:18 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2016-05-24 20:10:18 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-05-24 20:10:17 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-05-24 20:10:17 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-05-24 20:10:15 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2016-05-24 20:10:13 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2016-05-24 20:10:12 ----A---- C:\WINDOWS\SYSWOW64\XpsRasterService.dll
2016-05-24 20:10:12 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-05-24 20:10:12 ----A---- C:\WINDOWS\system32\kdvm.dll
2016-05-24 20:10:11 ----A---- C:\WINDOWS\system32\iuilp.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\system32\kdnet.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2016-05-24 20:10:09 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-05-24 20:10:09 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2016-05-24 20:10:09 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\mssvp.dll
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\GenuineCenter.dll
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\fhevents.dll
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\drivers\hidi2c.sys
2016-05-24 20:10:07 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2016-05-24 20:10:07 ----A---- C:\WINDOWS\system32\fmifs.dll
2016-05-24 20:10:07 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\SYSWOW64\fmifs.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\msshooks.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\fhsvc.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\fhcat.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\SYSWOW64\rasdiag.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\rasdiag.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\mssphtb.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhshl.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhlisten.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\mssitlb.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\msscntrs.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\fhtask.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\SYSWOW64\rasser.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\SYSWOW64\rasmxs.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\system32\rasser.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\system32\rasmxs.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\system32\fhautoplay.dll
2016-05-24 20:09:59 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2016-05-24 20:09:57 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2016-05-24 20:09:57 ----A---- C:\WINDOWS\system32\spwmp.dll
2016-05-24 20:09:56 ----A---- C:\WINDOWS\system32\dxmasf.dll
2016-05-24 20:09:55 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2016-05-24 20:09:53 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2016-05-24 20:09:52 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2016-05-24 20:09:52 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-05-24 20:09:52 ----A---- C:\WINDOWS\system32\tzres.dll
2016-05-24 20:09:51 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-05-24 20:02:59 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-05-24 20:02:50 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-05-24 20:02:44 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-05-24 20:02:43 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-05-24 20:02:41 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2016-05-24 20:01:52 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-05-24 20:01:51 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-05-24 20:01:51 ----A---- C:\WINDOWS\system32\aaclient.dll
2016-05-24 20:01:50 ----A---- C:\WINDOWS\SYSWOW64\aaclient.dll
2016-05-24 20:01:31 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-05-24 20:01:30 ----A---- C:\WINDOWS\system32\csrsrv.dll
2016-05-24 20:00:34 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-24 20:00:31 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-05-24 20:00:30 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-24 20:00:25 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-05-24 20:00:24 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2016-05-24 20:00:24 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\system32\msxml6r.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\system32\msxml3r.dll
2016-05-24 19:58:09 ----A---- C:\WINDOWS\system32\imagehlp.dll
2016-05-24 19:58:08 ----A---- C:\WINDOWS\SYSWOW64\imagehlp.dll
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\WSDScan.sys
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2016-05-24 19:57:47 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2016-05-24 19:57:46 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-05-24 19:56:47 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-05-24 19:56:29 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-05-24 19:56:27 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2016-05-24 19:56:26 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-05-24 19:56:16 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2016-05-24 19:56:14 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2016-05-24 19:56:14 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2016-05-24 19:56:14 ----A---- C:\WINDOWS\system32\rpchttp.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\system32\FXST30.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2016-05-24 19:56:12 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2016-05-24 19:56:12 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2016-05-24 19:55:40 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-24 19:55:39 ----A---- C:\WINDOWS\system32\cdd.dll
2016-05-24 19:55:26 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-24 19:55:16 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-24 19:53:34 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2016-05-24 19:53:34 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-05-24 19:46:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-24 19:46:21 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-05-24 19:46:19 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2016-05-24 19:46:19 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2016-05-24 19:46:18 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2016-05-24 19:46:17 ----A---- C:\WINDOWS\system32\netprofm.dll
2016-05-24 19:46:14 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-05-24 19:46:13 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-05-24 19:46:13 ----A---- C:\WINDOWS\system32\stobject.dll
2016-05-24 19:46:13 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\taskhost.exe
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\Magnify.exe
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-24 19:46:09 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2016-05-24 19:46:09 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-05-24 19:46:08 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-05-24 19:46:07 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2016-05-24 19:46:07 ----A---- C:\WINDOWS\system32\AuthHost.exe
2016-05-24 19:46:06 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2016-05-24 19:46:06 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-05-24 19:46:06 ----A---- C:\WINDOWS\system32\taskhostex.exe
2016-05-24 19:46:05 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2016-05-24 19:46:05 ----A---- C:\WINDOWS\system32\biwinrt.dll
2016-05-24 19:46:03 ----A---- C:\WINDOWS\system32\muifontsetup.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\muifontsetup.dll
2016-05-24 19:44:07 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-05-24 19:43:42 ----A---- C:\WINDOWS\SYSWOW64\cryptnet.dll
2016-05-24 19:43:42 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2016-05-24 19:43:42 ----A---- C:\WINDOWS\system32\cryptnet.dll
2016-05-24 19:43:42 ----A---- C:\WINDOWS\system32\certutil.exe
2016-05-24 19:43:35 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2016-05-24 19:43:35 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2016-05-24 19:43:35 ----A---- C:\WINDOWS\system32\untfs.dll
2016-05-24 19:43:35 ----A---- C:\WINDOWS\system32\autochk.exe
2016-05-24 19:43:15 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-24 19:43:14 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-24 19:43:07 ----A---- C:\WINDOWS\system32\twinui.dll
2016-05-24 19:43:06 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-05-24 19:42:57 ----A---- C:\WINDOWS\system32\authui.dll
2016-05-24 19:42:56 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-05-24 19:42:44 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-24 19:42:44 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-24 19:42:42 ----A---- C:\WINDOWS\SYSWOW64\synceng.dll
2016-05-24 19:42:42 ----A---- C:\WINDOWS\system32\synceng.dll
2016-05-24 19:42:37 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-05-24 19:42:37 ----A---- C:\WINDOWS\system32\ole32.dll
2016-05-24 19:42:27 ----A---- C:\WINDOWS\system32\ubpm.dll
2016-05-24 19:42:26 ----A---- C:\WINDOWS\SYSWOW64\ubpm.dll
2016-05-24 19:41:47 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2016-05-24 19:41:47 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-05-24 19:41:47 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-05-24 19:41:46 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\netcfgx.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-05-24 19:41:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-05-24 19:41:44 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2016-05-24 19:41:44 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-05-24 19:41:41 ----A---- C:\WINDOWS\system32\NdisImPlatform.dll
2016-05-24 19:41:41 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-05-24 19:41:41 ----A---- C:\WINDOWS\system32\discan.dll
2016-05-24 19:41:40 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2016-05-24 19:41:40 ----A---- C:\WINDOWS\system32\DevDispItemProvider.dll
2016-05-24 19:41:39 ----A---- C:\WINDOWS\system32\fsquirt.exe
2016-05-24 19:41:38 ----A---- C:\WINDOWS\SYSWOW64\DevDispItemProvider.dll
2016-05-24 19:41:38 ----A---- C:\WINDOWS\system32\WSDPrintProxy.DLL
2016-05-24 19:41:38 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2016-05-24 19:41:37 ----A---- C:\WINDOWS\system32\drivers\monitor.sys
2016-05-24 19:41:36 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-05-24 19:41:36 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-05-24 19:40:49 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-05-24 19:40:49 ----A---- C:\WINDOWS\system32\termsrv.dll
2016-05-24 19:40:49 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-05-24 19:40:48 ----A---- C:\WINDOWS\SYSWOW64\winsta.dll
2016-05-24 19:40:48 ----A---- C:\WINDOWS\system32\winsta.dll
2016-05-24 19:40:24 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2016-05-24 19:40:24 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2016-05-24 19:38:39 ----A---- C:\WINDOWS\system32\WSService.dll
2016-05-24 19:38:37 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2016-05-24 19:38:37 ----A---- C:\WINDOWS\system32\sppc.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\SYSWOW64\WSSync.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\system32\WSClient.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-05-24 19:38:33 ----A---- C:\WINDOWS\system32\setupcln.dll
2016-05-24 19:38:32 ----A---- C:\WINDOWS\SYSWOW64\setupcln.dll
2016-05-24 19:38:32 ----A---- C:\WINDOWS\SYSWOW64\OEMLicense.dll
2016-05-24 19:38:31 ----A---- C:\WINDOWS\system32\OEMLicense.dll
2016-05-24 19:36:17 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-05-24 19:36:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-05-24 19:36:16 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-05-24 19:36:16 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-05-24 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncInfo.dll
2016-05-24 19:36:15 ----A---- C:\WINDOWS\system32\SettingSyncInfo.dll
2016-05-24 19:34:00 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2016-05-24 19:34:00 ----A---- C:\WINDOWS\system32\osk.exe
2016-05-24 19:33:56 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-05-24 19:33:56 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-05-24 19:31:08 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2016-05-24 19:31:08 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-05-24 19:31:08 ----A---- C:\WINDOWS\system32\clfsw32.dll
2016-05-24 19:31:07 ----A---- C:\WINDOWS\system32\services.exe
2016-05-24 19:31:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-05-24 19:30:06 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-24 19:29:46 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-24 19:29:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-24 19:29:25 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-24 19:29:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-24 19:29:15 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-24 19:29:12 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-24 19:29:11 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-24 19:29:06 ----A---- C:\WINDOWS\system32\wininet.dll
2016-05-24 19:29:05 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-05-24 19:29:02 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-24 19:29:01 ----A---- C:\WINDOWS\system32\uxtheme.dll
2016-05-24 19:29:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-24 19:29:00 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-24 19:28:57 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-24 19:28:57 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-24 19:28:57 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-24 19:28:56 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2016-05-24 19:28:51 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-05-24 19:28:50 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2016-05-24 19:28:50 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-05-24 19:28:49 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2016-05-24 19:28:49 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2016-05-24 19:28:49 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-05-24 19:28:45 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-05-24 19:28:44 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\iesysprep.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\system32\UXInit.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\system32\msrating.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-05-24 19:28:40 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-05-24 19:28:37 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2016-05-24 19:28:37 ----A---- C:\WINDOWS\system32\INETRES.dll
2016-05-24 17:58:12 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2016-05-24 17:53:57 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2016-05-24 17:44:30 ----A---- C:\WINDOWS\system32\mmc.exe
2016-05-24 17:44:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-05-24 17:44:09 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2016-05-24 17:43:50 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-05-24 17:43:41 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2016-05-24 17:43:41 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2016-05-24 17:43:40 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-05-24 17:43:40 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-05-24 17:43:39 ----A---- C:\WINDOWS\system32\WSDMon.dll
2016-05-24 17:43:39 ----A---- C:\WINDOWS\system32\inetpp.dll
2016-05-24 17:43:35 ----A---- C:\WINDOWS\SYSWOW64\wiaacmgr.exe
2016-05-24 17:43:35 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2016-05-24 17:43:34 ----A---- C:\WINDOWS\system32\ncbservice.dll
2016-05-24 17:43:34 ----A---- C:\WINDOWS\system32\httpprxm.dll
2016-05-24 17:43:34 ----A---- C:\WINDOWS\system32\adhsvc.dll
2016-05-24 17:43:33 ----A---- C:\WINDOWS\system32\keepaliveprovider.dll
2016-05-24 17:43:33 ----A---- C:\WINDOWS\system32\httpprxp.dll
2016-05-24 17:43:33 ----A---- C:\WINDOWS\system32\adhapi.dll
2016-05-24 17:41:24 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2016-05-24 17:40:40 ----A---- C:\WINDOWS\system32\appidpolicyconverter.exe
2016-05-24 17:40:39 ----A---- C:\WINDOWS\system32\appidapi.dll
2016-05-24 17:40:37 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2016-05-24 17:40:36 ----A---- C:\WINDOWS\system32\appidsvc.dll
2016-05-24 17:40:31 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2016-05-24 17:39:35 ----A---- C:\WINDOWS\system32\rastls.dll
2016-05-24 17:39:34 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-05-24 17:38:21 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-05-24 17:38:21 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-05-24 17:37:52 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2016-05-24 17:37:52 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2016-05-24 17:37:52 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2016-05-24 17:37:51 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2016-05-24 17:37:51 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2016-05-24 17:37:50 ----A---- C:\WINDOWS\system32\drivers\usbohci.sys
2016-05-24 17:37:50 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2016-05-24 17:37:21 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2016-05-24 17:37:20 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2016-05-24 17:20:18 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-05-24 17:20:08 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-05-24 17:18:47 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-05-24 17:18:41 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-05-24 17:18:41 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-05-24 17:18:40 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-05-24 17:18:37 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2016-05-24 17:18:34 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-05-24 17:18:32 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-05-24 17:01:25 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-05-24 17:01:24 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2016-05-24 17:01:24 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-05-24 17:01:24 ----A---- C:\WINDOWS\system32\nlaapi.dll
2016-05-24 17:01:03 ----A---- C:\WINDOWS\system32\wer.dll
2016-05-24 17:01:01 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2016-05-24 17:01:01 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-05-24 17:01:01 ----A---- C:\WINDOWS\system32\WerFault.exe
2016-05-24 17:01:00 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2016-05-24 17:01:00 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2016-05-24 17:01:00 ----A---- C:\WINDOWS\system32\Faultrep.dll
2016-05-24 17:00:59 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2016-05-24 17:00:32 ----A---- C:\WINDOWS\SYSWOW64\duser.dll
2016-05-24 17:00:32 ----A---- C:\WINDOWS\system32\duser.dll
2016-05-24 17:00:30 ----A---- C:\WINDOWS\system32\wlroamextension.dll
2016-05-24 17:00:29 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\SYSWOW64\wlroamextension.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\taskkill.exe
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\hotspotauth.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2016-05-24 17:00:27 ----A---- C:\WINDOWS\SYSWOW64\taskkill.exe
2016-05-24 17:00:27 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2016-05-24 17:00:27 ----A---- C:\WINDOWS\system32\tasklist.exe
2016-05-24 17:00:26 ----A---- C:\WINDOWS\SYSWOW64\tasklist.exe
2016-05-24 17:00:26 ----A---- C:\WINDOWS\system32\wersvc.dll
2016-05-24 17:00:24 ----A---- C:\WINDOWS\system32\drivers\BtaMPM.sys
2016-05-24 17:00:23 ----A---- C:\WINDOWS\system32\drivers\BthhfHid.sys
2016-05-24 16:59:48 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-05-24 16:59:48 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-05-24 16:59:48 ----A---- C:\WINDOWS\system32\msi.dll
2016-05-24 16:59:48 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-05-24 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2016-05-24 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2016-05-24 16:59:46 ----A---- C:\WINDOWS\system32\msihnd.dll
2016-05-24 16:59:46 ----A---- C:\WINDOWS\system32\msiexec.exe
2016-05-24 16:59:46 ----A---- C:\WINDOWS\system32\consent.exe
2016-05-24 16:58:59 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2016-05-24 16:58:57 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-05-24 16:58:45 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-24 16:58:44 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-24 16:58:44 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-05-24 16:58:43 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-05-24 16:58:43 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-05-24 16:58:43 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-05-24 16:57:12 ----A---- C:\WINDOWS\system32\appinfo.dll
2016-05-24 16:54:31 ----A---- C:\WINDOWS\system32\objsel.dll
2016-05-24 16:54:31 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2016-05-24 16:54:30 ----A---- C:\WINDOWS\SYSWOW64\objsel.dll
2016-05-24 16:54:29 ----A---- C:\WINDOWS\SYSWOW64\dimsroam.dll
2016-05-24 16:54:29 ----A---- C:\WINDOWS\system32\dimsroam.dll
2016-05-24 16:53:56 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-05-24 16:53:56 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-05-24 16:53:55 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-05-24 16:53:55 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-05-24 16:52:30 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2016-05-24 16:52:29 ----A---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2016-05-24 16:33:56 ----A---- C:\WINDOWS\system32\win32k.sys
2016-05-24 16:33:54 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-05-24 16:33:54 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-05-24 16:33:53 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-05-24 16:33:53 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-05-24 16:33:53 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-05-24 16:33:52 ----A---- C:\WINDOWS\system32\user32.dll
2016-05-24 16:33:51 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-05-24 16:15:58 ----A---- C:\WINDOWS\system32\packager.dll
2016-05-24 16:15:54 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2016-05-24 15:10:42 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2016-05-24 15:10:41 ----A---- C:\WINDOWS\system32\pku2u.dll
2016-05-24 15:03:17 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-05-24 15:03:17 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-05-24 15:02:13 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-05-24 15:02:11 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2016-05-24 15:02:10 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-05-24 15:02:08 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-05-24 15:02:05 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2016-05-24 15:02:05 ----A---- C:\WINDOWS\system32\lpk.dll
2016-05-24 14:54:32 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-05-24 14:54:29 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-05-24 14:49:56 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-05-24 14:49:56 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-05-24 14:49:30 ----A---- C:\WINDOWS\system32\InkEd.dll
2016-05-24 14:49:10 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2016-05-24 14:49:10 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnet.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2016-05-24 14:47:02 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2016-05-24 14:47:02 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2016-05-24 14:47:02 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-05-24 14:47:01 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2016-05-24 14:47:01 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-05-24 14:47:01 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-05-24 14:47:00 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-05-24 14:47:00 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-05-24 14:47:00 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-05-24 14:46:59 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\mf.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\system32\evr.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-05-24 14:46:57 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2016-05-24 14:46:56 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2016-05-24 14:46:56 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2016-05-24 14:46:56 ----A---- C:\WINDOWS\system32\winmde.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\quartz.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-05-24 14:46:54 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2016-05-24 14:46:54 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-05-24 14:46:54 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-05-24 14:46:54 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2016-05-24 14:46:54 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2016-05-24 14:46:54 ----A---- C:\WINDOWS\system32\mfps.dll
2016-05-24 14:46:53 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-05-24 14:46:52 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-05-24 14:46:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-05-24 14:46:49 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-05-24 14:46:48 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-05-24 14:46:48 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-05-24 14:46:47 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-05-24 14:46:45 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-05-24 14:46:44 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2016-05-24 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2016-05-24 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-05-24 14:46:42 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2016-05-24 14:46:42 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\qasf.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\qasf.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\devenum.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-05-24 14:46:40 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2016-05-24 14:46:40 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2016-05-24 14:46:39 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2016-05-24 14:46:26 ----A---- C:\WINDOWS\system32\comctl32.dll
2016-05-24 14:46:25 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2016-05-24 14:40:21 ----A---- C:\WINDOWS\system32\shell32.dll
2016-05-24 14:40:20 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-05-24 14:35:10 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-05-24 14:35:10 ----A---- C:\WINDOWS\system32\qedit.dll
2016-05-24 14:32:50 ----A---- C:\WINDOWS\system32\sysmain.dll
2016-05-24 14:32:47 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2016-05-24 14:31:24 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-05-24 14:31:04 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-05-24 14:31:04 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-05-24 14:25:02 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-05-24 14:25:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-05-24 14:20:44 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2016-05-24 14:20:44 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2016-05-24 14:20:44 ----A---- C:\WINDOWS\system32\scrrun.dll
2016-05-24 14:20:44 ----A---- C:\WINDOWS\system32\scrobj.dll
2016-05-24 14:20:44 ----A---- C:\WINDOWS\system32\cscript.exe
2016-05-24 14:20:43 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2016-05-24 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2016-05-24 14:20:40 ----A---- C:\WINDOWS\system32\notepad.exe
2016-05-24 14:20:40 ----A---- C:\WINDOWS\notepad.exe
2016-05-24 13:16:40 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-24 13:16:37 ----A---- C:\WINDOWS\system32\winload.exe
2016-05-24 13:16:37 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-05-24 13:16:37 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-05-24 13:16:36 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-05-24 13:16:36 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-05-24 13:16:33 ----A---- C:\WINDOWS\system32\winresume.exe
2016-05-24 13:16:33 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-05-24 13:16:31 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\adtschema.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\wdigest.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\TSpkg.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\sspisrv.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\lsm.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\lsass.exe
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\credssp.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\system32\workerdd.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\system32\msaudite.dll
2016-05-24 13:13:15 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-05-24 12:27:30 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2016-05-24 12:27:30 ----A---- C:\WINDOWS\system32\wups2.dll
2016-05-24 12:27:30 ----A---- C:\WINDOWS\system32\wups.dll
2016-05-24 12:27:29 ----A---- C:\WINDOWS\system32\wushareduxresources.dll
2016-05-24 12:26:03 ----D---- C:\Users\europe\AppData\Roaming\ProductData
2016-05-24 12:26:03 ----D---- C:\Program Files (x86)\IObit
2016-05-24 12:26:02 ----D---- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-05-24 12:25:59 ----D---- C:\ProgramData\ProductData
2016-05-24 12:25:58 ----D---- C:\Users\europe\AppData\Roaming\IObit
2016-05-24 12:25:58 ----D---- C:\ProgramData\IObit
2016-05-24 12:24:59 ----D---- C:\Users\europe\AppData\Roaming\Macromedia
2016-05-24 12:18:35 ----D---- C:\Users\europe\AppData\Roaming\hpqlog
2016-05-24 12:15:13 ----A---- C:\WINDOWS\system32\netcfg-62515.txt
2016-05-24 12:13:41 ----A---- C:\WINDOWS\system32\netcfg-2009562.txt
2016-05-24 12:13:33 ----A---- C:\WINDOWS\system32\netcfg-2001531.txt
2016-05-24 12:13:33 ----A---- C:\WINDOWS\system32\netcfg-2001312.txt
2016-05-24 12:02:17 ----D---- C:\Users\europe\AppData\Roaming\ATI
2016-05-24 12:00:23 ----D---- C:\Users\europe\AppData\Roaming\Adobe
2016-05-24 11:58:40 ----D---- C:\Users\europe\AppData\Roaming\Synaptics
2016-05-24 11:57:32 ----HD---- C:\Program Files (x86)\Uninstall Information
2016-05-24 11:57:22 ----D---- C:\$SysReset
2016-05-24 11:47:54 ----A---- C:\WINDOWS\system32\netcfg-462046.txt
2016-05-24 11:47:53 ----A---- C:\WINDOWS\system32\netcfg-461421.txt
2016-05-24 11:44:22 ----A---- C:\WINDOWS\system32\netcfg-250609.txt
2016-05-24 11:42:08 ----SD---- C:\Users\europe\AppData\Roaming\Microsoft
2016-05-24 11:39:43 ----D---- C:\WINDOWS\SoftwareDistribution
2016-05-24 11:37:18 ----A---- C:\WINDOWS\system32\netcfg-121765.txt
2016-05-24 11:36:57 ----A---- C:\WINDOWS\system32\netcfg-101625.txt
2016-05-17 19:34:17 ----D---- C:\CCAV
2016-05-15 01:03:05 ----D---- C:\AVG_Remover

======List of files/folders modified in the last 1 month======

2016-06-02 15:47:53 ----D---- C:\WINDOWS\Prefetch
2016-06-02 15:47:43 ----RD---- C:\Program Files
2016-06-02 15:43:19 ----RD---- C:\WINDOWS\System32
2016-06-02 15:43:19 ----D---- C:\WINDOWS\Inf
2016-06-02 15:43:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-02 15:39:44 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-06-02 15:19:05 ----D---- C:\WINDOWS\system32\sru
2016-06-02 09:57:17 ----D---- C:\WINDOWS
2016-06-02 09:44:53 ----D---- C:\WINDOWS\system32\Drivers
2016-06-02 09:43:21 ----D---- C:\WINDOWS\system32\Tasks
2016-06-02 09:43:20 ----D---- C:\WINDOWS\Tasks
2016-06-02 09:39:22 ----SHD---- C:\System Volume Information
2016-06-02 09:37:55 ----A---- C:\WINDOWS\system.ini
2016-06-02 09:37:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-06-02 09:31:06 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-06-02 09:31:06 ----D---- C:\WINDOWS\SysWOW64
2016-06-02 09:31:06 ----D---- C:\WINDOWS\apppatch
2016-06-02 09:31:05 ----D---- C:\Program Files (x86)\Common Files
2016-06-02 09:18:31 ----D---- C:\AdwCleaner
2016-06-02 05:59:51 ----D---- C:\WINDOWS\system32\LogFiles
2016-06-01 22:14:18 ----D---- C:\WINDOWS\system32\NDF
2016-06-01 21:23:47 ----D---- C:\WINDOWS\system32\catroot2
2016-06-01 15:14:46 ----SHD---- C:\WINDOWS\Installer
2016-06-01 15:14:32 ----D---- C:\Config.Msi
2016-06-01 15:14:10 ----D---- C:\WINDOWS\system32\catroot
2016-06-01 15:14:09 ----D---- C:\WINDOWS\system32\DriverStore
2016-06-01 14:57:16 ----D---- C:\ProgramData
2016-05-31 22:40:18 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-05-31 22:40:18 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-31 22:40:17 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2016-05-31 22:18:44 ----D---- C:\WINDOWS\system32\config
2016-05-31 18:30:10 ----RD---- C:\Program Files (x86)
2016-05-31 10:23:05 ----D---- C:\WINDOWS\debug
2016-05-31 10:19:01 ----D---- C:\WINDOWS\WinSxS
2016-05-31 09:58:55 ----D---- C:\WINDOWS\Microsoft.NET
2016-05-31 00:27:25 ----RSD---- C:\WINDOWS\assembly
2016-05-31 00:26:52 ----D---- C:\WINDOWS\Logs
2016-05-31 00:26:34 ----D---- C:\WINDOWS\SYSWOW64\Adobe
2016-05-31 00:25:53 ----D---- C:\WINDOWS\twain_32
2016-05-29 22:49:17 ----D---- C:\WINDOWS\CbsTemp
2016-05-29 22:28:36 ----D---- C:\WINDOWS\system32\drivers\NISx64
2016-05-29 22:28:21 ----HD---- C:\WINDOWS\ELAMBKUP
2016-05-29 22:27:58 ----D---- C:\WINDOWS\system32\wdi
2016-05-29 22:26:33 ----D---- C:\$Windows.~BT
2016-05-29 22:02:01 ----D---- C:\Recovery
2016-05-29 18:32:40 ----D---- C:\WINDOWS\Registration
2016-05-28 01:50:56 ----D---- C:\ProgramData\Norton
2016-05-26 20:51:26 ----D---- C:\Program Files\Common Files\Symantec Shared
2016-05-26 20:47:38 ----D---- C:\Program Files (x86)\Norton Internet Security
2016-05-26 13:03:51 ----RSD---- C:\WINDOWS\Media
2016-05-26 13:01:42 ----D---- C:\Program Files\Common Files
2016-05-26 11:53:45 ----D---- C:\Program Files (x86)\Microsoft Office
2016-05-26 11:53:37 ----RSD---- C:\WINDOWS\Fonts
2016-05-26 11:53:35 ----SD---- C:\ProgramData\Microsoft
2016-05-26 11:53:35 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-05-26 11:52:43 ----D---- C:\Program Files\Common Files\microsoft shared
2016-05-26 11:49:59 ----D---- C:\WINDOWS\ShellNew
2016-05-26 11:35:40 ----D---- C:\WINDOWS\rescache
2016-05-26 01:40:28 ----D---- C:\WINDOWS\SYSWOW64\sda
2016-05-26 01:21:11 ----D---- C:\Program Files\Windows Sidebar
2016-05-26 01:21:11 ----D---- C:\Program Files (x86)\Windows Sidebar
2016-05-26 00:42:51 ----D---- C:\WINDOWS\AppCompat
2016-05-25 20:49:02 ----D---- C:\WINDOWS\system32\Boot
2016-05-25 20:48:48 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2016-05-25 20:48:29 ----RD---- C:\WINDOWS\ToastData
2016-05-25 20:48:14 ----D---- C:\Program Files\Windows Media Player
2016-05-25 20:48:14 ----D---- C:\Program Files (x86)\Windows Media Player
2016-05-25 20:48:13 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-05-25 20:47:55 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-05-25 20:47:54 ----D---- C:\WINDOWS\system32\sk-SK
2016-05-25 20:47:52 ----D---- C:\WINDOWS\system32\oobe
2016-05-25 20:47:52 ----D---- C:\WINDOWS\system32\en-US
2016-05-25 20:47:18 ----D---- C:\WINDOWS\system32\wbem
2016-05-25 20:46:38 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2016-05-25 20:46:29 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-05-25 20:44:44 ----D---- C:\WINDOWS\system32\drivers\en-US
2016-05-25 20:44:37 ----D---- C:\WINDOWS\WinStore
2016-05-25 17:10:56 ----D---- C:\ProgramData\CyberLink
2016-05-25 16:58:22 ----D---- C:\SWSetup
2016-05-25 15:28:06 ----D---- C:\Program Files (x86)\Hewlett-Packard
2016-05-25 15:25:43 ----D---- C:\Program Files (x86)\CyberLink
2016-05-25 15:21:06 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-05-25 09:51:36 ----D---- C:\Program Files\Hewlett-Packard
2016-05-25 08:25:36 ----D---- C:\Program Files (x86)\Windows Mail
2016-05-25 08:25:35 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-25 08:25:34 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-05-25 08:25:30 ----D---- C:\Program Files (x86)\Windows Defender
2016-05-25 08:25:29 ----D---- C:\Program Files\Windows Mail
2016-05-25 08:25:29 ----D---- C:\Program Files\Internet Explorer
2016-05-25 08:25:26 ----D---- C:\Program Files\Windows Journal
2016-05-25 08:25:25 ----D---- C:\Program Files\Windows Photo Viewer
2016-05-25 08:25:22 ----D---- C:\Program Files\Common Files\System
2016-05-25 08:25:20 ----D---- C:\Program Files\Windows Defender
2016-05-25 08:25:18 ----D---- C:\WINDOWS\SYSWOW64\oobe
2016-05-25 08:25:18 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2016-05-25 08:25:17 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2016-05-25 08:24:24 ----D---- C:\WINDOWS\SYSWOW64\WCN
2016-05-25 08:24:11 ----D---- C:\WINDOWS\system32\migwiz
2016-05-25 08:24:11 ----D---- C:\WINDOWS\PolicyDefinitions
2016-05-25 08:24:07 ----D---- C:\WINDOWS\system32\slmgr
2016-05-25 08:24:07 ----D---- C:\WINDOWS\system32\en-GB
2016-05-25 08:21:55 ----D---- C:\WINDOWS\system32\WCN
2016-05-25 08:21:19 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-05-25 08:17:35 ----D---- C:\WINDOWS\SYSWOW64\winrm
2016-05-25 08:17:34 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2016-05-25 08:17:33 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-05-25 08:15:46 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2016-05-25 08:15:46 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-05-25 08:15:46 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-05-25 08:15:41 ----D---- C:\WINDOWS\SYSWOW64\Com
2016-05-25 08:15:19 ----D---- C:\WINDOWS\system32\winrm
2016-05-25 08:15:16 ----D---- C:\WINDOWS\system32\Sysprep
2016-05-25 08:15:15 ----D---- C:\WINDOWS\system32\inetsrv
2016-05-25 08:15:14 ----D---- C:\WINDOWS\system32\migration
2016-05-25 08:15:13 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-25 08:11:29 ----D---- C:\WINDOWS\system32\MUI
2016-05-25 08:11:29 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-05-25 08:11:29 ----D---- C:\WINDOWS\system32\Dism
2016-05-25 08:10:30 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2016-05-25 08:10:02 ----D---- C:\WINDOWS\system32\Com
2016-05-25 08:03:14 ----D---- C:\Program Files (x86)\Qualcomm Atheros
2016-05-25 08:02:29 ----D---- C:\ProgramData\Qualcomm Atheros
2016-05-25 07:59:28 ----D---- C:\Program Files\IDT
2016-05-25 00:31:50 ----D---- C:\WINDOWS\servicing
2016-05-25 00:10:55 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-05-24 22:03:38 ----D---- C:\HP
2016-05-24 19:48:47 ----DC---- C:\WINDOWS\Panther
2016-05-24 12:26:58 ----D---- C:\WINDOWS\system32\restore
2016-05-24 12:13:12 ----D---- C:\WINDOWS\SYSWOW64\config
2016-05-24 12:00:17 ----RD---- C:\Program Files (x86)\Online Services
2016-05-24 11:59:39 ----D---- C:\SYSTEM.SAV
2016-05-24 11:44:03 ----D---- C:\WINDOWS\system32\Recovery
2016-05-24 11:42:10 ----RD---- C:\Users

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem4.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2012-07-10 35496]
R0 hpdskflt;@oem23.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2016-05-26 27552]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R3 Accelerometer;@oem23.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-08-02 10280960]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-08-02 368640]
R3 AthBTPort;@oem21.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-05-16 89800]
R3 athr;@oem39.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athrx.sys [2016-05-26 4137472]
R3 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20150921.003\BHDrvx64.sys [2015-09-24 1650936]
R3 BTATH_A2DP;@oem20.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-05-16 347336]
R3 btath_avdt;@oem20.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-05-16 115912]
R3 BTATH_BUS;@oem17.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-05-16 34384]
R3 BTATH_HCRP;@oem24.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-05-16 179432]
R3 BTATH_LWFLT;@oem25.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-05-16 77464]
R3 BTATH_RCP;@oem27.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-05-16 136784]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-05-26 600776]
R3 BthEnum;@tdibth.inf,%BthEnum.DisplayName%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 ccSet_NIS;NIS Settings Manager; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\ccSetx64.sys [2015-09-24 173808]
R3 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-05-24 497392]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2016-05-24 156912]
R3 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20160601.001\IDSvia64.sys [2016-05-27 876248]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 intelkmd;intelkmd; C:\WINDOWS\system32\DRIVERS\igdpmd64.sys [2012-08-24 9000256]
R3 MEIx64;@oem35.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-05-26 185600]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160601.040\ENG64.SYS [2016-05-06 138456]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160601.040\EX64.SYS [2016-05-06 2148056]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 RTL8168;@oem41.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2016-05-26 936192]
R3 rtsuvc;@oem3.inf,%rtsuvc.ServiceDisplayName%;Realtek USB 2.0 PC Camera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2016-05-31 9113816]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\WINDOWS\System32\Drivers\NISx64\1606000.08E\SRTSP64.SYS [2016-02-24 928504]
R3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\SRTSPX64.SYS [2015-09-24 50936]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10329; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2016-05-25 542208]
R3 SymEFASI;Symantec Extended File Attributes (SI); C:\WINDOWS\system32\drivers\NISx64\1606000.08E\SYMEFASI64.SYS [2016-02-24 1621232]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2016-05-26 111344]
R3 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\Ironx64.SYS [2016-02-24 295664]
R3 SymNetS;Symantec Network Security WFP Driver; C:\WINDOWS\System32\Drivers\NISx64\1606000.08E\SYMNETS.SYS [2016-02-24 577768]
R3 SynTP;@oem29.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-05-25 495856]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S0 SymELAM;Symantec ELAM Driver; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\SymELAM.sys [2015-09-24 24192]
S3 ATHDFU;@oem18.inf,%AthDfu.SvcDesc%;Qualcomm Atheros Valkyrie USB BootROM; C:\WINDOWS\System32\Drivers\AthDfu.sys [2012-08-19 55448]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
S3 lehidmini;@oem28.inf,%LEHidMini%;Bluetooth Low Energy Hid Device; C:\WINDOWS\System32\drivers\leath_hid.sys [2012-08-19 39704]
S3 RSP2STOR;@oem40.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2016-05-26 328920]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-24 41272]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-05-25 33008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-06 210560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdvancedSystemCareService9;Advanced SystemCare Service 9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [2016-01-05 446240]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2012-08-02 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2012-09-20 29696]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-05-16 310912]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-08-10 85504]
R2 hpsrv;@oem23.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-09-24 31040]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-09-07 35232]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-14 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-04-22 2960160]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe [2016-02-26 289080]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10129; C:\Program Files\IDT\WDM\STacSV64.exe [2016-05-25 323072]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-09-06 1001376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-25 154440]
S3 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2012-08-24 276288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-27 43616]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-25 154440]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\WINDOWS\system32\svchost.exe [2012-09-20 29696]

-----------------EOF-----------------

Re: mrzne ntbk

Napsal: 02 čer 2016 17:32
od Rudy
Zdravím!
Jako laik byste nemě cCF vůbec spouštět, je to utilita určená profesionálům. Laik si jí může snadno poškodit systém, nebo některou aplikaci. Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: mrzne ntbk

Napsal: 02 čer 2016 18:37
od airplane
P.S.: ako som napisal na zaciatku, adwcleaner som uz skusal, ale neodstranil mi tieto problemy. Po opakovanom spusteni stale uvadza tu istu spravu:

[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}

-----------...v skutocnosti nie je deleted!

Dalsi sprievodny jav chybneho stavu ntb je, ze vypadava wifi pripojenie. Modem/router je ok, ostatne pripojene zariadenia maju prijem wifi signalu stabilny a ok.

Tu je log:

# AdwCleaner v5.119 - Logfile created 02/06/2016 at 19:17:44
# Updated 30/05/2016 by Xplode
# Database : 2016-05-30.3 [Server]
# Operating system : Windows 8 (X64)
# Username : europe - EUROPE-PC
# Running from : C:\Users\europe\Downloads\adwcleaner_5.119 (1).exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}

***** [ Web browsers ] *****


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

Re: mrzne ntbk

Napsal: 02 čer 2016 19:06
od Rudy
Dejte nový log RSIT.

Re: mrzne ntbk

Napsal: 02 čer 2016 21:50
od airplane
Logfile of random's system information tool 1.10 (written by random/random)
Run by europe at 2016-06-02 22:44:29
Microsoft Windows 8
System drive C: has 361 GB (79%) free of 458 GB
Total RAM: 3986 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:44:32, on 2.6.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17568)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\europe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKCU\..\Run: [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Advanced SystemCare 9] "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 9 (AdvancedSystemCareService9) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem23.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10129 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 10743 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\atiesrxx.exe
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
dashost.exe {c8f5ef7b-4095-4c21-9f6244713fb72945}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\diMaster.dll" /prefetch:1
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe" /c /a /s UserSession
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\WINDOWS\System32\hkcmd.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" -byrunkey
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\europe\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=51.0.2704.63 --handshake-handle=0x128
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/NewSuggestType_A10_Stable_R2/OutOfProcessPac/Default/PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/PreRead/Default/*QUIC/EnabledBandwidthResumption/RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Control/SafeBrowsingIncidentReportingService/Default/SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Disabled/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --type=gpu-process --channel="964.0.1687772702\967778215" --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,10,12,13,25,46,54 --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.982.6.0 --mojo-platform-channel-handle=1096 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A10_Stable_R2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/PreRead/Default/*QUIC/EnabledBandwidthResumption/RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Disabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=CDEE955EF33A289A745A1AE3AA5919E2 --lang=sk --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="964.11.1368271159\2133774618" --mojo-platform-channel-handle=2468 /prefetch:1
"C:\Users\europe\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\ASC9_SkipUac_europe.job - C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /SkipUac
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForeurope.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForeurope (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12 2472224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 209504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21 1051320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll [2016-02-21 805560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 6141528]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21 1051320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll [2016-02-21 805560]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-24 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-24 398656]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2016-05-25 1664000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Power2GoExpress8"=C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [2013-01-27 1711680]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-05-13 8721624]
"Advanced SystemCare 9"=C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2016-04-26 2022688]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2012-07-26 1475072]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-05-31 7943072]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-06 642216]
"HP CoolSense"=C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2012-11-05 1343904]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-09-07 581024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2016-06-02 15:47:43 ----D---- C:\rsit
2016-06-02 15:47:43 ----D---- C:\Program Files\trend micro
2016-06-02 09:44:49 ----D---- C:\WINDOWS\temp
2016-06-02 09:44:47 ----A---- C:\ComboFix.txt
2016-06-02 09:38:16 ----SHD---- C:\$RECYCLE.BIN
2016-06-02 09:25:06 ----A---- C:\WINDOWS\zip.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\SWXCACLS.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\SWSC.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\SWREG.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\sed.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\PEV.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\NIRCMD.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\MBR.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\grep.exe
2016-06-02 09:24:56 ----D---- C:\Qoobox
2016-06-02 09:24:17 ----D---- C:\WINDOWS\erdnt
2016-06-01 14:57:19 ----D---- C:\Users\europe\AppData\Roaming\SUPERAntiSpyware.com
2016-06-01 14:56:01 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2016-06-01 14:56:01 ----D---- C:\Program Files\SUPERAntiSpyware
2016-05-31 22:13:08 ----ASH---- C:\pagefile.sys
2016-05-31 18:30:52 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-05-31 18:30:10 ----D---- C:\ProgramData\Malwarebytes
2016-05-31 18:30:10 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-31 18:30:10 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2016-05-31 18:30:10 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2016-05-31 18:30:10 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2016-05-31 00:28:56 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2016-05-31 00:28:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2016-05-31 00:28:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2016-05-31 00:28:55 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2016-05-31 00:28:52 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2016-05-31 00:28:51 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2016-05-31 00:28:51 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2016-05-31 00:28:51 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2016-05-31 00:28:45 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2016-05-31 00:28:45 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2016-05-31 00:28:44 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2016-05-31 00:28:44 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2016-05-31 00:28:36 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2016-05-31 00:28:36 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2016-05-31 00:28:36 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2016-05-31 00:28:35 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2016-05-31 00:28:34 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2016-05-31 00:28:34 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2016-05-31 00:28:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2016-05-31 00:28:32 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2016-05-31 00:28:30 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2016-05-31 00:28:30 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2016-05-31 00:28:24 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2016-05-31 00:28:17 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2016-05-31 00:28:17 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2016-05-31 00:28:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2016-05-31 00:28:14 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2016-05-31 00:28:11 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2016-05-31 00:28:10 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2016-05-31 00:28:08 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2016-05-31 00:28:07 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2016-05-31 00:28:06 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2016-05-31 00:28:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2016-05-31 00:28:02 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2016-05-31 00:28:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2016-05-31 00:28:00 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2016-05-31 00:28:00 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2016-05-31 00:27:58 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2016-05-31 00:27:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2016-05-31 00:27:56 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2016-05-31 00:27:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2016-05-31 00:27:55 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2016-05-31 00:27:54 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2016-05-31 00:27:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2016-05-31 00:27:53 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2016-05-31 00:27:51 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2016-05-31 00:27:50 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2016-05-31 00:27:48 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2016-05-31 00:27:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2016-05-31 00:27:46 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2016-05-31 00:27:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2016-05-31 00:27:44 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2016-05-31 00:27:44 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2016-05-31 00:27:43 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2016-05-31 00:27:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2016-05-31 00:27:42 ----A---- C:\WINDOWS\system32\d3dx10.dll
2016-05-31 00:27:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2016-05-31 00:27:34 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2016-05-31 00:27:33 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2016-05-31 00:27:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2016-05-31 00:27:32 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2016-05-31 00:27:32 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2016-05-31 00:27:31 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2016-05-31 00:27:30 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2016-05-31 00:27:30 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2016-05-31 00:27:29 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2016-05-31 00:27:29 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2016-05-31 00:27:28 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2016-05-31 00:27:28 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2016-05-31 00:27:26 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2016-05-31 00:27:25 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2016-05-31 00:27:18 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2016-05-31 00:27:18 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2016-05-31 00:27:17 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2016-05-31 00:27:17 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2016-05-31 00:27:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2016-05-31 00:27:16 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2016-05-31 00:27:15 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2016-05-31 00:27:15 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2016-05-31 00:27:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2016-05-31 00:27:14 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2016-05-31 00:27:13 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2016-05-31 00:27:13 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2016-05-31 00:27:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2016-05-31 00:27:12 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2016-05-31 00:27:12 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2016-05-31 00:27:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2016-05-31 00:27:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2016-05-31 00:27:11 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2016-05-31 00:26:06 ----D---- C:\ProgramData\Package Cache
2016-05-31 00:25:44 ----A---- C:\WINDOWS\SYSWOW64\RtCamX.dll
2016-05-31 00:25:44 ----A---- C:\WINDOWS\system32\RtCamX64.dll
2016-05-31 00:25:44 ----A---- C:\WINDOWS\system32\drivers\rtsuvc.sys
2016-05-31 00:25:44 ----A---- C:\WINDOWS\RtsCM64.exe
2016-05-31 00:25:44 ----A---- C:\WINDOWS\RtCamU64.exe
2016-05-30 23:43:43 ----D---- C:\WINDOWS\Minidump
2016-05-28 23:33:14 ----D---- C:\Program Files (x86)\Adobe
2016-05-28 23:32:49 ----D---- C:\ProgramData\Adobe
2016-05-28 23:16:52 ----HD---- C:\ProgramData\CanonIJScan
2016-05-26 13:09:21 ----HD---- C:\ProgramData\CanonIJEPPEX2
2016-05-26 13:09:21 ----HD---- C:\ProgramData\CanonEPP
2016-05-26 13:09:20 ----D---- C:\Users\europe\AppData\Roaming\Canon
2016-05-26 13:05:05 ----A---- C:\WINDOWS\system32\CNMXLMAT.DLL
2016-05-26 13:04:05 ----D---- C:\ProgramData\Canon IJ Network Tool
2016-05-26 13:03:51 ----A---- C:\WINDOWS\SYSWOW64\CNC_ATU.dll
2016-05-26 13:03:51 ----A---- C:\WINDOWS\SYSWOW64\CNC_ATL.dll
2016-05-26 13:03:50 ----A---- C:\WINDOWS\SYSWOW64\CNHMCA.dll
2016-05-26 13:01:42 ----D---- C:\Program Files\Common Files\CANON
2016-05-26 13:01:34 ----D---- C:\ProgramData\CanonIJWSpt
2016-05-26 12:58:42 ----D---- C:\Program Files\Canon
2016-05-26 12:57:28 ----HD---- C:\ProgramData\CanonBJ
2016-05-26 12:57:14 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2016-05-26 12:56:48 ----A---- C:\WINDOWS\system32\CNMLMAT.DLL
2016-05-26 12:56:34 ----A---- C:\WINDOWS\system32\CNMIUAT.DLL
2016-05-26 12:55:37 ----HD---- C:\Program Files\CanonBJ
2016-05-26 12:55:19 ----D---- C:\WINDOWS\system32\STRING
2016-05-26 12:55:19 ----A---- C:\WINDOWS\system32\CNMN6UI.DLL
2016-05-26 12:55:18 ----A---- C:\WINDOWS\SYSWOW64\CNMNPPM.DLL
2016-05-26 12:55:18 ----A---- C:\WINDOWS\system32\CNMN6PPM.DLL
2016-05-26 12:35:45 ----D---- C:\Program Files (x86)\Canon
2016-05-26 11:54:04 ----D---- C:\Program Files (x86)\Microsoft Works
2016-05-26 11:50:24 ----D---- C:\Program Files\Microsoft Office
2016-05-26 11:49:44 ----D---- C:\ProgramData\Microsoft Help
2016-05-26 11:40:24 ----D---- C:\Users\europe\AppData\Roaming\MyPhoneExplorer
2016-05-26 11:40:11 ----D---- C:\Program Files (x86)\MyPhoneExplorer
2016-05-26 01:31:05 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2016-05-26 01:31:05 ----A---- C:\WINDOWS\system32\drivers\Rt630x64.sys
2016-05-26 01:30:55 ----A---- C:\WINDOWS\SYSWOW64\RsCRIcon.dll
2016-05-26 01:30:55 ----A---- C:\WINDOWS\system32\RtCRX64.dll
2016-05-26 01:30:55 ----A---- C:\WINDOWS\system32\drivers\RtsP2Stor.sys
2016-05-26 01:30:55 ----A---- C:\WINDOWS\RtCRU64.exe
2016-05-26 01:30:11 ----A---- C:\WINDOWS\system32\drivers\athrx.sys
2016-05-26 01:29:59 ----A---- C:\WINDOWS\system32\drivers\btfilter.sys
2016-05-26 01:29:28 ----A---- C:\WINDOWS\system32\drivers\TeeDriverW8x64.sys
2016-05-26 01:08:53 ----D---- C:\WINDOWS\IObit
2016-05-26 01:08:22 ----A---- C:\WINDOWS\SYSWOW64\drivers\HWiNFO64A.SYS
2016-05-26 01:00:17 ----A---- C:\WINDOWS\system32\RegistryDefragBootTime.exe
2016-05-26 00:28:54 ----D---- C:\Program Files\CCleaner
2016-05-25 23:48:32 ----D---- C:\Program Files (x86)\Google
2016-05-25 21:42:24 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-05-25 21:38:37 ----D---- C:\Program Files\Common Files\AV
2016-05-25 20:47:19 ----SD---- C:\WINDOWS\system32\CompatTel
2016-05-25 20:47:19 ----D---- C:\WINDOWS\Migration
2016-05-25 20:47:18 ----D---- C:\WINDOWS\system32\appraiser
2016-05-25 20:44:36 ----D---- C:\WINDOWS\system32\AutoUpdateLicense
2016-05-25 18:13:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-05-25 18:13:26 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-05-25 18:12:04 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2016-05-25 17:56:48 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2016-05-25 17:56:42 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2016-05-25 17:54:06 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-05-25 17:53:32 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\invagent.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\devinv.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\aepic.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-05-25 17:53:29 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2016-05-25 17:53:29 ----A---- C:\WINDOWS\system32\apphelp.dll
2016-05-25 17:53:29 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2016-05-25 17:53:28 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2016-05-25 17:53:28 ----A---- C:\WINDOWS\system32\sdbinst.exe
2016-05-25 17:53:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-05-25 17:53:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-05-25 17:53:13 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-05-25 17:53:13 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-05-25 17:52:19 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2016-05-25 17:51:14 ----A---- C:\WINDOWS\system32\msctf.dll
2016-05-25 17:51:13 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-05-25 17:48:50 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2016-05-25 17:48:50 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2016-05-25 17:48:49 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\sysreset.exe
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\resetengmig.dll
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\ReAgent.dll
2016-05-25 17:47:24 ----A---- C:\WINDOWS\SYSWOW64\cryptdlg.dll
2016-05-25 17:47:24 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2016-05-25 17:47:03 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-05-25 17:47:02 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-05-25 17:47:02 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-05-25 17:47:02 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-05-25 17:46:57 ----A---- C:\WINDOWS\system32\msdrm.dll
2016-05-25 17:46:56 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcalua.exe
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcaevts.dll
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcadm.dll
2016-05-25 17:46:54 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2016-05-25 17:46:54 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2016-05-25 17:46:54 ----A---- C:\WINDOWS\system32\wpdshext.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\VmHostAI.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\tssdisai.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\RDWebAI.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\poqexec.exe
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\appserverai.dll
2016-05-25 17:46:28 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-05-25 17:46:28 ----A---- C:\WINDOWS\system32\esent.dll
2016-05-25 17:45:40 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-05-25 17:45:40 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-05-25 17:45:40 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\system32\msieftp.dll
2016-05-25 17:10:36 ----D---- C:\Users\europe\AppData\Roaming\CyberLink
2016-05-25 15:21:06 ----A---- C:\WINDOWS\system32\drivers\CLVirtualDrive.sys
2016-05-25 10:41:21 ----A---- C:\WINDOWS\system32\Display.dll
2016-05-25 10:41:20 ----A---- C:\WINDOWS\SYSWOW64\KBDKURD.DLL
2016-05-25 10:41:20 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2016-05-25 10:41:20 ----A---- C:\WINDOWS\system32\KBDKURD.DLL
2016-05-25 10:41:16 ----A---- C:\WINDOWS\system32\dskquota.dll
2016-05-25 10:41:15 ----A---- C:\WINDOWS\SYSWOW64\dskquota.dll
2016-05-25 10:40:57 ----A---- C:\WINDOWS\system32\hal.dll
2016-05-25 10:39:29 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-05-25 10:39:24 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2016-05-25 10:39:22 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2016-05-25 10:39:18 ----A---- C:\WINDOWS\system32\Windows.Storage.Compression.dll
2016-05-25 10:39:18 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-05-25 10:39:17 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-05-25 10:39:17 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-05-25 10:39:16 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-05-25 10:39:16 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2016-05-25 10:39:16 ----A---- C:\WINDOWS\system32\drivers\battc.sys
2016-05-25 10:39:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Compression.dll
2016-05-25 10:39:15 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2016-05-25 10:39:15 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-05-25 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2016-05-25 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2016-05-25 10:39:14 ----A---- C:\WINDOWS\system32\input.dll
2016-05-25 10:39:14 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2016-05-25 10:39:13 ----A---- C:\WINDOWS\system32\microsoft-windows-pdc.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\system32\mswsock.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2016-05-25 10:39:11 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2016-05-25 10:39:11 ----A---- C:\WINDOWS\system32\AppxSip.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2016-05-25 10:39:07 ----A---- C:\WINDOWS\SYSWOW64\kbdhebl3.dll
2016-05-25 10:39:07 ----A---- C:\WINDOWS\system32\kbdhebl3.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\system32\shdocvw.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\system32\wvc.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\system32\wdc.dll
2016-05-25 10:37:18 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-05-25 10:37:15 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2016-05-25 10:37:14 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2016-05-25 10:37:14 ----A---- C:\WINDOWS\system32\WSDApi.dll
2016-05-25 10:37:14 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-05-25 10:37:14 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2016-05-25 10:37:13 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2016-05-25 10:37:13 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-05-25 10:36:07 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2016-05-25 10:36:07 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-05-25 10:36:06 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-05-25 10:36:04 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-05-25 10:36:04 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-05-25 10:35:59 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-05-25 10:35:57 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-05-25 10:35:57 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2016-05-25 10:35:53 ----A---- C:\WINDOWS\SYSWOW64\vds_ps.dll
2016-05-25 10:35:53 ----A---- C:\WINDOWS\system32\vdsldr.exe
2016-05-25 10:35:53 ----A---- C:\WINDOWS\system32\vds_ps.dll
2016-05-25 10:35:38 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-05-25 10:35:36 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-05-25 10:35:35 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-05-25 10:35:35 ----A---- C:\WINDOWS\explorer.exe
2016-05-25 10:35:33 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-05-25 10:35:25 ----A---- C:\WINDOWS\system32\vds.exe
2016-05-25 10:35:25 ----A---- C:\WINDOWS\system32\mscms.dll
2016-05-25 10:35:25 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\vdsutil.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\samlib.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2016-05-25 10:35:23 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-05-25 10:35:22 ----A---- C:\WINDOWS\system32\drivers\BthAvrcpTg.sys
2016-05-25 10:35:19 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-05-25 10:34:27 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2016-05-25 10:34:10 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2016-05-25 10:34:08 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-05-25 10:34:01 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-05-25 10:33:55 ----A---- C:\WINDOWS\HelpPane.exe
2016-05-25 10:33:46 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-05-25 10:33:42 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-05-25 10:33:41 ----A---- C:\WINDOWS\system32\dafWCN.dll
2016-05-25 10:33:40 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-05-25 10:33:38 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2016-05-25 10:33:38 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-05-25 10:33:37 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2016-05-25 10:33:37 ----A---- C:\WINDOWS\system32\rdpclip.exe
2016-05-25 10:33:37 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-25 10:33:36 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\system32\WcnApi.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\WcnEapPeerProxy.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\WcnEapAuthProxy.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\fdWCN.dll
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2016-05-25 10:33:31 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2016-05-25 10:33:31 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2016-05-25 10:33:31 ----A---- C:\WINDOWS\system32\drivers\fxppm.sys
2016-05-25 10:33:30 ----A---- C:\WINDOWS\system32\iscsilog.dll
2016-05-25 10:10:06 ----A---- C:\WINDOWS\system32\drivers\evbda.sys
2016-05-25 10:09:51 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-05-25 10:09:46 ----A---- C:\WINDOWS\system32\WinSAT.exe
2016-05-25 10:09:44 ----A---- C:\WINDOWS\system32\drivers\bxvbda.sys
2016-05-25 10:09:38 ----A---- C:\WINDOWS\system32\RacEngn.dll
2016-05-25 10:09:38 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-05-25 10:09:37 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-05-25 10:09:36 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-05-25 10:09:36 ----A---- C:\WINDOWS\system32\provcore.dll
2016-05-25 10:09:36 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2016-05-25 10:09:31 ----A---- C:\WINDOWS\system32\WinSATAPI.dll
2016-05-25 10:09:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-05-25 10:09:29 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2016-05-25 10:09:28 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-05-25 10:09:28 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2016-05-25 10:09:27 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-05-25 10:09:27 ----A---- C:\WINDOWS\system32\combase.dll
2016-05-25 10:09:26 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2016-05-25 10:09:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-05-25 10:09:25 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-05-25 10:09:25 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\taskeng.exe
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\bcdsrv.dll
2016-05-25 10:09:23 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-05-25 10:09:22 ----A---- C:\WINDOWS\system32\VAN.dll
2016-05-25 10:09:22 ----A---- C:\WINDOWS\system32\propsys.dll
2016-05-25 10:09:22 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-05-25 10:09:21 ----A---- C:\WINDOWS\SYSWOW64\WinSATAPI.dll
2016-05-25 10:09:20 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-05-25 10:09:19 ----A---- C:\WINDOWS\system32\mmcss.dll
2016-05-25 10:09:18 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-05-25 10:09:18 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2016-05-25 10:09:17 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2016-05-25 10:09:16 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2016-05-25 10:09:16 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\SYSWOW64\provcore.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\system32\ProximityService.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\avrt.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\system32\avrt.dll
2016-05-25 10:09:13 ----A---- C:\WINDOWS\SYSWOW64\svchost.exe
2016-05-25 10:09:13 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-05-25 10:09:13 ----A---- C:\WINDOWS\SYSWOW64\batmeter.dll
2016-05-25 10:09:13 ----A---- C:\WINDOWS\system32\batmeter.dll
2016-05-25 10:09:12 ----A---- C:\WINDOWS\system32\perfdisk.dll
2016-05-25 10:09:11 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-05-25 10:09:11 ----A---- C:\WINDOWS\SYSWOW64\perfdisk.dll
2016-05-25 10:09:11 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-25 10:09:10 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2016-05-25 10:09:10 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2016-05-25 10:09:10 ----A---- C:\WINDOWS\system32\svchost.exe
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\system32\perfnet.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\lpksetup.exe
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\dwm.exe
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2016-05-25 10:09:07 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-05-25 10:09:07 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2016-05-25 10:09:07 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-05-25 10:09:07 ----A---- C:\WINDOWS\system32\drvinst.exe
2016-05-25 10:09:07 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\SYSWOW64\perfnet.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\system32\webio.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\system32\perfos.dll
2016-05-25 10:09:05 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2016-05-25 10:09:02 ----A---- C:\WINDOWS\system32\umpo.dll
2016-05-25 10:09:02 ----A---- C:\WINDOWS\system32\lpremove.exe
2016-05-25 10:09:02 ----A---- C:\WINDOWS\system32\drivers\ws2ifsl.sys
2016-05-25 10:09:00 ----A---- C:\WINDOWS\SYSWOW64\perfproc.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\SYSWOW64\perfos.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\SYSWOW64\perfctrs.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\system32\perfproc.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\system32\perfctrs.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\shimeng.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\MUILanguageCleanup.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2016-05-25 10:08:22 ----A---- C:\WINDOWS\SYSWOW64\newdev.exe
2016-05-25 10:08:22 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2016-05-25 10:08:22 ----A---- C:\WINDOWS\SYSWOW64\ndadmin.exe
2016-05-25 10:08:22 ----A---- C:\WINDOWS\system32\newdev.exe
2016-05-25 10:08:22 ----A---- C:\WINDOWS\system32\newdev.dll
2016-05-25 10:08:22 ----A---- C:\WINDOWS\system32\ndadmin.exe
2016-05-25 10:08:05 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2016-05-25 10:08:05 ----A---- C:\WINDOWS\system32\wusa.exe
2016-05-25 10:07:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-25 10:07:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-05-25 10:07:34 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-05-25 10:07:34 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2016-05-25 10:07:15 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-05-25 10:07:15 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\SYSWOW64\winmmbase.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\SYSWOW64\winmm.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\WinSCard.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\winmmbase.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\winmm.dll
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\HdAudio.sys
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\openfiles.exe
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\Wwanadvui.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\openfiles.exe
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\LocationApi.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2016-05-25 10:06:58 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-05-25 10:06:57 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2016-05-25 10:06:57 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-05-25 10:06:57 ----A---- C:\WINDOWS\system32\resutils.dll
2016-05-25 10:06:56 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-05-25 10:06:39 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2016-05-25 10:06:39 ----A---- C:\WINDOWS\system32\Robocopy.exe
2016-05-25 10:06:33 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2016-05-25 10:06:33 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2016-05-25 10:06:33 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2016-05-25 10:06:33 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2016-05-25 10:06:32 ----A---- C:\WINDOWS\system32\icfupgd.dll
2016-05-25 10:06:32 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys
2016-05-25 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2016-05-25 10:06:31 ----A---- C:\WINDOWS\system32\wfapigp.dll
2016-05-25 10:06:22 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-05-25 10:06:21 ----A---- C:\WINDOWS\system32\srvsvc.dll
2016-05-25 10:06:21 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-05-25 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\sscore.dll
2016-05-25 10:06:19 ----A---- C:\WINDOWS\system32\sscore.dll
2016-05-25 10:06:19 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-05-25 10:06:19 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-05-25 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\NotificationUI.exe
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\AutoUpdate.exe
2016-05-25 10:06:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-05-25 10:06:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-05-25 10:06:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-05-25 10:06:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-05-25 10:06:05 ----A---- C:\WINDOWS\system32\kernel32.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\system32\gpedit.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2016-05-25 10:06:04 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-05-25 09:50:33 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2016-05-25 09:50:32 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-05-25 09:50:26 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-05-25 09:50:23 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2016-05-25 09:50:20 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-05-25 09:50:19 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-05-25 09:50:19 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-05-25 09:50:19 ----A---- C:\WINDOWS\system32\dwmapi.dll
2016-05-25 09:50:17 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-05-25 09:50:16 ----A---- C:\WINDOWS\system32\defragsvc.dll
2016-05-25 09:50:13 ----A---- C:\WINDOWS\SYSWOW64\KBDRUM.DLL
2016-05-25 09:50:13 ----A---- C:\WINDOWS\system32\KBDRUM.DLL
2016-05-25 09:50:13 ----A---- C:\WINDOWS\system32\Defrag.exe
2016-05-25 09:50:12 ----A---- C:\WINDOWS\SYSWOW64\KBDTAT.DLL
2016-05-25 09:50:12 ----A---- C:\WINDOWS\system32\KBDTAT.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDYAK.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDRU1.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDRU.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDBASH.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDYAK.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDRU1.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDRU.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDBASH.DLL
2016-05-25 09:37:37 ----D---- C:\ProgramData\Atheros
2016-05-25 09:37:27 ----D---- C:\Users\europe\AppData\Roaming\Atheros
2016-05-25 09:26:15 ----D---- C:\Program Files (x86)\Bluetooth Suite
2016-05-25 08:02:19 ----A---- C:\WINDOWS\system32\drivers\athw8x.sys
2016-05-25 07:59:21 ----N---- C:\WINDOWS\system32\stapi64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\stlang64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\stcplx64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\stapo64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EEP64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EEL64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EED64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EEA64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\sttray64.exe
2016-05-25 07:59:20 ----D---- C:\WINDOWS\system32\SRSLabs
2016-05-25 07:58:26 ----A---- C:\WINDOWS\system32\drivers\stwrt64.sys
2016-05-25 07:58:19 ----A---- C:\WINDOWS\system32\st646425.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\SYSWOW64\SynTPCom.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\WdfCoInstaller01009.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\SynTPCo18.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2016-05-25 07:54:32 ----A---- C:\WINDOWS\SYSWOW64\SynCom.dll
2016-05-25 07:54:32 ----A---- C:\WINDOWS\system32\SynCOM.dll
2016-05-25 07:54:30 ----A---- C:\WINDOWS\system32\drivers\Smb_driver_Intel.sys

Re: mrzne ntbk

Napsal: 02 čer 2016 21:50
od airplane
2016-05-24 23:18:01 ----A---- C:\WINDOWS\SYSWOW64\eventcls.dll
2016-05-24 23:18:01 ----A---- C:\WINDOWS\system32\eventcls.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\system32\VSSVC.exe
2016-05-24 23:18:00 ----A---- C:\WINDOWS\system32\vsstrace.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\system32\vssapi.dll
2016-05-24 21:59:54 ----D---- C:\Users\europe\AppData\Roaming\HewlettPackard
2016-05-24 21:40:47 ----D---- C:\Users\europe\AppData\Roaming\Hewlett-Packard
2016-05-24 21:30:18 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-24 21:30:05 ----A---- C:\WINDOWS\system32\netcfg-656875.txt
2016-05-24 21:30:01 ----A---- C:\WINDOWS\system32\netcfg-652921.txt
2016-05-24 21:23:33 ----A---- C:\WINDOWS\system32\netcfg-265484.txt
2016-05-24 20:44:31 ----D---- C:\WINDOWS\system32\MRT
2016-05-24 20:44:21 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-24 20:27:20 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2016-05-24 20:27:20 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-05-24 20:17:20 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-05-24 20:17:18 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2016-05-24 20:17:18 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2016-05-24 20:16:45 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2016-05-24 20:16:24 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2016-05-24 20:16:24 ----A---- C:\WINDOWS\system32\drivers\usbcir.sys
2016-05-24 20:14:51 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-05-24 20:14:50 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-05-24 20:14:45 ----A---- C:\WINDOWS\system32\localspl.dll
2016-05-24 20:14:44 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-05-24 20:14:44 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2016-05-24 20:14:41 ----A---- C:\WINDOWS\system32\wuaext.dll
2016-05-24 20:12:56 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2016-05-24 20:12:56 ----A---- C:\WINDOWS\system32\WebClnt.dll
2016-05-24 20:12:56 ----A---- C:\WINDOWS\system32\davclnt.dll
2016-05-24 20:12:55 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2016-05-24 20:12:40 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\system32\wucltux.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wuwebv.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wudriver.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wuapp.exe
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-05-24 20:11:38 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2016-05-24 20:11:38 ----A---- C:\WINDOWS\system32\scesrv.dll
2016-05-24 20:10:59 ----A---- C:\WINDOWS\system32\tquery.dll
2016-05-24 20:10:58 ----A---- C:\WINDOWS\system32\wmp.dll
2016-05-24 20:10:56 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-05-24 20:10:55 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-05-24 20:10:52 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-05-24 20:10:46 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-05-24 20:10:43 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2016-05-24 20:10:41 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2016-05-24 20:10:40 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-05-24 20:10:40 ----A---- C:\WINDOWS\system32\kd_02_10ec.dll
2016-05-24 20:10:39 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2016-05-24 20:10:39 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-05-24 20:10:39 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2016-05-24 20:10:37 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-05-24 20:10:37 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-05-24 20:10:35 ----A---- C:\WINDOWS\system32\dwmredir.dll
2016-05-24 20:10:35 ----A---- C:\WINDOWS\system32\conhost.exe
2016-05-24 20:10:33 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-05-24 20:10:33 ----A---- C:\WINDOWS\system32\mssph.dll
2016-05-24 20:10:32 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2016-05-24 20:10:30 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-05-24 20:10:29 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-05-24 20:10:28 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-05-24 20:10:27 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-24 20:10:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-05-24 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\rascfg.dll
2016-05-24 20:10:21 ----A---- C:\WINDOWS\system32\ci.dll
2016-05-24 20:10:20 ----A---- C:\WINDOWS\system32\rascfg.dll
2016-05-24 20:10:20 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2016-05-24 20:10:19 ----A---- C:\WINDOWS\system32\XpsRasterService.dll
2016-05-24 20:10:19 ----A---- C:\WINDOWS\system32\fhengine.dll
2016-05-24 20:10:18 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2016-05-24 20:10:18 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-05-24 20:10:17 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-05-24 20:10:17 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-05-24 20:10:15 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2016-05-24 20:10:13 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2016-05-24 20:10:12 ----A---- C:\WINDOWS\SYSWOW64\XpsRasterService.dll
2016-05-24 20:10:12 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-05-24 20:10:12 ----A---- C:\WINDOWS\system32\kdvm.dll
2016-05-24 20:10:11 ----A---- C:\WINDOWS\system32\iuilp.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\system32\kdnet.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2016-05-24 20:10:09 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-05-24 20:10:09 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2016-05-24 20:10:09 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\mssvp.dll
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\GenuineCenter.dll
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\fhevents.dll
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\drivers\hidi2c.sys
2016-05-24 20:10:07 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2016-05-24 20:10:07 ----A---- C:\WINDOWS\system32\fmifs.dll
2016-05-24 20:10:07 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\SYSWOW64\fmifs.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\msshooks.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\fhsvc.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\fhcat.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\SYSWOW64\rasdiag.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\rasdiag.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\mssphtb.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhshl.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhlisten.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\mssitlb.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\msscntrs.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\fhtask.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\SYSWOW64\rasser.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\SYSWOW64\rasmxs.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\system32\rasser.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\system32\rasmxs.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\system32\fhautoplay.dll
2016-05-24 20:09:59 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2016-05-24 20:09:57 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2016-05-24 20:09:57 ----A---- C:\WINDOWS\system32\spwmp.dll
2016-05-24 20:09:56 ----A---- C:\WINDOWS\system32\dxmasf.dll
2016-05-24 20:09:55 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2016-05-24 20:09:53 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2016-05-24 20:09:52 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2016-05-24 20:09:52 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-05-24 20:09:52 ----A---- C:\WINDOWS\system32\tzres.dll
2016-05-24 20:09:51 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-05-24 20:02:59 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-05-24 20:02:50 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-05-24 20:02:44 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-05-24 20:02:43 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-05-24 20:02:41 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2016-05-24 20:01:52 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-05-24 20:01:51 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-05-24 20:01:51 ----A---- C:\WINDOWS\system32\aaclient.dll
2016-05-24 20:01:50 ----A---- C:\WINDOWS\SYSWOW64\aaclient.dll
2016-05-24 20:01:31 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-05-24 20:01:30 ----A---- C:\WINDOWS\system32\csrsrv.dll
2016-05-24 20:00:34 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-24 20:00:31 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-05-24 20:00:30 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-24 20:00:25 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-05-24 20:00:24 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2016-05-24 20:00:24 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\system32\msxml6r.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\system32\msxml3r.dll
2016-05-24 19:58:09 ----A---- C:\WINDOWS\system32\imagehlp.dll
2016-05-24 19:58:08 ----A---- C:\WINDOWS\SYSWOW64\imagehlp.dll
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\WSDScan.sys
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2016-05-24 19:57:47 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2016-05-24 19:57:46 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-05-24 19:56:47 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-05-24 19:56:29 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-05-24 19:56:27 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2016-05-24 19:56:26 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-05-24 19:56:16 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2016-05-24 19:56:14 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2016-05-24 19:56:14 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2016-05-24 19:56:14 ----A---- C:\WINDOWS\system32\rpchttp.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\system32\FXST30.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2016-05-24 19:56:12 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2016-05-24 19:56:12 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2016-05-24 19:55:40 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-24 19:55:39 ----A---- C:\WINDOWS\system32\cdd.dll
2016-05-24 19:55:26 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-24 19:55:16 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-24 19:53:34 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2016-05-24 19:53:34 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-05-24 19:46:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-24 19:46:21 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-05-24 19:46:19 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2016-05-24 19:46:19 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2016-05-24 19:46:18 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2016-05-24 19:46:17 ----A---- C:\WINDOWS\system32\netprofm.dll
2016-05-24 19:46:14 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-05-24 19:46:13 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-05-24 19:46:13 ----A---- C:\WINDOWS\system32\stobject.dll
2016-05-24 19:46:13 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\taskhost.exe
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\Magnify.exe
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-24 19:46:09 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2016-05-24 19:46:09 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-05-24 19:46:08 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-05-24 19:46:07 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2016-05-24 19:46:07 ----A---- C:\WINDOWS\system32\AuthHost.exe
2016-05-24 19:46:06 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2016-05-24 19:46:06 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-05-24 19:46:06 ----A---- C:\WINDOWS\system32\taskhostex.exe
2016-05-24 19:46:05 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2016-05-24 19:46:05 ----A---- C:\WINDOWS\system32\biwinrt.dll
2016-05-24 19:46:03 ----A---- C:\WINDOWS\system32\muifontsetup.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\muifontsetup.dll
2016-05-24 19:44:07 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-05-24 19:43:42 ----A---- C:\WINDOWS\SYSWOW64\cryptnet.dll
2016-05-24 19:43:42 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2016-05-24 19:43:42 ----A---- C:\WINDOWS\system32\cryptnet.dll
2016-05-24 19:43:42 ----A---- C:\WINDOWS\system32\certutil.exe
2016-05-24 19:43:35 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2016-05-24 19:43:35 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2016-05-24 19:43:35 ----A---- C:\WINDOWS\system32\untfs.dll
2016-05-24 19:43:35 ----A---- C:\WINDOWS\system32\autochk.exe
2016-05-24 19:43:15 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-24 19:43:14 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-24 19:43:07 ----A---- C:\WINDOWS\system32\twinui.dll
2016-05-24 19:43:06 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-05-24 19:42:57 ----A---- C:\WINDOWS\system32\authui.dll
2016-05-24 19:42:56 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-05-24 19:42:44 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-24 19:42:44 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-24 19:42:42 ----A---- C:\WINDOWS\SYSWOW64\synceng.dll
2016-05-24 19:42:42 ----A---- C:\WINDOWS\system32\synceng.dll
2016-05-24 19:42:37 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-05-24 19:42:37 ----A---- C:\WINDOWS\system32\ole32.dll
2016-05-24 19:42:27 ----A---- C:\WINDOWS\system32\ubpm.dll
2016-05-24 19:42:26 ----A---- C:\WINDOWS\SYSWOW64\ubpm.dll
2016-05-24 19:41:47 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2016-05-24 19:41:47 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-05-24 19:41:47 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-05-24 19:41:46 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\netcfgx.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-05-24 19:41:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-05-24 19:41:44 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2016-05-24 19:41:44 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-05-24 19:41:41 ----A---- C:\WINDOWS\system32\NdisImPlatform.dll
2016-05-24 19:41:41 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-05-24 19:41:41 ----A---- C:\WINDOWS\system32\discan.dll
2016-05-24 19:41:40 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2016-05-24 19:41:40 ----A---- C:\WINDOWS\system32\DevDispItemProvider.dll
2016-05-24 19:41:39 ----A---- C:\WINDOWS\system32\fsquirt.exe
2016-05-24 19:41:38 ----A---- C:\WINDOWS\SYSWOW64\DevDispItemProvider.dll
2016-05-24 19:41:38 ----A---- C:\WINDOWS\system32\WSDPrintProxy.DLL
2016-05-24 19:41:38 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2016-05-24 19:41:37 ----A---- C:\WINDOWS\system32\drivers\monitor.sys
2016-05-24 19:41:36 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-05-24 19:41:36 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-05-24 19:40:49 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-05-24 19:40:49 ----A---- C:\WINDOWS\system32\termsrv.dll
2016-05-24 19:40:49 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-05-24 19:40:48 ----A---- C:\WINDOWS\SYSWOW64\winsta.dll
2016-05-24 19:40:48 ----A---- C:\WINDOWS\system32\winsta.dll
2016-05-24 19:40:24 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2016-05-24 19:40:24 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2016-05-24 19:38:39 ----A---- C:\WINDOWS\system32\WSService.dll
2016-05-24 19:38:37 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2016-05-24 19:38:37 ----A---- C:\WINDOWS\system32\sppc.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\SYSWOW64\WSSync.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\system32\WSClient.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-05-24 19:38:33 ----A---- C:\WINDOWS\system32\setupcln.dll
2016-05-24 19:38:32 ----A---- C:\WINDOWS\SYSWOW64\setupcln.dll
2016-05-24 19:38:32 ----A---- C:\WINDOWS\SYSWOW64\OEMLicense.dll
2016-05-24 19:38:31 ----A---- C:\WINDOWS\system32\OEMLicense.dll
2016-05-24 19:36:17 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-05-24 19:36:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-05-24 19:36:16 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-05-24 19:36:16 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-05-24 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncInfo.dll
2016-05-24 19:36:15 ----A---- C:\WINDOWS\system32\SettingSyncInfo.dll
2016-05-24 19:34:00 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2016-05-24 19:34:00 ----A---- C:\WINDOWS\system32\osk.exe
2016-05-24 19:33:56 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-05-24 19:33:56 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-05-24 19:31:08 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2016-05-24 19:31:08 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-05-24 19:31:08 ----A---- C:\WINDOWS\system32\clfsw32.dll
2016-05-24 19:31:07 ----A---- C:\WINDOWS\system32\services.exe
2016-05-24 19:31:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-05-24 19:30:06 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-24 19:29:46 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-24 19:29:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-24 19:29:25 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-24 19:29:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-24 19:29:15 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-24 19:29:12 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-24 19:29:11 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-24 19:29:06 ----A---- C:\WINDOWS\system32\wininet.dll
2016-05-24 19:29:05 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-05-24 19:29:02 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-24 19:29:01 ----A---- C:\WINDOWS\system32\uxtheme.dll
2016-05-24 19:29:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-24 19:29:00 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-24 19:28:57 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-24 19:28:57 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-24 19:28:57 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-24 19:28:56 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2016-05-24 19:28:51 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-05-24 19:28:50 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2016-05-24 19:28:50 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-05-24 19:28:49 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2016-05-24 19:28:49 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2016-05-24 19:28:49 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-05-24 19:28:45 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-05-24 19:28:44 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\iesysprep.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\system32\UXInit.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\system32\msrating.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-05-24 19:28:40 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-05-24 19:28:37 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2016-05-24 19:28:37 ----A---- C:\WINDOWS\system32\INETRES.dll
2016-05-24 17:58:12 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2016-05-24 17:53:57 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2016-05-24 17:44:30 ----A---- C:\WINDOWS\system32\mmc.exe
2016-05-24 17:44:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-05-24 17:44:09 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2016-05-24 17:43:50 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-05-24 17:43:41 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2016-05-24 17:43:41 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2016-05-24 17:43:40 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-05-24 17:43:40 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-05-24 17:43:39 ----A---- C:\WINDOWS\system32\WSDMon.dll
2016-05-24 17:43:39 ----A---- C:\WINDOWS\system32\inetpp.dll
2016-05-24 17:43:35 ----A---- C:\WINDOWS\SYSWOW64\wiaacmgr.exe
2016-05-24 17:43:35 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2016-05-24 17:43:34 ----A---- C:\WINDOWS\system32\ncbservice.dll
2016-05-24 17:43:34 ----A---- C:\WINDOWS\system32\httpprxm.dll
2016-05-24 17:43:34 ----A---- C:\WINDOWS\system32\adhsvc.dll
2016-05-24 17:43:33 ----A---- C:\WINDOWS\system32\keepaliveprovider.dll
2016-05-24 17:43:33 ----A---- C:\WINDOWS\system32\httpprxp.dll
2016-05-24 17:43:33 ----A---- C:\WINDOWS\system32\adhapi.dll
2016-05-24 17:41:24 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2016-05-24 17:40:40 ----A---- C:\WINDOWS\system32\appidpolicyconverter.exe
2016-05-24 17:40:39 ----A---- C:\WINDOWS\system32\appidapi.dll
2016-05-24 17:40:37 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2016-05-24 17:40:36 ----A---- C:\WINDOWS\system32\appidsvc.dll
2016-05-24 17:40:31 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2016-05-24 17:39:35 ----A---- C:\WINDOWS\system32\rastls.dll
2016-05-24 17:39:34 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-05-24 17:38:21 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-05-24 17:38:21 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-05-24 17:37:52 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2016-05-24 17:37:52 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2016-05-24 17:37:52 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2016-05-24 17:37:51 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2016-05-24 17:37:51 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2016-05-24 17:37:50 ----A---- C:\WINDOWS\system32\drivers\usbohci.sys
2016-05-24 17:37:50 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2016-05-24 17:37:21 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2016-05-24 17:37:20 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2016-05-24 17:20:18 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-05-24 17:20:08 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-05-24 17:18:47 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-05-24 17:18:41 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-05-24 17:18:41 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-05-24 17:18:40 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-05-24 17:18:37 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2016-05-24 17:18:34 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-05-24 17:18:32 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-05-24 17:01:25 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-05-24 17:01:24 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2016-05-24 17:01:24 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-05-24 17:01:24 ----A---- C:\WINDOWS\system32\nlaapi.dll
2016-05-24 17:01:03 ----A---- C:\WINDOWS\system32\wer.dll
2016-05-24 17:01:01 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2016-05-24 17:01:01 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-05-24 17:01:01 ----A---- C:\WINDOWS\system32\WerFault.exe
2016-05-24 17:01:00 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2016-05-24 17:01:00 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2016-05-24 17:01:00 ----A---- C:\WINDOWS\system32\Faultrep.dll
2016-05-24 17:00:59 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2016-05-24 17:00:32 ----A---- C:\WINDOWS\SYSWOW64\duser.dll
2016-05-24 17:00:32 ----A---- C:\WINDOWS\system32\duser.dll
2016-05-24 17:00:30 ----A---- C:\WINDOWS\system32\wlroamextension.dll
2016-05-24 17:00:29 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\SYSWOW64\wlroamextension.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\taskkill.exe
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\hotspotauth.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2016-05-24 17:00:27 ----A---- C:\WINDOWS\SYSWOW64\taskkill.exe
2016-05-24 17:00:27 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2016-05-24 17:00:27 ----A---- C:\WINDOWS\system32\tasklist.exe
2016-05-24 17:00:26 ----A---- C:\WINDOWS\SYSWOW64\tasklist.exe
2016-05-24 17:00:26 ----A---- C:\WINDOWS\system32\wersvc.dll
2016-05-24 17:00:24 ----A---- C:\WINDOWS\system32\drivers\BtaMPM.sys
2016-05-24 17:00:23 ----A---- C:\WINDOWS\system32\drivers\BthhfHid.sys
2016-05-24 16:59:48 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-05-24 16:59:48 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-05-24 16:59:48 ----A---- C:\WINDOWS\system32\msi.dll
2016-05-24 16:59:48 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-05-24 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2016-05-24 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2016-05-24 16:59:46 ----A---- C:\WINDOWS\system32\msihnd.dll
2016-05-24 16:59:46 ----A---- C:\WINDOWS\system32\msiexec.exe
2016-05-24 16:59:46 ----A---- C:\WINDOWS\system32\consent.exe
2016-05-24 16:58:59 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2016-05-24 16:58:57 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-05-24 16:58:45 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-24 16:58:44 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-24 16:58:44 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-05-24 16:58:43 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-05-24 16:58:43 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-05-24 16:58:43 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-05-24 16:57:12 ----A---- C:\WINDOWS\system32\appinfo.dll
2016-05-24 16:54:31 ----A---- C:\WINDOWS\system32\objsel.dll
2016-05-24 16:54:31 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2016-05-24 16:54:30 ----A---- C:\WINDOWS\SYSWOW64\objsel.dll
2016-05-24 16:54:29 ----A---- C:\WINDOWS\SYSWOW64\dimsroam.dll
2016-05-24 16:54:29 ----A---- C:\WINDOWS\system32\dimsroam.dll
2016-05-24 16:53:56 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-05-24 16:53:56 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-05-24 16:53:55 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-05-24 16:53:55 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-05-24 16:52:30 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2016-05-24 16:52:29 ----A---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2016-05-24 16:33:56 ----A---- C:\WINDOWS\system32\win32k.sys
2016-05-24 16:33:54 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-05-24 16:33:54 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-05-24 16:33:53 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-05-24 16:33:53 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-05-24 16:33:53 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-05-24 16:33:52 ----A---- C:\WINDOWS\system32\user32.dll
2016-05-24 16:33:51 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-05-24 16:15:58 ----A---- C:\WINDOWS\system32\packager.dll
2016-05-24 16:15:54 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2016-05-24 15:10:42 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2016-05-24 15:10:41 ----A---- C:\WINDOWS\system32\pku2u.dll
2016-05-24 15:03:17 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-05-24 15:03:17 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-05-24 15:02:13 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-05-24 15:02:11 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2016-05-24 15:02:10 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-05-24 15:02:08 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-05-24 15:02:05 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2016-05-24 15:02:05 ----A---- C:\WINDOWS\system32\lpk.dll
2016-05-24 14:54:32 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-05-24 14:54:29 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-05-24 14:49:56 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-05-24 14:49:56 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-05-24 14:49:30 ----A---- C:\WINDOWS\system32\InkEd.dll
2016-05-24 14:49:10 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2016-05-24 14:49:10 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnet.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2016-05-24 14:47:02 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2016-05-24 14:47:02 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2016-05-24 14:47:02 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-05-24 14:47:01 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2016-05-24 14:47:01 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-05-24 14:47:01 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-05-24 14:47:00 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-05-24 14:47:00 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-05-24 14:47:00 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-05-24 14:46:59 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\mf.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\system32\evr.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-05-24 14:46:57 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2016-05-24 14:46:56 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2016-05-24 14:46:56 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2016-05-24 14:46:56 ----A---- C:\WINDOWS\system32\winmde.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\quartz.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-05-24 14:46:54 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2016-05-24 14:46:54 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-05-24 14:46:54 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-05-24 14:46:54 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2016-05-24 14:46:54 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2016-05-24 14:46:54 ----A---- C:\WINDOWS\system32\mfps.dll
2016-05-24 14:46:53 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-05-24 14:46:52 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-05-24 14:46:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-05-24 14:46:49 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-05-24 14:46:48 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-05-24 14:46:48 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-05-24 14:46:47 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-05-24 14:46:45 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-05-24 14:46:44 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2016-05-24 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2016-05-24 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-05-24 14:46:42 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2016-05-24 14:46:42 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\qasf.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\qasf.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\devenum.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-05-24 14:46:40 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2016-05-24 14:46:40 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2016-05-24 14:46:39 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2016-05-24 14:46:26 ----A---- C:\WINDOWS\system32\comctl32.dll
2016-05-24 14:46:25 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2016-05-24 14:40:21 ----A---- C:\WINDOWS\system32\shell32.dll
2016-05-24 14:40:20 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-05-24 14:35:10 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-05-24 14:35:10 ----A---- C:\WINDOWS\system32\qedit.dll
2016-05-24 14:32:50 ----A---- C:\WINDOWS\system32\sysmain.dll
2016-05-24 14:32:47 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2016-05-24 14:31:24 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-05-24 14:31:04 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-05-24 14:31:04 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-05-24 14:25:02 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-05-24 14:25:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-05-24 14:20:44 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2016-05-24 14:20:44 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2016-05-24 14:20:44 ----A---- C:\WINDOWS\system32\scrrun.dll
2016-05-24 14:20:44 ----A---- C:\WINDOWS\system32\scrobj.dll
2016-05-24 14:20:44 ----A---- C:\WINDOWS\system32\cscript.exe
2016-05-24 14:20:43 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2016-05-24 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2016-05-24 14:20:40 ----A---- C:\WINDOWS\system32\notepad.exe
2016-05-24 14:20:40 ----A---- C:\WINDOWS\notepad.exe
2016-05-24 13:16:40 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-24 13:16:37 ----A---- C:\WINDOWS\system32\winload.exe
2016-05-24 13:16:37 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-05-24 13:16:37 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-05-24 13:16:36 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-05-24 13:16:36 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-05-24 13:16:33 ----A---- C:\WINDOWS\system32\winresume.exe
2016-05-24 13:16:33 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-05-24 13:16:31 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\adtschema.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\wdigest.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\TSpkg.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\sspisrv.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\lsm.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\lsass.exe
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\credssp.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\system32\workerdd.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\system32\msaudite.dll
2016-05-24 13:13:15 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-05-24 12:27:30 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2016-05-24 12:27:30 ----A---- C:\WINDOWS\system32\wups2.dll
2016-05-24 12:27:30 ----A---- C:\WINDOWS\system32\wups.dll
2016-05-24 12:27:29 ----A---- C:\WINDOWS\system32\wushareduxresources.dll
2016-05-24 12:26:03 ----D---- C:\Users\europe\AppData\Roaming\ProductData
2016-05-24 12:26:03 ----D---- C:\Program Files (x86)\IObit
2016-05-24 12:26:02 ----D---- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-05-24 12:25:59 ----D---- C:\ProgramData\ProductData
2016-05-24 12:25:58 ----D---- C:\Users\europe\AppData\Roaming\IObit
2016-05-24 12:25:58 ----D---- C:\ProgramData\IObit
2016-05-24 12:24:59 ----D---- C:\Users\europe\AppData\Roaming\Macromedia
2016-05-24 12:18:35 ----D---- C:\Users\europe\AppData\Roaming\hpqlog
2016-05-24 12:15:13 ----A---- C:\WINDOWS\system32\netcfg-62515.txt
2016-05-24 12:13:41 ----A---- C:\WINDOWS\system32\netcfg-2009562.txt
2016-05-24 12:13:33 ----A---- C:\WINDOWS\system32\netcfg-2001531.txt
2016-05-24 12:13:33 ----A---- C:\WINDOWS\system32\netcfg-2001312.txt
2016-05-24 12:02:17 ----D---- C:\Users\europe\AppData\Roaming\ATI
2016-05-24 12:00:23 ----D---- C:\Users\europe\AppData\Roaming\Adobe
2016-05-24 11:58:40 ----D---- C:\Users\europe\AppData\Roaming\Synaptics
2016-05-24 11:57:32 ----HD---- C:\Program Files (x86)\Uninstall Information
2016-05-24 11:57:22 ----D---- C:\$SysReset
2016-05-24 11:47:54 ----A---- C:\WINDOWS\system32\netcfg-462046.txt
2016-05-24 11:47:53 ----A---- C:\WINDOWS\system32\netcfg-461421.txt
2016-05-24 11:44:22 ----A---- C:\WINDOWS\system32\netcfg-250609.txt
2016-05-24 11:42:08 ----SD---- C:\Users\europe\AppData\Roaming\Microsoft
2016-05-24 11:39:43 ----D---- C:\WINDOWS\SoftwareDistribution
2016-05-24 11:37:18 ----A---- C:\WINDOWS\system32\netcfg-121765.txt
2016-05-24 11:36:57 ----A---- C:\WINDOWS\system32\netcfg-101625.txt
2016-05-17 19:34:17 ----D---- C:\CCAV
2016-05-15 01:03:05 ----D---- C:\AVG_Remover

======List of files/folders modified in the last 1 month======

2016-06-02 22:44:19 ----D---- C:\WINDOWS\Prefetch
2016-06-02 22:41:53 ----D---- C:\WINDOWS\system32\sru
2016-06-02 19:33:20 ----D---- C:\WINDOWS\system32\NDF
2016-06-02 19:26:38 ----RD---- C:\WINDOWS\System32
2016-06-02 19:26:38 ----D---- C:\WINDOWS\Inf
2016-06-02 19:26:38 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-02 19:22:47 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-06-02 19:18:51 ----SHD---- C:\System Volume Information
2016-06-02 19:17:44 ----D---- C:\AdwCleaner
2016-06-02 15:47:43 ----RD---- C:\Program Files
2016-06-02 09:57:17 ----D---- C:\WINDOWS
2016-06-02 09:44:53 ----D---- C:\WINDOWS\system32\Drivers
2016-06-02 09:43:21 ----D---- C:\WINDOWS\system32\Tasks
2016-06-02 09:43:20 ----D---- C:\WINDOWS\Tasks
2016-06-02 09:37:55 ----A---- C:\WINDOWS\system.ini
2016-06-02 09:37:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-06-02 09:31:06 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-06-02 09:31:06 ----D---- C:\WINDOWS\SysWOW64
2016-06-02 09:31:06 ----D---- C:\WINDOWS\apppatch
2016-06-02 09:31:05 ----D---- C:\Program Files (x86)\Common Files
2016-06-02 05:59:51 ----D---- C:\WINDOWS\system32\LogFiles
2016-06-01 21:23:47 ----D---- C:\WINDOWS\system32\catroot2
2016-06-01 15:14:46 ----SHD---- C:\WINDOWS\Installer
2016-06-01 15:14:32 ----D---- C:\Config.Msi
2016-06-01 15:14:10 ----D---- C:\WINDOWS\system32\catroot
2016-06-01 15:14:09 ----D---- C:\WINDOWS\system32\DriverStore
2016-06-01 14:57:16 ----D---- C:\ProgramData
2016-05-31 22:40:18 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-05-31 22:40:18 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-31 22:40:17 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2016-05-31 22:18:44 ----D---- C:\WINDOWS\system32\config
2016-05-31 18:30:10 ----RD---- C:\Program Files (x86)
2016-05-31 10:23:05 ----D---- C:\WINDOWS\debug
2016-05-31 10:19:01 ----D---- C:\WINDOWS\WinSxS
2016-05-31 09:58:55 ----D---- C:\WINDOWS\Microsoft.NET
2016-05-31 00:27:25 ----RSD---- C:\WINDOWS\assembly
2016-05-31 00:26:52 ----D---- C:\WINDOWS\Logs
2016-05-31 00:26:34 ----D---- C:\WINDOWS\SYSWOW64\Adobe
2016-05-31 00:25:53 ----D---- C:\WINDOWS\twain_32
2016-05-29 22:49:17 ----D---- C:\WINDOWS\CbsTemp
2016-05-29 22:28:36 ----D---- C:\WINDOWS\system32\drivers\NISx64
2016-05-29 22:28:21 ----HD---- C:\WINDOWS\ELAMBKUP
2016-05-29 22:27:58 ----D---- C:\WINDOWS\system32\wdi
2016-05-29 22:26:33 ----D---- C:\$Windows.~BT
2016-05-29 22:02:01 ----D---- C:\Recovery
2016-05-29 18:32:40 ----D---- C:\WINDOWS\Registration
2016-05-28 01:50:56 ----D---- C:\ProgramData\Norton
2016-05-26 20:51:26 ----D---- C:\Program Files\Common Files\Symantec Shared
2016-05-26 20:47:38 ----D---- C:\Program Files (x86)\Norton Internet Security
2016-05-26 13:03:51 ----RSD---- C:\WINDOWS\Media
2016-05-26 13:01:42 ----D---- C:\Program Files\Common Files
2016-05-26 11:53:45 ----D---- C:\Program Files (x86)\Microsoft Office
2016-05-26 11:53:37 ----RSD---- C:\WINDOWS\Fonts
2016-05-26 11:53:35 ----SD---- C:\ProgramData\Microsoft
2016-05-26 11:53:35 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-05-26 11:52:43 ----D---- C:\Program Files\Common Files\microsoft shared
2016-05-26 11:49:59 ----D---- C:\WINDOWS\ShellNew
2016-05-26 11:35:40 ----D---- C:\WINDOWS\rescache
2016-05-26 01:40:28 ----D---- C:\WINDOWS\SYSWOW64\sda
2016-05-26 01:21:11 ----D---- C:\Program Files\Windows Sidebar
2016-05-26 01:21:11 ----D---- C:\Program Files (x86)\Windows Sidebar
2016-05-26 00:42:51 ----D---- C:\WINDOWS\AppCompat
2016-05-25 20:49:02 ----D---- C:\WINDOWS\system32\Boot
2016-05-25 20:48:48 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2016-05-25 20:48:29 ----RD---- C:\WINDOWS\ToastData
2016-05-25 20:48:14 ----D---- C:\Program Files\Windows Media Player
2016-05-25 20:48:14 ----D---- C:\Program Files (x86)\Windows Media Player
2016-05-25 20:48:13 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-05-25 20:47:55 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-05-25 20:47:54 ----D---- C:\WINDOWS\system32\sk-SK
2016-05-25 20:47:52 ----D---- C:\WINDOWS\system32\oobe
2016-05-25 20:47:52 ----D---- C:\WINDOWS\system32\en-US
2016-05-25 20:47:18 ----D---- C:\WINDOWS\system32\wbem
2016-05-25 20:46:38 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2016-05-25 20:46:29 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-05-25 20:44:44 ----D---- C:\WINDOWS\system32\drivers\en-US
2016-05-25 20:44:37 ----D---- C:\WINDOWS\WinStore
2016-05-25 17:10:56 ----D---- C:\ProgramData\CyberLink
2016-05-25 16:58:22 ----D---- C:\SWSetup
2016-05-25 15:28:06 ----D---- C:\Program Files (x86)\Hewlett-Packard
2016-05-25 15:25:43 ----D---- C:\Program Files (x86)\CyberLink
2016-05-25 15:21:06 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-05-25 09:51:36 ----D---- C:\Program Files\Hewlett-Packard
2016-05-25 08:25:36 ----D---- C:\Program Files (x86)\Windows Mail
2016-05-25 08:25:35 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-25 08:25:34 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-05-25 08:25:30 ----D---- C:\Program Files (x86)\Windows Defender
2016-05-25 08:25:29 ----D---- C:\Program Files\Windows Mail
2016-05-25 08:25:29 ----D---- C:\Program Files\Internet Explorer
2016-05-25 08:25:26 ----D---- C:\Program Files\Windows Journal
2016-05-25 08:25:25 ----D---- C:\Program Files\Windows Photo Viewer
2016-05-25 08:25:22 ----D---- C:\Program Files\Common Files\System
2016-05-25 08:25:20 ----D---- C:\Program Files\Windows Defender
2016-05-25 08:25:18 ----D---- C:\WINDOWS\SYSWOW64\oobe
2016-05-25 08:25:18 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2016-05-25 08:25:17 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2016-05-25 08:24:24 ----D---- C:\WINDOWS\SYSWOW64\WCN
2016-05-25 08:24:11 ----D---- C:\WINDOWS\system32\migwiz
2016-05-25 08:24:11 ----D---- C:\WINDOWS\PolicyDefinitions
2016-05-25 08:24:07 ----D---- C:\WINDOWS\system32\slmgr
2016-05-25 08:24:07 ----D---- C:\WINDOWS\system32\en-GB
2016-05-25 08:21:55 ----D---- C:\WINDOWS\system32\WCN
2016-05-25 08:21:19 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-05-25 08:17:35 ----D---- C:\WINDOWS\SYSWOW64\winrm
2016-05-25 08:17:34 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2016-05-25 08:17:33 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-05-25 08:15:46 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2016-05-25 08:15:46 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-05-25 08:15:46 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-05-25 08:15:41 ----D---- C:\WINDOWS\SYSWOW64\Com
2016-05-25 08:15:19 ----D---- C:\WINDOWS\system32\winrm
2016-05-25 08:15:16 ----D---- C:\WINDOWS\system32\Sysprep
2016-05-25 08:15:15 ----D---- C:\WINDOWS\system32\inetsrv
2016-05-25 08:15:14 ----D---- C:\WINDOWS\system32\migration
2016-05-25 08:15:13 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-25 08:11:29 ----D---- C:\WINDOWS\system32\MUI
2016-05-25 08:11:29 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-05-25 08:11:29 ----D---- C:\WINDOWS\system32\Dism
2016-05-25 08:10:30 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2016-05-25 08:10:02 ----D---- C:\WINDOWS\system32\Com
2016-05-25 08:03:14 ----D---- C:\Program Files (x86)\Qualcomm Atheros
2016-05-25 08:02:29 ----D---- C:\ProgramData\Qualcomm Atheros
2016-05-25 07:59:28 ----D---- C:\Program Files\IDT
2016-05-25 00:31:50 ----D---- C:\WINDOWS\servicing
2016-05-25 00:10:55 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-05-24 22:03:38 ----D---- C:\HP
2016-05-24 19:48:47 ----DC---- C:\WINDOWS\Panther
2016-05-24 12:26:58 ----D---- C:\WINDOWS\system32\restore
2016-05-24 12:13:12 ----D---- C:\WINDOWS\SYSWOW64\config
2016-05-24 12:00:17 ----RD---- C:\Program Files (x86)\Online Services
2016-05-24 11:59:39 ----D---- C:\SYSTEM.SAV
2016-05-24 11:44:03 ----D---- C:\WINDOWS\system32\Recovery
2016-05-24 11:42:10 ----RD---- C:\Users

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem4.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2012-07-10 35496]
R0 hpdskflt;@oem23.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2016-05-26 27552]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R3 Accelerometer;@oem23.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-08-02 10280960]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-08-02 368640]
R3 AthBTPort;@oem21.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-05-16 89800]
R3 athr;@oem39.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athrx.sys [2016-05-26 4137472]
R3 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20150921.003\BHDrvx64.sys [2015-09-24 1650936]
R3 BTATH_A2DP;@oem20.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-05-16 347336]
R3 btath_avdt;@oem20.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-05-16 115912]
R3 BTATH_BUS;@oem17.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-05-16 34384]
R3 BTATH_HCRP;@oem24.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-05-16 179432]
R3 BTATH_LWFLT;@oem25.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-05-16 77464]
R3 BTATH_RCP;@oem27.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-05-16 136784]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-05-26 600776]
R3 BthEnum;@tdibth.inf,%BthEnum.DisplayName%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 ccSet_NIS;NIS Settings Manager; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\ccSetx64.sys [2015-09-24 173808]
R3 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-05-24 497392]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2016-05-24 156912]
R3 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20160601.001\IDSvia64.sys [2016-05-27 876248]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 intelkmd;intelkmd; C:\WINDOWS\system32\DRIVERS\igdpmd64.sys [2012-08-24 9000256]
R3 MEIx64;@oem35.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-05-26 185600]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160602.005\ENG64.SYS [2016-05-06 138456]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160602.005\EX64.SYS [2016-05-06 2148056]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 RTL8168;@oem41.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2016-05-26 936192]
R3 rtsuvc;@oem3.inf,%rtsuvc.ServiceDisplayName%;Realtek USB 2.0 PC Camera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2016-05-31 9113816]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\WINDOWS\System32\Drivers\NISx64\1606000.08E\SRTSP64.SYS [2016-02-24 928504]
R3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\SRTSPX64.SYS [2015-09-24 50936]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10329; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2016-05-25 542208]
R3 SymEFASI;Symantec Extended File Attributes (SI); C:\WINDOWS\system32\drivers\NISx64\1606000.08E\SYMEFASI64.SYS [2016-02-24 1621232]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2016-05-26 111344]
R3 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\Ironx64.SYS [2016-02-24 295664]
R3 SymNetS;Symantec Network Security WFP Driver; C:\WINDOWS\System32\Drivers\NISx64\1606000.08E\SYMNETS.SYS [2016-02-24 577768]
R3 SynTP;@oem29.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-05-25 495856]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S0 SymELAM;Symantec ELAM Driver; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\SymELAM.sys [2015-09-24 24192]
S3 ATHDFU;@oem18.inf,%AthDfu.SvcDesc%;Qualcomm Atheros Valkyrie USB BootROM; C:\WINDOWS\System32\Drivers\AthDfu.sys [2012-08-19 55448]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
S3 lehidmini;@oem28.inf,%LEHidMini%;Bluetooth Low Energy Hid Device; C:\WINDOWS\System32\drivers\leath_hid.sys [2012-08-19 39704]
S3 RSP2STOR;@oem40.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2016-05-26 328920]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-24 41272]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-05-25 33008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-06 210560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdvancedSystemCareService9;Advanced SystemCare Service 9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [2016-01-05 446240]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2012-08-02 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2012-09-20 29696]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-05-16 310912]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-08-10 85504]
R2 hpsrv;@oem23.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-09-24 31040]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-09-07 35232]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-14 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-04-22 2960160]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe [2016-02-26 289080]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10129; C:\Program Files\IDT\WDM\STacSV64.exe [2016-05-25 323072]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-09-06 1001376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-25 154440]
S3 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2012-08-24 276288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-27 43616]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-25 154440]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\WINDOWS\system32\svchost.exe [2012-09-20 29696]

-----------------EOF-----------------

Re: mrzne ntbk

Napsal: 03 čer 2016 17:51
od Rudy
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]/64
[-HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}]/64

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Doporučuji odinstalovat AdvancedSystemCare. Tento čistič vidí problémy i tam, kde nejsou a laik si jím snadno může poškodit systém.

Re: mrzne ntbk

Napsal: 03 čer 2016 18:38
od airplane
log otm


All processes killed
========== FILES ==========
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}\ not found.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}\ deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes

User: Default User

User: DefaultAppPool
->Temp folder emptied: 0 bytes

User: e
->Temp folder emptied: 9039024 bytes
->Temporary Internet Files folder emptied: 128 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 8684779 bytes
->Flash cache emptied: 470 bytes

User: k
->Temp folder emptied: 0 bytes
->Java cache emptied: 308264 bytes

User: Public
->Temp folder emptied: 0 bytes

User: v
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 19012 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 17,00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Default

User: Default User

User: DefaultAppPool

User: e
->Flash cache emptied: 0 bytes


Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 06032016_192543

Files moved on Reboot...
C:\Users\europe\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.

Registry entries deleted on Reboot...




+ pripajam log z rsit

Re: mrzne ntbk

Napsal: 03 čer 2016 18:39
od airplane
Logfile of random's system information tool 1.10 (written by random/random)
Run by europe at 2016-06-03 19:32:08
Microsoft Windows 8
System drive C: has 360 GB (79%) free of 458 GB
Total RAM: 3986 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:32:16, on 3.6.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17568)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe
C:\Program Files\trend micro\europe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKCU\..\Run: [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Advanced SystemCare 9] "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 9 (AdvancedSystemCareService9) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem23.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10129 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 10403 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
dashost.exe {7774f2dc-65ba-41e7-8a21f4d415ae9745}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\msiexec.exe /V
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskeng.exe {6ABAFEE3-FF7A-40A2-AF7D-B50BA923DE21}
"C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\06032016_192543.log
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\diMaster.dll" /prefetch:1
"C:\WINDOWS\System32\hkcmd.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" -byrunkey
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe" /c /a /s UserSession
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\WSCStub.exe" /taskschd
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0

wmiadap.exe /F /T /R
"C:\Users\europe\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\ASC9_SkipUac_europe.job - C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /SkipUac
C:\WINDOWS\tasks\HPCeeScheduleForeurope.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForeurope (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 209504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21 1051320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll [2016-02-21 805560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 6141528]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21 1051320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\coIEPlg.dll [2016-02-21 805560]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-24 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-24 398656]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2016-05-25 1664000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Power2GoExpress8"=C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [2013-01-27 1711680]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-05-13 8721624]
"Advanced SystemCare 9"=C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2016-04-26 2022688]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2012-07-26 1475072]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-05-31 7943072]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-06 642216]
"HP CoolSense"=C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2012-11-05 1343904]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-09-07 581024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2016-06-03 19:25:43 ----D---- C:\_OTM
2016-06-02 15:47:43 ----D---- C:\rsit
2016-06-02 15:47:43 ----D---- C:\Program Files\trend micro
2016-06-02 09:44:49 ----D---- C:\WINDOWS\temp
2016-06-02 09:44:47 ----A---- C:\ComboFix.txt
2016-06-02 09:38:16 ----SHD---- C:\$RECYCLE.BIN
2016-06-02 09:25:06 ----A---- C:\WINDOWS\zip.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\SWXCACLS.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\SWSC.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\SWREG.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\sed.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\PEV.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\NIRCMD.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\MBR.exe
2016-06-02 09:25:06 ----A---- C:\WINDOWS\grep.exe
2016-06-02 09:24:56 ----D---- C:\Qoobox
2016-06-02 09:24:17 ----D---- C:\WINDOWS\erdnt
2016-06-01 14:57:19 ----D---- C:\Users\europe\AppData\Roaming\SUPERAntiSpyware.com
2016-06-01 14:56:01 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2016-06-01 14:56:01 ----D---- C:\Program Files\SUPERAntiSpyware
2016-05-31 22:13:08 ----ASH---- C:\pagefile.sys
2016-05-31 18:30:52 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-05-31 18:30:10 ----D---- C:\ProgramData\Malwarebytes
2016-05-31 18:30:10 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-31 18:30:10 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2016-05-31 18:30:10 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2016-05-31 18:30:10 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2016-05-31 00:28:56 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-05-31 00:28:56 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2016-05-31 00:28:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2016-05-31 00:28:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2016-05-31 00:28:55 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2016-05-31 00:28:54 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2016-05-31 00:28:52 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2016-05-31 00:28:51 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2016-05-31 00:28:51 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2016-05-31 00:28:51 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2016-05-31 00:28:50 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2016-05-31 00:28:47 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2016-05-31 00:28:46 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2016-05-31 00:28:45 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2016-05-31 00:28:45 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2016-05-31 00:28:44 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2016-05-31 00:28:44 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2016-05-31 00:28:40 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2016-05-31 00:28:36 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2016-05-31 00:28:36 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2016-05-31 00:28:36 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2016-05-31 00:28:35 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2016-05-31 00:28:34 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2016-05-31 00:28:34 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2016-05-31 00:28:33 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2016-05-31 00:28:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2016-05-31 00:28:32 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2016-05-31 00:28:30 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2016-05-31 00:28:30 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2016-05-31 00:28:29 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2016-05-31 00:28:27 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2016-05-31 00:28:24 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2016-05-31 00:28:23 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2016-05-31 00:28:20 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2016-05-31 00:28:19 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2016-05-31 00:28:18 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2016-05-31 00:28:17 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2016-05-31 00:28:17 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2016-05-31 00:28:16 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2016-05-31 00:28:15 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2016-05-31 00:28:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2016-05-31 00:28:14 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2016-05-31 00:28:11 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2016-05-31 00:28:10 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2016-05-31 00:28:08 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2016-05-31 00:28:07 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2016-05-31 00:28:06 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2016-05-31 00:28:04 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2016-05-31 00:28:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2016-05-31 00:28:02 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2016-05-31 00:28:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2016-05-31 00:28:00 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2016-05-31 00:28:00 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2016-05-31 00:27:59 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2016-05-31 00:27:58 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2016-05-31 00:27:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2016-05-31 00:27:56 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2016-05-31 00:27:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2016-05-31 00:27:55 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2016-05-31 00:27:54 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2016-05-31 00:27:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2016-05-31 00:27:53 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2016-05-31 00:27:51 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2016-05-31 00:27:50 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2016-05-31 00:27:49 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2016-05-31 00:27:48 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2016-05-31 00:27:47 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2016-05-31 00:27:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2016-05-31 00:27:46 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2016-05-31 00:27:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2016-05-31 00:27:44 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2016-05-31 00:27:44 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2016-05-31 00:27:43 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2016-05-31 00:27:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2016-05-31 00:27:42 ----A---- C:\WINDOWS\system32\d3dx10.dll
2016-05-31 00:27:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2016-05-31 00:27:34 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2016-05-31 00:27:33 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2016-05-31 00:27:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2016-05-31 00:27:32 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2016-05-31 00:27:32 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2016-05-31 00:27:31 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2016-05-31 00:27:30 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2016-05-31 00:27:30 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2016-05-31 00:27:29 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2016-05-31 00:27:29 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2016-05-31 00:27:28 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2016-05-31 00:27:28 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2016-05-31 00:27:26 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2016-05-31 00:27:25 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2016-05-31 00:27:18 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2016-05-31 00:27:18 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2016-05-31 00:27:17 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2016-05-31 00:27:17 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2016-05-31 00:27:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2016-05-31 00:27:16 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2016-05-31 00:27:15 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2016-05-31 00:27:15 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2016-05-31 00:27:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2016-05-31 00:27:14 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2016-05-31 00:27:13 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2016-05-31 00:27:13 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2016-05-31 00:27:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2016-05-31 00:27:12 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2016-05-31 00:27:12 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2016-05-31 00:27:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2016-05-31 00:27:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2016-05-31 00:27:11 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2016-05-31 00:26:06 ----D---- C:\ProgramData\Package Cache
2016-05-31 00:25:44 ----A---- C:\WINDOWS\SYSWOW64\RtCamX.dll
2016-05-31 00:25:44 ----A---- C:\WINDOWS\system32\RtCamX64.dll
2016-05-31 00:25:44 ----A---- C:\WINDOWS\system32\drivers\rtsuvc.sys
2016-05-31 00:25:44 ----A---- C:\WINDOWS\RtsCM64.exe
2016-05-31 00:25:44 ----A---- C:\WINDOWS\RtCamU64.exe
2016-05-30 23:43:43 ----D---- C:\WINDOWS\Minidump
2016-05-28 23:33:14 ----D---- C:\Program Files (x86)\Adobe
2016-05-28 23:32:49 ----D---- C:\ProgramData\Adobe
2016-05-28 23:16:52 ----HD---- C:\ProgramData\CanonIJScan
2016-05-26 13:09:21 ----HD---- C:\ProgramData\CanonIJEPPEX2
2016-05-26 13:09:21 ----HD---- C:\ProgramData\CanonEPP
2016-05-26 13:09:20 ----D---- C:\Users\europe\AppData\Roaming\Canon
2016-05-26 13:05:05 ----A---- C:\WINDOWS\system32\CNMXLMAT.DLL
2016-05-26 13:04:05 ----D---- C:\ProgramData\Canon IJ Network Tool
2016-05-26 13:03:51 ----A---- C:\WINDOWS\SYSWOW64\CNC_ATU.dll
2016-05-26 13:03:51 ----A---- C:\WINDOWS\SYSWOW64\CNC_ATL.dll
2016-05-26 13:03:50 ----A---- C:\WINDOWS\SYSWOW64\CNHMCA.dll
2016-05-26 13:01:42 ----D---- C:\Program Files\Common Files\CANON
2016-05-26 13:01:34 ----D---- C:\ProgramData\CanonIJWSpt
2016-05-26 12:58:42 ----D---- C:\Program Files\Canon
2016-05-26 12:57:28 ----HD---- C:\ProgramData\CanonBJ
2016-05-26 12:57:14 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2016-05-26 12:56:48 ----A---- C:\WINDOWS\system32\CNMLMAT.DLL
2016-05-26 12:56:34 ----A---- C:\WINDOWS\system32\CNMIUAT.DLL
2016-05-26 12:55:37 ----HD---- C:\Program Files\CanonBJ
2016-05-26 12:55:19 ----D---- C:\WINDOWS\system32\STRING
2016-05-26 12:55:19 ----A---- C:\WINDOWS\system32\CNMN6UI.DLL
2016-05-26 12:55:18 ----A---- C:\WINDOWS\SYSWOW64\CNMNPPM.DLL
2016-05-26 12:55:18 ----A---- C:\WINDOWS\system32\CNMN6PPM.DLL
2016-05-26 12:35:45 ----D---- C:\Program Files (x86)\Canon
2016-05-26 11:54:04 ----D---- C:\Program Files (x86)\Microsoft Works
2016-05-26 11:50:24 ----D---- C:\Program Files\Microsoft Office
2016-05-26 11:49:44 ----D---- C:\ProgramData\Microsoft Help
2016-05-26 11:40:24 ----D---- C:\Users\europe\AppData\Roaming\MyPhoneExplorer
2016-05-26 11:40:11 ----D---- C:\Program Files (x86)\MyPhoneExplorer
2016-05-26 01:31:05 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2016-05-26 01:31:05 ----A---- C:\WINDOWS\system32\drivers\Rt630x64.sys
2016-05-26 01:30:55 ----A---- C:\WINDOWS\SYSWOW64\RsCRIcon.dll
2016-05-26 01:30:55 ----A---- C:\WINDOWS\system32\RtCRX64.dll
2016-05-26 01:30:55 ----A---- C:\WINDOWS\system32\drivers\RtsP2Stor.sys
2016-05-26 01:30:55 ----A---- C:\WINDOWS\RtCRU64.exe
2016-05-26 01:30:11 ----A---- C:\WINDOWS\system32\drivers\athrx.sys
2016-05-26 01:29:59 ----A---- C:\WINDOWS\system32\drivers\btfilter.sys
2016-05-26 01:29:28 ----A---- C:\WINDOWS\system32\drivers\TeeDriverW8x64.sys
2016-05-26 01:08:53 ----D---- C:\WINDOWS\IObit
2016-05-26 01:08:22 ----A---- C:\WINDOWS\SYSWOW64\drivers\HWiNFO64A.SYS
2016-05-26 01:00:17 ----A---- C:\WINDOWS\system32\RegistryDefragBootTime.exe
2016-05-26 00:28:54 ----D---- C:\Program Files\CCleaner
2016-05-25 23:48:32 ----D---- C:\Program Files (x86)\Google
2016-05-25 21:42:24 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-05-25 21:38:37 ----D---- C:\Program Files\Common Files\AV
2016-05-25 20:47:19 ----SD---- C:\WINDOWS\system32\CompatTel
2016-05-25 20:47:19 ----D---- C:\WINDOWS\Migration
2016-05-25 20:47:18 ----D---- C:\WINDOWS\system32\appraiser
2016-05-25 20:44:36 ----D---- C:\WINDOWS\system32\AutoUpdateLicense
2016-05-25 18:13:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-05-25 18:13:26 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-05-25 18:12:04 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2016-05-25 17:56:48 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2016-05-25 17:56:42 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2016-05-25 17:54:06 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-05-25 17:53:32 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\invagent.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\devinv.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\aepic.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-05-25 17:53:31 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-05-25 17:53:29 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2016-05-25 17:53:29 ----A---- C:\WINDOWS\system32\apphelp.dll
2016-05-25 17:53:29 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2016-05-25 17:53:28 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2016-05-25 17:53:28 ----A---- C:\WINDOWS\system32\sdbinst.exe
2016-05-25 17:53:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-05-25 17:53:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-05-25 17:53:13 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-05-25 17:53:13 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-05-25 17:52:19 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2016-05-25 17:51:14 ----A---- C:\WINDOWS\system32\msctf.dll
2016-05-25 17:51:13 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-05-25 17:48:50 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2016-05-25 17:48:50 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2016-05-25 17:48:49 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\sysreset.exe
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\resetengmig.dll
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-05-25 17:48:49 ----A---- C:\WINDOWS\system32\ReAgent.dll
2016-05-25 17:47:24 ----A---- C:\WINDOWS\SYSWOW64\cryptdlg.dll
2016-05-25 17:47:24 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2016-05-25 17:47:03 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-05-25 17:47:02 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-05-25 17:47:02 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-05-25 17:47:02 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-05-25 17:46:57 ----A---- C:\WINDOWS\system32\msdrm.dll
2016-05-25 17:46:56 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcalua.exe
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcaevts.dll
2016-05-25 17:46:55 ----A---- C:\WINDOWS\system32\pcadm.dll
2016-05-25 17:46:54 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2016-05-25 17:46:54 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2016-05-25 17:46:54 ----A---- C:\WINDOWS\system32\wpdshext.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\VmHostAI.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\tssdisai.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\RDWebAI.dll
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\poqexec.exe
2016-05-25 17:46:31 ----A---- C:\WINDOWS\system32\appserverai.dll
2016-05-25 17:46:28 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-05-25 17:46:28 ----A---- C:\WINDOWS\system32\esent.dll
2016-05-25 17:45:40 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-05-25 17:45:40 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-05-25 17:45:40 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-05-25 17:45:08 ----A---- C:\WINDOWS\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-05-25 17:43:56 ----A---- C:\WINDOWS\system32\msieftp.dll
2016-05-25 17:10:36 ----D---- C:\Users\europe\AppData\Roaming\CyberLink
2016-05-25 15:21:06 ----A---- C:\WINDOWS\system32\drivers\CLVirtualDrive.sys
2016-05-25 10:41:21 ----A---- C:\WINDOWS\system32\Display.dll
2016-05-25 10:41:20 ----A---- C:\WINDOWS\SYSWOW64\KBDKURD.DLL
2016-05-25 10:41:20 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2016-05-25 10:41:20 ----A---- C:\WINDOWS\system32\KBDKURD.DLL
2016-05-25 10:41:16 ----A---- C:\WINDOWS\system32\dskquota.dll
2016-05-25 10:41:15 ----A---- C:\WINDOWS\SYSWOW64\dskquota.dll
2016-05-25 10:40:57 ----A---- C:\WINDOWS\system32\hal.dll
2016-05-25 10:39:29 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-05-25 10:39:24 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2016-05-25 10:39:22 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2016-05-25 10:39:18 ----A---- C:\WINDOWS\system32\Windows.Storage.Compression.dll
2016-05-25 10:39:18 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-05-25 10:39:17 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-05-25 10:39:17 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-05-25 10:39:16 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-05-25 10:39:16 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2016-05-25 10:39:16 ----A---- C:\WINDOWS\system32\drivers\battc.sys
2016-05-25 10:39:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Compression.dll
2016-05-25 10:39:15 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2016-05-25 10:39:15 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-05-25 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2016-05-25 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2016-05-25 10:39:14 ----A---- C:\WINDOWS\system32\input.dll
2016-05-25 10:39:14 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2016-05-25 10:39:13 ----A---- C:\WINDOWS\system32\microsoft-windows-pdc.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\system32\mswsock.dll
2016-05-25 10:39:12 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2016-05-25 10:39:11 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2016-05-25 10:39:11 ----A---- C:\WINDOWS\system32\AppxSip.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2016-05-25 10:39:10 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2016-05-25 10:39:07 ----A---- C:\WINDOWS\SYSWOW64\kbdhebl3.dll
2016-05-25 10:39:07 ----A---- C:\WINDOWS\system32\kbdhebl3.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\system32\shdocvw.dll
2016-05-25 10:38:02 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\system32\wvc.dll
2016-05-25 10:37:57 ----A---- C:\WINDOWS\system32\wdc.dll
2016-05-25 10:37:18 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-05-25 10:37:15 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2016-05-25 10:37:14 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2016-05-25 10:37:14 ----A---- C:\WINDOWS\system32\WSDApi.dll
2016-05-25 10:37:14 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-05-25 10:37:14 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2016-05-25 10:37:13 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2016-05-25 10:37:13 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-05-25 10:36:07 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2016-05-25 10:36:07 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-05-25 10:36:06 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-05-25 10:36:04 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-05-25 10:36:04 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-05-25 10:35:59 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-05-25 10:35:57 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-05-25 10:35:57 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2016-05-25 10:35:53 ----A---- C:\WINDOWS\SYSWOW64\vds_ps.dll
2016-05-25 10:35:53 ----A---- C:\WINDOWS\system32\vdsldr.exe
2016-05-25 10:35:53 ----A---- C:\WINDOWS\system32\vds_ps.dll
2016-05-25 10:35:38 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-05-25 10:35:36 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-05-25 10:35:35 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-05-25 10:35:35 ----A---- C:\WINDOWS\explorer.exe
2016-05-25 10:35:33 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-05-25 10:35:25 ----A---- C:\WINDOWS\system32\vds.exe
2016-05-25 10:35:25 ----A---- C:\WINDOWS\system32\mscms.dll
2016-05-25 10:35:25 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\vdsutil.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\samlib.dll
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2016-05-25 10:35:24 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2016-05-25 10:35:23 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-05-25 10:35:22 ----A---- C:\WINDOWS\system32\drivers\BthAvrcpTg.sys
2016-05-25 10:35:19 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-05-25 10:34:27 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2016-05-25 10:34:10 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2016-05-25 10:34:08 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-05-25 10:34:01 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-05-25 10:33:55 ----A---- C:\WINDOWS\HelpPane.exe
2016-05-25 10:33:46 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-05-25 10:33:42 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-05-25 10:33:41 ----A---- C:\WINDOWS\system32\dafWCN.dll
2016-05-25 10:33:40 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-05-25 10:33:38 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2016-05-25 10:33:38 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-05-25 10:33:37 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2016-05-25 10:33:37 ----A---- C:\WINDOWS\system32\rdpclip.exe
2016-05-25 10:33:37 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-25 10:33:36 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2016-05-25 10:33:35 ----A---- C:\WINDOWS\system32\WcnApi.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\WcnEapPeerProxy.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\WcnEapAuthProxy.dll
2016-05-25 10:33:34 ----A---- C:\WINDOWS\system32\fdWCN.dll
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2016-05-25 10:33:32 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2016-05-25 10:33:31 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2016-05-25 10:33:31 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2016-05-25 10:33:31 ----A---- C:\WINDOWS\system32\drivers\fxppm.sys
2016-05-25 10:33:30 ----A---- C:\WINDOWS\system32\iscsilog.dll
2016-05-25 10:10:06 ----A---- C:\WINDOWS\system32\drivers\evbda.sys
2016-05-25 10:09:51 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-05-25 10:09:46 ----A---- C:\WINDOWS\system32\WinSAT.exe
2016-05-25 10:09:44 ----A---- C:\WINDOWS\system32\drivers\bxvbda.sys
2016-05-25 10:09:38 ----A---- C:\WINDOWS\system32\RacEngn.dll
2016-05-25 10:09:38 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-05-25 10:09:37 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-05-25 10:09:36 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-05-25 10:09:36 ----A---- C:\WINDOWS\system32\provcore.dll
2016-05-25 10:09:36 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2016-05-25 10:09:31 ----A---- C:\WINDOWS\system32\WinSATAPI.dll
2016-05-25 10:09:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-05-25 10:09:29 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2016-05-25 10:09:28 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-05-25 10:09:28 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2016-05-25 10:09:27 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-05-25 10:09:27 ----A---- C:\WINDOWS\system32\combase.dll
2016-05-25 10:09:26 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2016-05-25 10:09:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-05-25 10:09:25 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-05-25 10:09:25 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\taskeng.exe
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-05-25 10:09:24 ----A---- C:\WINDOWS\system32\bcdsrv.dll
2016-05-25 10:09:23 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-05-25 10:09:22 ----A---- C:\WINDOWS\system32\VAN.dll
2016-05-25 10:09:22 ----A---- C:\WINDOWS\system32\propsys.dll
2016-05-25 10:09:22 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-05-25 10:09:21 ----A---- C:\WINDOWS\SYSWOW64\WinSATAPI.dll
2016-05-25 10:09:20 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-05-25 10:09:19 ----A---- C:\WINDOWS\system32\mmcss.dll
2016-05-25 10:09:18 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-05-25 10:09:18 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2016-05-25 10:09:17 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2016-05-25 10:09:16 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2016-05-25 10:09:16 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\SYSWOW64\provcore.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\system32\ProximityService.dll
2016-05-25 10:09:15 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\SYSWOW64\avrt.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2016-05-25 10:09:14 ----A---- C:\WINDOWS\system32\avrt.dll
2016-05-25 10:09:13 ----A---- C:\WINDOWS\SYSWOW64\svchost.exe
2016-05-25 10:09:13 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-05-25 10:09:13 ----A---- C:\WINDOWS\SYSWOW64\batmeter.dll
2016-05-25 10:09:13 ----A---- C:\WINDOWS\system32\batmeter.dll
2016-05-25 10:09:12 ----A---- C:\WINDOWS\system32\perfdisk.dll
2016-05-25 10:09:11 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-05-25 10:09:11 ----A---- C:\WINDOWS\SYSWOW64\perfdisk.dll
2016-05-25 10:09:11 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-25 10:09:10 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2016-05-25 10:09:10 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2016-05-25 10:09:10 ----A---- C:\WINDOWS\system32\svchost.exe
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\system32\perfnet.dll
2016-05-25 10:09:09 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\lpksetup.exe
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\dwm.exe
2016-05-25 10:09:08 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2016-05-25 10:09:07 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-05-25 10:09:07 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2016-05-25 10:09:07 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-05-25 10:09:07 ----A---- C:\WINDOWS\system32\drvinst.exe
2016-05-25 10:09:07 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\SYSWOW64\perfnet.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\system32\webio.dll
2016-05-25 10:09:06 ----A---- C:\WINDOWS\system32\perfos.dll
2016-05-25 10:09:05 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2016-05-25 10:09:02 ----A---- C:\WINDOWS\system32\umpo.dll
2016-05-25 10:09:02 ----A---- C:\WINDOWS\system32\lpremove.exe
2016-05-25 10:09:02 ----A---- C:\WINDOWS\system32\drivers\ws2ifsl.sys
2016-05-25 10:09:00 ----A---- C:\WINDOWS\SYSWOW64\perfproc.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\SYSWOW64\perfos.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\SYSWOW64\perfctrs.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\system32\perfproc.dll
2016-05-25 10:09:00 ----A---- C:\WINDOWS\system32\perfctrs.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\shimeng.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\MUILanguageCleanup.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2016-05-25 10:08:59 ----A---- C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2016-05-25 10:08:22 ----A---- C:\WINDOWS\SYSWOW64\newdev.exe
2016-05-25 10:08:22 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2016-05-25 10:08:22 ----A---- C:\WINDOWS\SYSWOW64\ndadmin.exe
2016-05-25 10:08:22 ----A---- C:\WINDOWS\system32\newdev.exe
2016-05-25 10:08:22 ----A---- C:\WINDOWS\system32\newdev.dll
2016-05-25 10:08:22 ----A---- C:\WINDOWS\system32\ndadmin.exe
2016-05-25 10:08:05 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2016-05-25 10:08:05 ----A---- C:\WINDOWS\system32\wusa.exe
2016-05-25 10:07:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-25 10:07:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-05-25 10:07:34 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-05-25 10:07:34 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2016-05-25 10:07:26 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2016-05-25 10:07:15 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-05-25 10:07:15 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\SYSWOW64\winmmbase.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\SYSWOW64\winmm.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\WinSCard.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\winmmbase.dll
2016-05-25 10:07:13 ----A---- C:\WINDOWS\system32\winmm.dll
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\HdAudio.sys
2016-05-25 10:07:10 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\openfiles.exe
2016-05-25 10:07:09 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\Wwanadvui.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\openfiles.exe
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\LocationApi.dll
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2016-05-25 10:07:09 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2016-05-25 10:06:58 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-05-25 10:06:57 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2016-05-25 10:06:57 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-05-25 10:06:57 ----A---- C:\WINDOWS\system32\resutils.dll
2016-05-25 10:06:56 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-05-25 10:06:39 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2016-05-25 10:06:39 ----A---- C:\WINDOWS\system32\Robocopy.exe
2016-05-25 10:06:33 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2016-05-25 10:06:33 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2016-05-25 10:06:33 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2016-05-25 10:06:33 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2016-05-25 10:06:32 ----A---- C:\WINDOWS\system32\icfupgd.dll
2016-05-25 10:06:32 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys
2016-05-25 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2016-05-25 10:06:31 ----A---- C:\WINDOWS\system32\wfapigp.dll
2016-05-25 10:06:22 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-05-25 10:06:21 ----A---- C:\WINDOWS\system32\srvsvc.dll
2016-05-25 10:06:21 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-05-25 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\sscore.dll
2016-05-25 10:06:19 ----A---- C:\WINDOWS\system32\sscore.dll
2016-05-25 10:06:19 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-05-25 10:06:19 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-05-25 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\NotificationUI.exe
2016-05-25 10:06:08 ----A---- C:\WINDOWS\system32\AutoUpdate.exe
2016-05-25 10:06:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-05-25 10:06:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-05-25 10:06:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-05-25 10:06:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-05-25 10:06:05 ----A---- C:\WINDOWS\system32\kernel32.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\system32\gpedit.dll
2016-05-25 10:06:04 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2016-05-25 10:06:04 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-05-25 09:50:33 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2016-05-25 09:50:32 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-05-25 09:50:26 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-05-25 09:50:23 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2016-05-25 09:50:20 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-05-25 09:50:19 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-05-25 09:50:19 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-05-25 09:50:19 ----A---- C:\WINDOWS\system32\dwmapi.dll
2016-05-25 09:50:17 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-05-25 09:50:16 ----A---- C:\WINDOWS\system32\defragsvc.dll
2016-05-25 09:50:13 ----A---- C:\WINDOWS\SYSWOW64\KBDRUM.DLL
2016-05-25 09:50:13 ----A---- C:\WINDOWS\system32\KBDRUM.DLL
2016-05-25 09:50:13 ----A---- C:\WINDOWS\system32\Defrag.exe
2016-05-25 09:50:12 ----A---- C:\WINDOWS\SYSWOW64\KBDTAT.DLL
2016-05-25 09:50:12 ----A---- C:\WINDOWS\system32\KBDTAT.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDYAK.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDRU1.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDRU.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\SYSWOW64\KBDBASH.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDYAK.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDRU1.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDRU.DLL
2016-05-25 09:50:11 ----A---- C:\WINDOWS\system32\KBDBASH.DLL
2016-05-25 09:37:37 ----D---- C:\ProgramData\Atheros
2016-05-25 09:37:27 ----D---- C:\Users\europe\AppData\Roaming\Atheros
2016-05-25 09:26:15 ----D---- C:\Program Files (x86)\Bluetooth Suite
2016-05-25 08:02:19 ----A---- C:\WINDOWS\system32\drivers\athw8x.sys
2016-05-25 07:59:21 ----N---- C:\WINDOWS\system32\stapi64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\stlang64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\stcplx64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\stapo64.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EEP64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EEL64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EED64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\system32\EEA64A.dll
2016-05-25 07:59:21 ----A---- C:\WINDOWS\sttray64.exe
2016-05-25 07:59:20 ----D---- C:\WINDOWS\system32\SRSLabs
2016-05-25 07:58:26 ----A---- C:\WINDOWS\system32\drivers\stwrt64.sys
2016-05-25 07:58:19 ----A---- C:\WINDOWS\system32\st646425.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\SYSWOW64\SynTPCom.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\WdfCoInstaller01009.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\SynTPCo18.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2016-05-25 07:54:35 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2016-05-25 07:54:32 ----A---- C:\WINDOWS\SYSWOW64\SynCom.dll
2016-05-25 07:54:32 ----A---- C:\WINDOWS\system32\SynCOM.dll
2016-05-25 07:54:30 ----A---- C:\WINDOWS\system32\drivers\Smb_driver_Intel.sys

Re: mrzne ntbk

Napsal: 03 čer 2016 18:43
od airplane
2016-05-24 23:18:01 ----A---- C:\WINDOWS\SYSWOW64\eventcls.dll
2016-05-24 23:18:01 ----A---- C:\WINDOWS\system32\eventcls.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\system32\VSSVC.exe
2016-05-24 23:18:00 ----A---- C:\WINDOWS\system32\vsstrace.dll
2016-05-24 23:18:00 ----A---- C:\WINDOWS\system32\vssapi.dll
2016-05-24 21:59:54 ----D---- C:\Users\europe\AppData\Roaming\HewlettPackard
2016-05-24 21:40:47 ----D---- C:\Users\europe\AppData\Roaming\Hewlett-Packard
2016-05-24 21:30:18 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-24 21:30:05 ----A---- C:\WINDOWS\system32\netcfg-656875.txt
2016-05-24 21:30:01 ----A---- C:\WINDOWS\system32\netcfg-652921.txt
2016-05-24 21:23:33 ----A---- C:\WINDOWS\system32\netcfg-265484.txt
2016-05-24 20:44:31 ----D---- C:\WINDOWS\system32\MRT
2016-05-24 20:44:21 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-24 20:27:20 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2016-05-24 20:27:20 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-05-24 20:17:20 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-05-24 20:17:18 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2016-05-24 20:17:18 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2016-05-24 20:16:45 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2016-05-24 20:16:24 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2016-05-24 20:16:24 ----A---- C:\WINDOWS\system32\drivers\usbcir.sys
2016-05-24 20:14:51 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-05-24 20:14:50 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-05-24 20:14:45 ----A---- C:\WINDOWS\system32\localspl.dll
2016-05-24 20:14:44 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-05-24 20:14:44 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2016-05-24 20:14:41 ----A---- C:\WINDOWS\system32\wuaext.dll
2016-05-24 20:12:56 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2016-05-24 20:12:56 ----A---- C:\WINDOWS\system32\WebClnt.dll
2016-05-24 20:12:56 ----A---- C:\WINDOWS\system32\davclnt.dll
2016-05-24 20:12:55 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2016-05-24 20:12:40 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\system32\wucltux.dll
2016-05-24 20:12:38 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wuwebv.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wudriver.dll
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\wuapp.exe
2016-05-24 20:12:37 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-05-24 20:11:38 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2016-05-24 20:11:38 ----A---- C:\WINDOWS\system32\scesrv.dll
2016-05-24 20:10:59 ----A---- C:\WINDOWS\system32\tquery.dll
2016-05-24 20:10:58 ----A---- C:\WINDOWS\system32\wmp.dll
2016-05-24 20:10:56 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-05-24 20:10:55 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-05-24 20:10:52 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-05-24 20:10:46 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-05-24 20:10:43 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2016-05-24 20:10:41 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2016-05-24 20:10:40 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-05-24 20:10:40 ----A---- C:\WINDOWS\system32\kd_02_10ec.dll
2016-05-24 20:10:39 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2016-05-24 20:10:39 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-05-24 20:10:39 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2016-05-24 20:10:37 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-05-24 20:10:37 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-05-24 20:10:35 ----A---- C:\WINDOWS\system32\dwmredir.dll
2016-05-24 20:10:35 ----A---- C:\WINDOWS\system32\conhost.exe
2016-05-24 20:10:33 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-05-24 20:10:33 ----A---- C:\WINDOWS\system32\mssph.dll
2016-05-24 20:10:32 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2016-05-24 20:10:30 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-05-24 20:10:29 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-05-24 20:10:28 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-05-24 20:10:27 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-24 20:10:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-05-24 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\rascfg.dll
2016-05-24 20:10:21 ----A---- C:\WINDOWS\system32\ci.dll
2016-05-24 20:10:20 ----A---- C:\WINDOWS\system32\rascfg.dll
2016-05-24 20:10:20 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2016-05-24 20:10:19 ----A---- C:\WINDOWS\system32\XpsRasterService.dll
2016-05-24 20:10:19 ----A---- C:\WINDOWS\system32\fhengine.dll
2016-05-24 20:10:18 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2016-05-24 20:10:18 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-05-24 20:10:17 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-05-24 20:10:17 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-05-24 20:10:15 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2016-05-24 20:10:13 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2016-05-24 20:10:12 ----A---- C:\WINDOWS\SYSWOW64\XpsRasterService.dll
2016-05-24 20:10:12 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-05-24 20:10:12 ----A---- C:\WINDOWS\system32\kdvm.dll
2016-05-24 20:10:11 ----A---- C:\WINDOWS\system32\iuilp.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\system32\kdnet.dll
2016-05-24 20:10:10 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2016-05-24 20:10:09 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-05-24 20:10:09 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2016-05-24 20:10:09 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\mssvp.dll
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\GenuineCenter.dll
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\fhevents.dll
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2016-05-24 20:10:08 ----A---- C:\WINDOWS\system32\drivers\hidi2c.sys
2016-05-24 20:10:07 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2016-05-24 20:10:07 ----A---- C:\WINDOWS\system32\fmifs.dll
2016-05-24 20:10:07 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\SYSWOW64\fmifs.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\msshooks.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\fhsvc.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2016-05-24 20:10:06 ----A---- C:\WINDOWS\system32\fhcat.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\SYSWOW64\rasdiag.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\rasdiag.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\mssphtb.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhshl.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhlisten.dll
2016-05-24 20:10:05 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\mssitlb.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\msscntrs.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\fhtask.dll
2016-05-24 20:10:04 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\SYSWOW64\rasser.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\SYSWOW64\rasmxs.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\system32\rasser.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\system32\rasmxs.dll
2016-05-24 20:10:03 ----A---- C:\WINDOWS\system32\fhautoplay.dll
2016-05-24 20:09:59 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2016-05-24 20:09:57 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2016-05-24 20:09:57 ----A---- C:\WINDOWS\system32\spwmp.dll
2016-05-24 20:09:56 ----A---- C:\WINDOWS\system32\dxmasf.dll
2016-05-24 20:09:55 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2016-05-24 20:09:53 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2016-05-24 20:09:52 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2016-05-24 20:09:52 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-05-24 20:09:52 ----A---- C:\WINDOWS\system32\tzres.dll
2016-05-24 20:09:51 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-05-24 20:02:59 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-05-24 20:02:50 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-05-24 20:02:44 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-05-24 20:02:43 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-05-24 20:02:41 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2016-05-24 20:01:52 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-05-24 20:01:51 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-05-24 20:01:51 ----A---- C:\WINDOWS\system32\aaclient.dll
2016-05-24 20:01:50 ----A---- C:\WINDOWS\SYSWOW64\aaclient.dll
2016-05-24 20:01:31 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-05-24 20:01:30 ----A---- C:\WINDOWS\system32\csrsrv.dll
2016-05-24 20:00:34 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-24 20:00:31 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-05-24 20:00:30 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-24 20:00:25 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-05-24 20:00:24 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2016-05-24 20:00:24 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\system32\msxml6r.dll
2016-05-24 19:59:32 ----A---- C:\WINDOWS\system32\msxml3r.dll
2016-05-24 19:58:09 ----A---- C:\WINDOWS\system32\imagehlp.dll
2016-05-24 19:58:08 ----A---- C:\WINDOWS\SYSWOW64\imagehlp.dll
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\WSDScan.sys
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2016-05-24 19:58:05 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2016-05-24 19:57:47 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2016-05-24 19:57:46 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-05-24 19:56:47 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-05-24 19:56:29 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-05-24 19:56:27 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2016-05-24 19:56:26 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-05-24 19:56:16 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2016-05-24 19:56:14 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2016-05-24 19:56:14 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2016-05-24 19:56:14 ----A---- C:\WINDOWS\system32\rpchttp.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\system32\FXST30.dll
2016-05-24 19:56:13 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2016-05-24 19:56:12 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2016-05-24 19:56:12 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2016-05-24 19:55:40 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-24 19:55:39 ----A---- C:\WINDOWS\system32\cdd.dll
2016-05-24 19:55:26 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-24 19:55:16 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-24 19:53:34 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2016-05-24 19:53:34 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-05-24 19:46:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-24 19:46:21 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-05-24 19:46:19 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2016-05-24 19:46:19 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2016-05-24 19:46:18 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2016-05-24 19:46:17 ----A---- C:\WINDOWS\system32\netprofm.dll
2016-05-24 19:46:14 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-05-24 19:46:13 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-05-24 19:46:13 ----A---- C:\WINDOWS\system32\stobject.dll
2016-05-24 19:46:13 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\taskhost.exe
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\Magnify.exe
2016-05-24 19:46:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-24 19:46:09 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2016-05-24 19:46:09 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-05-24 19:46:08 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-05-24 19:46:07 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2016-05-24 19:46:07 ----A---- C:\WINDOWS\system32\AuthHost.exe
2016-05-24 19:46:06 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2016-05-24 19:46:06 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-05-24 19:46:06 ----A---- C:\WINDOWS\system32\taskhostex.exe
2016-05-24 19:46:05 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2016-05-24 19:46:05 ----A---- C:\WINDOWS\system32\biwinrt.dll
2016-05-24 19:46:03 ----A---- C:\WINDOWS\system32\muifontsetup.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2016-05-24 19:46:02 ----A---- C:\WINDOWS\SYSWOW64\muifontsetup.dll
2016-05-24 19:44:07 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-05-24 19:43:42 ----A---- C:\WINDOWS\SYSWOW64\cryptnet.dll
2016-05-24 19:43:42 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2016-05-24 19:43:42 ----A---- C:\WINDOWS\system32\cryptnet.dll
2016-05-24 19:43:42 ----A---- C:\WINDOWS\system32\certutil.exe
2016-05-24 19:43:35 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2016-05-24 19:43:35 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2016-05-24 19:43:35 ----A---- C:\WINDOWS\system32\untfs.dll
2016-05-24 19:43:35 ----A---- C:\WINDOWS\system32\autochk.exe
2016-05-24 19:43:15 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-24 19:43:14 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-24 19:43:07 ----A---- C:\WINDOWS\system32\twinui.dll
2016-05-24 19:43:06 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-05-24 19:42:57 ----A---- C:\WINDOWS\system32\authui.dll
2016-05-24 19:42:56 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-05-24 19:42:44 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-24 19:42:44 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-24 19:42:42 ----A---- C:\WINDOWS\SYSWOW64\synceng.dll
2016-05-24 19:42:42 ----A---- C:\WINDOWS\system32\synceng.dll
2016-05-24 19:42:37 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-05-24 19:42:37 ----A---- C:\WINDOWS\system32\ole32.dll
2016-05-24 19:42:27 ----A---- C:\WINDOWS\system32\ubpm.dll
2016-05-24 19:42:26 ----A---- C:\WINDOWS\SYSWOW64\ubpm.dll
2016-05-24 19:41:47 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2016-05-24 19:41:47 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-05-24 19:41:47 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-05-24 19:41:46 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\netcfgx.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-05-24 19:41:45 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-05-24 19:41:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-05-24 19:41:44 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2016-05-24 19:41:44 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-05-24 19:41:41 ----A---- C:\WINDOWS\system32\NdisImPlatform.dll
2016-05-24 19:41:41 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-05-24 19:41:41 ----A---- C:\WINDOWS\system32\discan.dll
2016-05-24 19:41:40 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2016-05-24 19:41:40 ----A---- C:\WINDOWS\system32\DevDispItemProvider.dll
2016-05-24 19:41:39 ----A---- C:\WINDOWS\system32\fsquirt.exe
2016-05-24 19:41:38 ----A---- C:\WINDOWS\SYSWOW64\DevDispItemProvider.dll
2016-05-24 19:41:38 ----A---- C:\WINDOWS\system32\WSDPrintProxy.DLL
2016-05-24 19:41:38 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2016-05-24 19:41:37 ----A---- C:\WINDOWS\system32\drivers\monitor.sys
2016-05-24 19:41:36 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-05-24 19:41:36 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-05-24 19:40:49 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-05-24 19:40:49 ----A---- C:\WINDOWS\system32\termsrv.dll
2016-05-24 19:40:49 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-05-24 19:40:48 ----A---- C:\WINDOWS\SYSWOW64\winsta.dll
2016-05-24 19:40:48 ----A---- C:\WINDOWS\system32\winsta.dll
2016-05-24 19:40:24 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2016-05-24 19:40:24 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2016-05-24 19:38:39 ----A---- C:\WINDOWS\system32\WSService.dll
2016-05-24 19:38:37 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2016-05-24 19:38:37 ----A---- C:\WINDOWS\system32\sppc.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\SYSWOW64\WSSync.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\system32\WSClient.dll
2016-05-24 19:38:36 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-05-24 19:38:33 ----A---- C:\WINDOWS\system32\setupcln.dll
2016-05-24 19:38:32 ----A---- C:\WINDOWS\SYSWOW64\setupcln.dll
2016-05-24 19:38:32 ----A---- C:\WINDOWS\SYSWOW64\OEMLicense.dll
2016-05-24 19:38:31 ----A---- C:\WINDOWS\system32\OEMLicense.dll
2016-05-24 19:36:17 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-05-24 19:36:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-05-24 19:36:16 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-05-24 19:36:16 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-05-24 19:36:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncInfo.dll
2016-05-24 19:36:15 ----A---- C:\WINDOWS\system32\SettingSyncInfo.dll
2016-05-24 19:34:00 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2016-05-24 19:34:00 ----A---- C:\WINDOWS\system32\osk.exe
2016-05-24 19:33:56 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-05-24 19:33:56 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-05-24 19:31:08 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2016-05-24 19:31:08 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-05-24 19:31:08 ----A---- C:\WINDOWS\system32\clfsw32.dll
2016-05-24 19:31:07 ----A---- C:\WINDOWS\system32\services.exe
2016-05-24 19:31:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-05-24 19:30:06 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-24 19:29:46 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-24 19:29:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-24 19:29:25 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-24 19:29:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-24 19:29:15 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-24 19:29:12 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-24 19:29:11 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-24 19:29:06 ----A---- C:\WINDOWS\system32\wininet.dll
2016-05-24 19:29:05 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-05-24 19:29:02 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-24 19:29:01 ----A---- C:\WINDOWS\system32\uxtheme.dll
2016-05-24 19:29:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-24 19:29:00 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-24 19:28:57 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-24 19:28:57 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-24 19:28:57 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-24 19:28:56 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2016-05-24 19:28:51 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-05-24 19:28:50 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2016-05-24 19:28:50 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-05-24 19:28:49 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2016-05-24 19:28:49 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2016-05-24 19:28:49 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-05-24 19:28:45 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-05-24 19:28:44 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-05-24 19:28:43 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\iesysprep.dll
2016-05-24 19:28:42 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\system32\UXInit.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\system32\msrating.dll
2016-05-24 19:28:41 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-05-24 19:28:40 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-05-24 19:28:37 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2016-05-24 19:28:37 ----A---- C:\WINDOWS\system32\INETRES.dll
2016-05-24 17:58:12 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2016-05-24 17:53:57 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2016-05-24 17:44:30 ----A---- C:\WINDOWS\system32\mmc.exe
2016-05-24 17:44:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-05-24 17:44:09 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2016-05-24 17:43:50 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-05-24 17:43:41 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2016-05-24 17:43:41 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2016-05-24 17:43:40 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-05-24 17:43:40 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-05-24 17:43:39 ----A---- C:\WINDOWS\system32\WSDMon.dll
2016-05-24 17:43:39 ----A---- C:\WINDOWS\system32\inetpp.dll
2016-05-24 17:43:35 ----A---- C:\WINDOWS\SYSWOW64\wiaacmgr.exe
2016-05-24 17:43:35 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2016-05-24 17:43:34 ----A---- C:\WINDOWS\system32\ncbservice.dll
2016-05-24 17:43:34 ----A---- C:\WINDOWS\system32\httpprxm.dll
2016-05-24 17:43:34 ----A---- C:\WINDOWS\system32\adhsvc.dll
2016-05-24 17:43:33 ----A---- C:\WINDOWS\system32\keepaliveprovider.dll
2016-05-24 17:43:33 ----A---- C:\WINDOWS\system32\httpprxp.dll
2016-05-24 17:43:33 ----A---- C:\WINDOWS\system32\adhapi.dll
2016-05-24 17:41:24 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2016-05-24 17:40:40 ----A---- C:\WINDOWS\system32\appidpolicyconverter.exe
2016-05-24 17:40:39 ----A---- C:\WINDOWS\system32\appidapi.dll
2016-05-24 17:40:37 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2016-05-24 17:40:36 ----A---- C:\WINDOWS\system32\appidsvc.dll
2016-05-24 17:40:31 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2016-05-24 17:39:35 ----A---- C:\WINDOWS\system32\rastls.dll
2016-05-24 17:39:34 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-05-24 17:38:21 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-05-24 17:38:21 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-05-24 17:37:52 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2016-05-24 17:37:52 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2016-05-24 17:37:52 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2016-05-24 17:37:51 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2016-05-24 17:37:51 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2016-05-24 17:37:50 ----A---- C:\WINDOWS\system32\drivers\usbohci.sys
2016-05-24 17:37:50 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2016-05-24 17:37:21 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2016-05-24 17:37:20 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2016-05-24 17:20:18 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-05-24 17:20:08 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-05-24 17:18:47 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-05-24 17:18:41 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-05-24 17:18:41 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-05-24 17:18:40 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-05-24 17:18:37 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2016-05-24 17:18:34 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-05-24 17:18:32 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-05-24 17:01:25 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-05-24 17:01:24 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2016-05-24 17:01:24 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-05-24 17:01:24 ----A---- C:\WINDOWS\system32\nlaapi.dll
2016-05-24 17:01:03 ----A---- C:\WINDOWS\system32\wer.dll
2016-05-24 17:01:01 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2016-05-24 17:01:01 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-05-24 17:01:01 ----A---- C:\WINDOWS\system32\WerFault.exe
2016-05-24 17:01:00 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2016-05-24 17:01:00 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2016-05-24 17:01:00 ----A---- C:\WINDOWS\system32\Faultrep.dll
2016-05-24 17:00:59 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2016-05-24 17:00:32 ----A---- C:\WINDOWS\SYSWOW64\duser.dll
2016-05-24 17:00:32 ----A---- C:\WINDOWS\system32\duser.dll
2016-05-24 17:00:30 ----A---- C:\WINDOWS\system32\wlroamextension.dll
2016-05-24 17:00:29 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\SYSWOW64\wlroamextension.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\taskkill.exe
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\hotspotauth.dll
2016-05-24 17:00:28 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2016-05-24 17:00:27 ----A---- C:\WINDOWS\SYSWOW64\taskkill.exe
2016-05-24 17:00:27 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2016-05-24 17:00:27 ----A---- C:\WINDOWS\system32\tasklist.exe
2016-05-24 17:00:26 ----A---- C:\WINDOWS\SYSWOW64\tasklist.exe
2016-05-24 17:00:26 ----A---- C:\WINDOWS\system32\wersvc.dll
2016-05-24 17:00:24 ----A---- C:\WINDOWS\system32\drivers\BtaMPM.sys
2016-05-24 17:00:23 ----A---- C:\WINDOWS\system32\drivers\BthhfHid.sys
2016-05-24 16:59:48 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-05-24 16:59:48 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-05-24 16:59:48 ----A---- C:\WINDOWS\system32\msi.dll
2016-05-24 16:59:48 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-05-24 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2016-05-24 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2016-05-24 16:59:46 ----A---- C:\WINDOWS\system32\msihnd.dll
2016-05-24 16:59:46 ----A---- C:\WINDOWS\system32\msiexec.exe
2016-05-24 16:59:46 ----A---- C:\WINDOWS\system32\consent.exe
2016-05-24 16:58:59 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2016-05-24 16:58:57 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-05-24 16:58:45 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-24 16:58:44 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-24 16:58:44 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-05-24 16:58:43 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-05-24 16:58:43 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-05-24 16:58:43 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-05-24 16:57:12 ----A---- C:\WINDOWS\system32\appinfo.dll
2016-05-24 16:54:31 ----A---- C:\WINDOWS\system32\objsel.dll
2016-05-24 16:54:31 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2016-05-24 16:54:30 ----A---- C:\WINDOWS\SYSWOW64\objsel.dll
2016-05-24 16:54:29 ----A---- C:\WINDOWS\SYSWOW64\dimsroam.dll
2016-05-24 16:54:29 ----A---- C:\WINDOWS\system32\dimsroam.dll
2016-05-24 16:53:56 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-05-24 16:53:56 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-05-24 16:53:55 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-05-24 16:53:55 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-05-24 16:52:30 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2016-05-24 16:52:29 ----A---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2016-05-24 16:33:56 ----A---- C:\WINDOWS\system32\win32k.sys
2016-05-24 16:33:54 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-05-24 16:33:54 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-05-24 16:33:53 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-05-24 16:33:53 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-05-24 16:33:53 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-05-24 16:33:52 ----A---- C:\WINDOWS\system32\user32.dll
2016-05-24 16:33:51 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-05-24 16:15:58 ----A---- C:\WINDOWS\system32\packager.dll
2016-05-24 16:15:54 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2016-05-24 15:10:42 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2016-05-24 15:10:41 ----A---- C:\WINDOWS\system32\pku2u.dll
2016-05-24 15:03:17 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-05-24 15:03:17 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-05-24 15:02:13 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-05-24 15:02:11 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2016-05-24 15:02:10 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-05-24 15:02:08 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-05-24 15:02:05 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2016-05-24 15:02:05 ----A---- C:\WINDOWS\system32\lpk.dll
2016-05-24 14:54:32 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-05-24 14:54:29 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-05-24 14:49:56 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-05-24 14:49:56 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-05-24 14:49:30 ----A---- C:\WINDOWS\system32\InkEd.dll
2016-05-24 14:49:10 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2016-05-24 14:49:10 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnet.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2016-05-24 14:47:25 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2016-05-24 14:47:02 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2016-05-24 14:47:02 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2016-05-24 14:47:02 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-05-24 14:47:01 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2016-05-24 14:47:01 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-05-24 14:47:01 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-05-24 14:47:00 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-05-24 14:47:00 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-05-24 14:47:00 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-05-24 14:46:59 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\mf.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-05-24 14:46:59 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\system32\evr.dll
2016-05-24 14:46:58 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-05-24 14:46:57 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2016-05-24 14:46:56 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2016-05-24 14:46:56 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2016-05-24 14:46:56 ----A---- C:\WINDOWS\system32\winmde.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\quartz.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-05-24 14:46:55 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-05-24 14:46:54 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2016-05-24 14:46:54 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-05-24 14:46:54 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-05-24 14:46:54 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2016-05-24 14:46:54 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2016-05-24 14:46:54 ----A---- C:\WINDOWS\system32\mfps.dll
2016-05-24 14:46:53 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-05-24 14:46:52 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-05-24 14:46:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-05-24 14:46:49 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-05-24 14:46:48 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-05-24 14:46:48 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-05-24 14:46:47 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-05-24 14:46:45 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-05-24 14:46:44 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2016-05-24 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2016-05-24 14:46:42 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-05-24 14:46:42 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2016-05-24 14:46:42 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\qasf.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\qasf.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\devenum.dll
2016-05-24 14:46:41 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2016-05-24 14:46:40 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-05-24 14:46:40 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2016-05-24 14:46:40 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2016-05-24 14:46:39 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2016-05-24 14:46:26 ----A---- C:\WINDOWS\system32\comctl32.dll
2016-05-24 14:46:25 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2016-05-24 14:40:21 ----A---- C:\WINDOWS\system32\shell32.dll
2016-05-24 14:40:20 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-05-24 14:35:10 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-05-24 14:35:10 ----A---- C:\WINDOWS\system32\qedit.dll
2016-05-24 14:32:50 ----A---- C:\WINDOWS\system32\sysmain.dll
2016-05-24 14:32:47 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2016-05-24 14:31:24 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-05-24 14:31:04 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-05-24 14:31:04 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-05-24 14:31:03 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-05-24 14:25:02 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-05-24 14:25:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-05-24 14:20:44 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2016-05-24 14:20:44 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2016-05-24 14:20:44 ----A---- C:\WINDOWS\system32\scrrun.dll
2016-05-24 14:20:44 ----A---- C:\WINDOWS\system32\scrobj.dll
2016-05-24 14:20:44 ----A---- C:\WINDOWS\system32\cscript.exe
2016-05-24 14:20:43 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2016-05-24 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2016-05-24 14:20:40 ----A---- C:\WINDOWS\system32\notepad.exe
2016-05-24 14:20:40 ----A---- C:\WINDOWS\notepad.exe
2016-05-24 13:16:40 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-24 13:16:37 ----A---- C:\WINDOWS\system32\winload.exe
2016-05-24 13:16:37 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-05-24 13:16:37 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-05-24 13:16:36 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-05-24 13:16:36 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-05-24 13:16:33 ----A---- C:\WINDOWS\system32\winresume.exe
2016-05-24 13:16:33 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-05-24 13:16:32 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-05-24 13:16:31 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2016-05-24 13:16:31 ----A---- C:\WINDOWS\system32\adtschema.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\wdigest.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\TSpkg.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\sspisrv.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\lsm.dll
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\lsass.exe
2016-05-24 13:16:30 ----A---- C:\WINDOWS\system32\credssp.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\system32\workerdd.dll
2016-05-24 13:16:29 ----A---- C:\WINDOWS\system32\msaudite.dll
2016-05-24 13:13:15 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-05-24 12:27:30 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2016-05-24 12:27:30 ----A---- C:\WINDOWS\system32\wups2.dll
2016-05-24 12:27:30 ----A---- C:\WINDOWS\system32\wups.dll
2016-05-24 12:27:29 ----A---- C:\WINDOWS\system32\wushareduxresources.dll
2016-05-24 12:26:03 ----D---- C:\Users\europe\AppData\Roaming\ProductData
2016-05-24 12:26:03 ----D---- C:\Program Files (x86)\IObit
2016-05-24 12:26:02 ----D---- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-05-24 12:25:59 ----D---- C:\ProgramData\ProductData
2016-05-24 12:25:58 ----D---- C:\Users\europe\AppData\Roaming\IObit
2016-05-24 12:25:58 ----D---- C:\ProgramData\IObit
2016-05-24 12:24:59 ----D---- C:\Users\europe\AppData\Roaming\Macromedia
2016-05-24 12:18:35 ----D---- C:\Users\europe\AppData\Roaming\hpqlog
2016-05-24 12:15:13 ----A---- C:\WINDOWS\system32\netcfg-62515.txt
2016-05-24 12:13:41 ----A---- C:\WINDOWS\system32\netcfg-2009562.txt
2016-05-24 12:13:33 ----A---- C:\WINDOWS\system32\netcfg-2001531.txt
2016-05-24 12:13:33 ----A---- C:\WINDOWS\system32\netcfg-2001312.txt
2016-05-24 12:02:17 ----D---- C:\Users\europe\AppData\Roaming\ATI
2016-05-24 12:00:23 ----D---- C:\Users\europe\AppData\Roaming\Adobe
2016-05-24 11:58:40 ----D---- C:\Users\europe\AppData\Roaming\Synaptics
2016-05-24 11:57:32 ----HD---- C:\Program Files (x86)\Uninstall Information
2016-05-24 11:57:22 ----D---- C:\$SysReset
2016-05-24 11:47:54 ----A---- C:\WINDOWS\system32\netcfg-462046.txt
2016-05-24 11:47:53 ----A---- C:\WINDOWS\system32\netcfg-461421.txt
2016-05-24 11:44:22 ----A---- C:\WINDOWS\system32\netcfg-250609.txt
2016-05-24 11:42:08 ----SD---- C:\Users\europe\AppData\Roaming\Microsoft
2016-05-24 11:39:43 ----D---- C:\WINDOWS\SoftwareDistribution
2016-05-24 11:37:18 ----A---- C:\WINDOWS\system32\netcfg-121765.txt
2016-05-24 11:36:57 ----A---- C:\WINDOWS\system32\netcfg-101625.txt
2016-05-17 19:34:17 ----D---- C:\CCAV
2016-05-15 01:03:05 ----D---- C:\AVG_Remover

======List of files/folders modified in the last 1 month======

2016-06-03 19:31:45 ----D---- C:\WINDOWS\Prefetch
2016-06-03 19:30:46 ----SHD---- C:\System Volume Information
2016-06-03 19:30:15 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-06-03 19:29:23 ----D---- C:\WINDOWS\system32\catroot2
2016-06-03 19:25:44 ----D---- C:\WINDOWS\Tasks
2016-06-03 19:17:45 ----D---- C:\WINDOWS\system32\sru
2016-06-03 15:32:33 ----D---- C:\WINDOWS
2016-06-03 15:18:02 ----RD---- C:\WINDOWS\System32
2016-06-03 15:18:02 ----D---- C:\WINDOWS\Inf
2016-06-03 15:18:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-03 15:12:54 ----D---- C:\AdwCleaner
2016-06-03 15:04:00 ----D---- C:\WINDOWS\system32\NDF
2016-06-03 14:39:01 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-03 14:37:39 ----D---- C:\WINDOWS\system32\config
2016-06-02 15:47:43 ----RD---- C:\Program Files
2016-06-02 09:44:53 ----D---- C:\WINDOWS\system32\Drivers
2016-06-02 09:43:21 ----D---- C:\WINDOWS\system32\Tasks
2016-06-02 09:37:55 ----A---- C:\WINDOWS\system.ini
2016-06-02 09:37:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-06-02 09:31:06 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-06-02 09:31:06 ----D---- C:\WINDOWS\SysWOW64
2016-06-02 09:31:06 ----D---- C:\WINDOWS\apppatch
2016-06-02 09:31:05 ----D---- C:\Program Files (x86)\Common Files
2016-06-02 05:59:51 ----D---- C:\WINDOWS\system32\LogFiles
2016-06-01 15:14:46 ----SHD---- C:\WINDOWS\Installer
2016-06-01 15:14:32 ----D---- C:\Config.Msi
2016-06-01 15:14:10 ----D---- C:\WINDOWS\system32\catroot
2016-06-01 15:14:09 ----D---- C:\WINDOWS\system32\DriverStore
2016-06-01 14:57:16 ----D---- C:\ProgramData
2016-05-31 22:40:18 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-05-31 22:40:18 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-31 22:40:17 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2016-05-31 18:30:10 ----RD---- C:\Program Files (x86)
2016-05-31 10:23:05 ----D---- C:\WINDOWS\debug
2016-05-31 10:19:01 ----D---- C:\WINDOWS\WinSxS
2016-05-31 00:27:25 ----RSD---- C:\WINDOWS\assembly
2016-05-31 00:26:52 ----D---- C:\WINDOWS\Logs
2016-05-31 00:26:34 ----D---- C:\WINDOWS\SYSWOW64\Adobe
2016-05-31 00:25:53 ----D---- C:\WINDOWS\twain_32
2016-05-29 22:49:17 ----D---- C:\WINDOWS\CbsTemp
2016-05-29 22:28:36 ----D---- C:\WINDOWS\system32\drivers\NISx64
2016-05-29 22:28:21 ----HD---- C:\WINDOWS\ELAMBKUP
2016-05-29 22:27:58 ----D---- C:\WINDOWS\system32\wdi
2016-05-29 22:26:33 ----D---- C:\$Windows.~BT
2016-05-29 22:02:01 ----D---- C:\Recovery
2016-05-29 18:32:40 ----D---- C:\WINDOWS\Registration
2016-05-28 01:50:56 ----D---- C:\ProgramData\Norton
2016-05-26 20:51:26 ----D---- C:\Program Files\Common Files\Symantec Shared
2016-05-26 20:47:38 ----D---- C:\Program Files (x86)\Norton Internet Security
2016-05-26 13:03:51 ----RSD---- C:\WINDOWS\Media
2016-05-26 13:01:42 ----D---- C:\Program Files\Common Files
2016-05-26 11:53:45 ----D---- C:\Program Files (x86)\Microsoft Office
2016-05-26 11:53:37 ----RSD---- C:\WINDOWS\Fonts
2016-05-26 11:53:35 ----SD---- C:\ProgramData\Microsoft
2016-05-26 11:53:35 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-05-26 11:52:43 ----D---- C:\Program Files\Common Files\microsoft shared
2016-05-26 11:49:59 ----D---- C:\WINDOWS\ShellNew
2016-05-26 11:35:40 ----D---- C:\WINDOWS\rescache
2016-05-26 01:40:28 ----D---- C:\WINDOWS\SYSWOW64\sda
2016-05-26 01:21:11 ----D---- C:\Program Files\Windows Sidebar
2016-05-26 01:21:11 ----D---- C:\Program Files (x86)\Windows Sidebar
2016-05-26 00:42:51 ----D---- C:\WINDOWS\AppCompat
2016-05-25 20:49:02 ----D---- C:\WINDOWS\system32\Boot
2016-05-25 20:48:48 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2016-05-25 20:48:29 ----RD---- C:\WINDOWS\ToastData
2016-05-25 20:48:14 ----D---- C:\Program Files\Windows Media Player
2016-05-25 20:48:14 ----D---- C:\Program Files (x86)\Windows Media Player
2016-05-25 20:48:13 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-05-25 20:47:55 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-05-25 20:47:54 ----D---- C:\WINDOWS\system32\sk-SK
2016-05-25 20:47:52 ----D---- C:\WINDOWS\system32\oobe
2016-05-25 20:47:52 ----D---- C:\WINDOWS\system32\en-US
2016-05-25 20:47:18 ----D---- C:\WINDOWS\system32\wbem
2016-05-25 20:46:38 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2016-05-25 20:46:29 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-05-25 20:44:44 ----D---- C:\WINDOWS\system32\drivers\en-US
2016-05-25 20:44:37 ----D---- C:\WINDOWS\WinStore
2016-05-25 17:10:56 ----D---- C:\ProgramData\CyberLink
2016-05-25 16:58:22 ----D---- C:\SWSetup
2016-05-25 15:28:06 ----D---- C:\Program Files (x86)\Hewlett-Packard
2016-05-25 15:25:43 ----D---- C:\Program Files (x86)\CyberLink
2016-05-25 15:21:06 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-05-25 09:51:36 ----D---- C:\Program Files\Hewlett-Packard
2016-05-25 08:25:36 ----D---- C:\Program Files (x86)\Windows Mail
2016-05-25 08:25:35 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-25 08:25:34 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-05-25 08:25:30 ----D---- C:\Program Files (x86)\Windows Defender
2016-05-25 08:25:29 ----D---- C:\Program Files\Windows Mail
2016-05-25 08:25:29 ----D---- C:\Program Files\Internet Explorer
2016-05-25 08:25:26 ----D---- C:\Program Files\Windows Journal
2016-05-25 08:25:25 ----D---- C:\Program Files\Windows Photo Viewer
2016-05-25 08:25:22 ----D---- C:\Program Files\Common Files\System
2016-05-25 08:25:20 ----D---- C:\Program Files\Windows Defender
2016-05-25 08:25:18 ----D---- C:\WINDOWS\SYSWOW64\oobe
2016-05-25 08:25:18 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2016-05-25 08:25:17 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2016-05-25 08:24:24 ----D---- C:\WINDOWS\SYSWOW64\WCN
2016-05-25 08:24:11 ----D---- C:\WINDOWS\system32\migwiz
2016-05-25 08:24:11 ----D---- C:\WINDOWS\PolicyDefinitions
2016-05-25 08:24:07 ----D---- C:\WINDOWS\system32\slmgr
2016-05-25 08:24:07 ----D---- C:\WINDOWS\system32\en-GB
2016-05-25 08:21:55 ----D---- C:\WINDOWS\system32\WCN
2016-05-25 08:21:19 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-05-25 08:17:35 ----D---- C:\WINDOWS\SYSWOW64\winrm
2016-05-25 08:17:34 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2016-05-25 08:17:33 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-05-25 08:15:46 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2016-05-25 08:15:46 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-05-25 08:15:46 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-05-25 08:15:41 ----D---- C:\WINDOWS\SYSWOW64\Com
2016-05-25 08:15:19 ----D---- C:\WINDOWS\system32\winrm
2016-05-25 08:15:16 ----D---- C:\WINDOWS\system32\Sysprep
2016-05-25 08:15:15 ----D---- C:\WINDOWS\system32\inetsrv
2016-05-25 08:15:14 ----D---- C:\WINDOWS\system32\migration
2016-05-25 08:15:13 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-25 08:11:29 ----D---- C:\WINDOWS\system32\MUI
2016-05-25 08:11:29 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-05-25 08:11:29 ----D---- C:\WINDOWS\system32\Dism
2016-05-25 08:10:30 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2016-05-25 08:10:02 ----D---- C:\WINDOWS\system32\Com
2016-05-25 08:03:14 ----D---- C:\Program Files (x86)\Qualcomm Atheros
2016-05-25 08:02:29 ----D---- C:\ProgramData\Qualcomm Atheros
2016-05-25 07:59:28 ----D---- C:\Program Files\IDT
2016-05-25 00:31:50 ----D---- C:\WINDOWS\servicing
2016-05-25 00:10:55 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-05-24 22:03:38 ----D---- C:\HP
2016-05-24 19:48:47 ----DC---- C:\WINDOWS\Panther
2016-05-24 12:26:58 ----D---- C:\WINDOWS\system32\restore
2016-05-24 12:13:12 ----D---- C:\WINDOWS\SYSWOW64\config
2016-05-24 12:00:17 ----RD---- C:\Program Files (x86)\Online Services
2016-05-24 11:59:39 ----D---- C:\SYSTEM.SAV
2016-05-24 11:44:03 ----D---- C:\WINDOWS\system32\Recovery
2016-05-24 11:42:10 ----RD---- C:\Users

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem4.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2012-07-10 35496]
R0 hpdskflt;@oem23.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2016-05-26 27552]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R3 Accelerometer;@oem23.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-08-02 10280960]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-08-02 368640]
R3 AthBTPort;@oem21.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-05-16 89800]
R3 athr;@oem39.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athrx.sys [2016-05-26 4137472]
R3 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20150921.003\BHDrvx64.sys [2015-09-24 1650936]
R3 BTATH_A2DP;@oem20.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-05-16 347336]
R3 btath_avdt;@oem20.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-05-16 115912]
R3 BTATH_BUS;@oem17.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-05-16 34384]
R3 BTATH_HCRP;@oem24.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-05-16 179432]
R3 BTATH_LWFLT;@oem25.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-05-16 77464]
R3 BTATH_RCP;@oem27.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-05-16 136784]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-05-26 600776]
R3 BthEnum;@tdibth.inf,%BthEnum.DisplayName%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 ccSet_NIS;NIS Settings Manager; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\ccSetx64.sys [2015-09-24 173808]
R3 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-05-24 497392]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2016-05-24 156912]
R3 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20160602.001\IDSvia64.sys [2016-05-27 876248]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 intelkmd;intelkmd; C:\WINDOWS\system32\DRIVERS\igdpmd64.sys [2012-08-24 9000256]
R3 MEIx64;@oem35.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-05-26 185600]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160602.050\ENG64.SYS [2016-05-06 138456]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160602.050\EX64.SYS [2016-05-06 2148056]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 RTL8168;@oem41.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2016-05-26 936192]
R3 rtsuvc;@oem3.inf,%rtsuvc.ServiceDisplayName%;Realtek USB 2.0 PC Camera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2016-05-31 9113816]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\WINDOWS\System32\Drivers\NISx64\1606000.08E\SRTSP64.SYS [2016-02-24 928504]
R3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\SRTSPX64.SYS [2015-09-24 50936]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10329; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2016-05-25 542208]
R3 SymEFASI;Symantec Extended File Attributes (SI); C:\WINDOWS\system32\drivers\NISx64\1606000.08E\SYMEFASI64.SYS [2016-02-24 1621232]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2016-05-26 111344]
R3 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\Ironx64.SYS [2016-02-24 295664]
R3 SymNetS;Symantec Network Security WFP Driver; C:\WINDOWS\System32\Drivers\NISx64\1606000.08E\SYMNETS.SYS [2016-02-24 577768]
R3 SynTP;@oem29.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-05-25 495856]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S0 SymELAM;Symantec ELAM Driver; C:\WINDOWS\system32\drivers\NISx64\1606000.08E\SymELAM.sys [2015-09-24 24192]
S3 ATHDFU;@oem18.inf,%AthDfu.SvcDesc%;Qualcomm Atheros Valkyrie USB BootROM; C:\WINDOWS\System32\Drivers\AthDfu.sys [2012-08-19 55448]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
S3 lehidmini;@oem28.inf,%LEHidMini%;Bluetooth Low Energy Hid Device; C:\WINDOWS\System32\drivers\leath_hid.sys [2012-08-19 39704]
S3 RSP2STOR;@oem40.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2016-05-26 328920]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-24 41272]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-05-25 33008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-06 210560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdvancedSystemCareService9;Advanced SystemCare Service 9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [2016-01-05 446240]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2012-08-02 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2012-09-20 29696]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-05-16 310912]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-08-10 85504]
R2 hpsrv;@oem23.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-09-24 31040]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-09-07 35232]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-14 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-04-22 2960160]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\22.6.0.142\NIS.exe [2016-02-26 289080]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10129; C:\Program Files\IDT\WDM\STacSV64.exe [2016-05-25 323072]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-09-06 1001376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-25 154440]
S3 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2012-08-24 276288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-27 43616]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-25 154440]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\WINDOWS\system32\svchost.exe [2012-09-20 29696]

-----------------EOF-----------------

Re: mrzne ntbk

Napsal: 03 čer 2016 18:47
od Rudy
Smazáno. Nastala nějaká změna?

Re: mrzne ntbk

Napsal: 04 čer 2016 15:12
od airplane
je mi luto, ale je to bez zmeny.

* 2x vypadla wifi - opravit to nejde s tlacitkom riesene problemu siete, len restartom
* 1x nemozny klasicky restart, obrazovka stmavla, ale ntbk stale ostaval zapnuty.... po 15 min som zvolil tvrdy restart
* 1x ntbk zamrzol - opravit to ide len tvrdym restartom

mozete prosim skusit dalsie kroky?
dakujem

Re: mrzne ntbk

Napsal: 04 čer 2016 16:39
od Rudy
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Re: mrzne ntbk

Napsal: 05 čer 2016 12:14
od airplane
Malwarebytes Anti-Malware
www.malwarebytes.org

Dátum kontroly: 4.6.2016
Čas kontroly: 19:45
Protokol: mbam 5.6.16.txt
Správca: Áno

Verzia: 2.2.1.1043
Dazabáza malware: v2016.06.04.04
Databáza rootkitov: v2016.05.27.01
Licencia: Bezplatná verzia
Ochrana pred škodlivým softvérom: Vypnuté
Ochrana pred škodlivými webstránkami: Vypnuté
Vlastná ochrana: Vypnuté

OS: Windows 8
CPU: x64
Súborový systém: NTFS

Typ kontroly: Vlastná kontrola
Výsledok: Dokončená
Skontrolovaných objektov: 657929
Uplynulý čas: 3 hod, 32 min 17 s

Pamäť: Zapnuté
Pri spustení: Zapnuté
Súborový systém: Zapnuté
Archívy: Zapnuté
Rootkity: Zapnuté
Heuristika: Zapnuté
PUP: Zapnuté
PUM: Zapnuté

Procesy: 0
(Žiadne škodlivé položky neboli zistené)

Moduly: 0
(Žiadne škodlivé položky neboli zistené)

Kľúče databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Hodnoty databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Údaj databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Priečinky: 0
(Žiadne škodlivé položky neboli zistené)

Súbory: 0
(Žiadne škodlivé položky neboli zistené)

Fyzické sektory: 0
(Žiadne škodlivé položky neboli zistené)


(end)
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz