VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivka - děkuji za kontrolu

https://forum.viry.cz:443/viewtopic.php?t=150068

Stránka 1 z 1

Preventivka - děkuji za kontrolu

Napsal: 21 zář 2016 16:53
od Raynar7
Logfile of random's system information tool 1.10 (written by random/random)
Run by pc1 at 2016-09-21 17:47:11
Microsoft Windows 10 Home
System drive C: has 626 GB (67%) free of 937 GB
Total RAM: 8073 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:47:13, on 21.09.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0589)
Boot mode: Normal

Running processes:
C:\Users\pc1\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\pc1.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\pc1\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [BingSvc] C:\Users\pc1\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9923 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-63cf9ca9-c084-492c-b728-cd1609de13e2 -SystemEventPortName:HostProcess-7bd19adc-ff13-46ca-8802-9e86bc7360ff -IoCancelEventPortName:HostProcess-78038dde-98f0-4455-83ab-b48b0d38d4dc -NonStateChangingEventPortName:HostProcess-93ecb93a-3dbb-446e-9b6b-1cf9e0d6b0e6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5d03b666-87d8-451c-8d0f-55a25e396b64 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
dashost.exe {1f61aa0a-cdb0-445e-acdd7bb64f7a3956}
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
atieclxx
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\Explorer.EXE
igfxEM.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
igfxHK.exe
igfxTray.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4
"C:\Users\pc1\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding

taskhostw.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0x1b0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5784.0.1430501799\120007091" --mojo-application-channel-token=1E50151F0258A03F93D6E71A5ABB2DC7 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-medium/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/EnabledMaxBandwidthResumption/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPromptExpt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,14,15,16,18,31,56 --gpu-vendor-id=0x1002 --gpu-device-id=0x6601 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.300.1025.0 --gpu-driver-date=11-17-2015 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x0166 --mojo-platform-channel-handle=1404 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/EnabledMaxBandwidthResumption/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPromptExpt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=E1F5A7A5E208EB2E9EE5307EB0D25CF6 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=1305B4F7E93B48ECF4702E20CA2E025E --mojo-application-channel-token=E1F5A7A5E208EB2E9EE5307EB0D25CF6 --channel="5784.3.1936939077\1577094677" --mojo-platform-channel-handle=2680 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledMaxBandwidthResumption/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPromptExpt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=E9CE737845536C4E1C6DDD6F841013CC --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=B9CCF2964E809DE49D18499C4DAEA7FA --mojo-application-channel-token=E9CE737845536C4E1C6DDD6F841013CC --channel="5784.5.713206424\310447030" --mojo-platform-channel-handle=3136 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-medium/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledMaxBandwidthResumption/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPromptExpt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=D82E8D58020B09B93C90DCE3564715AF --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=DE1C73277168F5047FA332613D889569 --mojo-application-channel-token=D82E8D58020B09B93C90DCE3564715AF --channel="5784.11.558531703\523678264" --mojo-platform-channel-handle=5852 /prefetch:1
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2326378364-3534995216-2804069204-10019_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2326378364-3534995216-2804069204-10019 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 624 628 636 8192 632
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\pc1\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-03-05 901600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-07 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-03-05 678656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-07 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-06-24 8492800]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\pc1\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-11 405584]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-08-17 29538432]
"BingSvc"=C:\Users\pc1\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-12-17 144008]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-07-09 2851408]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-11-18 767176]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-03-24 7139256]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-06-22 598552]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-09-21 17:43:08 ----D---- C:\rsit
2016-09-21 17:43:08 ----D---- C:\Program Files\trend micro
2016-09-21 17:11:00 ----D---- C:\ProgramData\VS Revo Group
2016-09-15 15:29:55 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-09-15 15:29:50 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-09-15 15:29:46 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-09-15 15:29:43 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-15 15:29:40 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-09-15 15:29:38 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-09-15 15:29:37 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-09-15 15:29:36 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-09-15 15:29:35 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-09-15 15:29:35 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-09-15 15:29:34 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-09-15 15:29:34 ----A---- C:\WINDOWS\system32\tquery.dll
2016-09-15 15:29:33 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-09-15 15:29:33 ----A---- C:\WINDOWS\system32\combase.dll
2016-09-15 15:29:32 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-09-15 15:29:32 ----A---- C:\WINDOWS\system32\Wpc.dll
2016-09-15 15:29:32 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-09-15 15:29:32 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-09-15 15:29:31 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2016-09-15 15:29:31 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2016-09-15 15:29:31 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-09-15 15:29:31 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-09-15 15:29:31 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-09-15 15:29:31 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2016-09-15 15:29:30 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-15 15:29:29 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-09-15 15:29:29 ----A---- C:\WINDOWS\system32\OpcServices.dll
2016-09-15 15:29:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-09-15 15:29:28 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-09-15 15:29:27 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-09-15 15:29:26 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-09-15 15:29:26 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-09-15 15:29:26 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-09-15 15:29:26 ----A---- C:\WINDOWS\system32\authui.dll
2016-09-15 15:29:25 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2016-09-15 15:29:25 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-09-15 15:29:25 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-09-15 15:29:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-09-15 15:29:24 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc.dll
2016-09-15 15:29:24 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsDesktopEngine.exe
2016-09-15 15:29:23 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-09-15 15:29:23 ----A---- C:\WINDOWS\SYSWOW64\Pimstore.dll
2016-09-15 15:29:23 ----A---- C:\WINDOWS\system32\xpsservices.dll
2016-09-15 15:29:23 ----A---- C:\WINDOWS\system32\wmdrmdev.dll
2016-09-15 15:29:23 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-15 15:29:23 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-09-15 15:29:23 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-09-15 15:29:23 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-09-15 15:29:23 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2016-09-15 15:29:22 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsRemoteEngine.exe
2016-09-15 15:29:22 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-09-15 15:29:22 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2016-09-15 15:29:22 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2016-09-15 15:29:22 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-09-15 15:29:22 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-09-15 15:29:22 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-09-15 15:29:21 ----A---- C:\WINDOWS\SYSWOW64\hnetcfg.dll
2016-09-15 15:29:21 ----A---- C:\WINDOWS\SYSWOW64\DXCaptureReplay.dll
2016-09-15 15:29:21 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2016-09-15 15:29:20 ----A---- C:\WINDOWS\SYSWOW64\winmsipc.dll
2016-09-15 15:29:20 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-09-15 15:29:20 ----A---- C:\WINDOWS\system32\rpcss.dll
2016-09-15 15:29:20 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-09-15 15:29:19 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-09-15 15:29:18 ----A---- C:\WINDOWS\SYSWOW64\wmdrmdev.dll
2016-09-15 15:29:18 ----A---- C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2016-09-15 15:29:18 ----A---- C:\WINDOWS\system32\wmdrmsdk.dll
2016-09-15 15:29:18 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-09-15 15:29:18 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-15 15:29:18 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-09-15 15:29:17 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-09-15 15:29:17 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-09-15 15:29:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-09-15 15:29:16 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-09-15 15:29:16 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\SYSWOW64\wbemcomn.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\system32\wiaservc.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\system32\propsys.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-09-15 15:29:15 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\SYSWOW64\wmdrmsdk.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-09-15 15:29:14 ----A---- C:\WINDOWS\system32\mfps.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\SYSWOW64\XpsDocumentTargetPrint.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\shsetup.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-09-15 15:29:13 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-09-15 15:29:12 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2016-09-15 15:29:12 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2016-09-15 15:29:12 ----A---- C:\WINDOWS\SYSWOW64\DXCap.exe
2016-09-15 15:29:12 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-09-15 15:29:12 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-09-15 15:29:12 ----A---- C:\WINDOWS\system32\evr.dll
2016-09-15 15:29:12 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-09-15 15:29:11 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2016-09-15 15:29:11 ----A---- C:\WINDOWS\SYSWOW64\d3d11_3SDKLayers.dll
2016-09-15 15:29:11 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-09-15 15:29:11 ----A---- C:\WINDOWS\system32\sti.dll
2016-09-15 15:29:11 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-09-15 15:29:11 ----A---- C:\WINDOWS\system32\azroleui.dll
2016-09-15 15:29:11 ----A---- C:\WINDOWS\system32\authfwcfg.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\SYSWOW64\DXToolsOfflineAnalysis.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\system32\DictationManager.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\system32\comdlg32.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-09-15 15:29:10 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsExperiment.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\wiarpc.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\msi.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\msdt.exe
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\edputil.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\DiagCpl.dll
2016-09-15 15:29:09 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\SYSWOW64\WmpDui.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.ps.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2016-09-15 15:29:08 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\system32\SmartCardSimulator.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\system32\pngfilt.dll
2016-09-15 15:29:08 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-09-15 15:29:08 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-09-15 15:29:08 ----A---- C:\WINDOWS\system32\fwcfg.dll
2016-09-15 15:29:07 ----A---- C:\WINDOWS\SYSWOW64\sti.dll
2016-09-15 15:29:07 ----A---- C:\WINDOWS\SYSWOW64\d2d1debug3.dll
2016-09-15 15:29:07 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-09-15 15:29:07 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-09-15 15:29:07 ----A---- C:\WINDOWS\system32\prnntfy.dll
2016-09-15 15:29:07 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-09-15 15:29:07 ----A---- C:\WINDOWS\system32\CheckNetIsolation.exe
2016-09-15 15:29:07 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-09-15 15:29:05 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-09-15 15:29:04 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-09-15 15:29:04 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-09-15 15:28:58 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-09-15 15:28:58 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-09-15 15:28:58 ----A---- C:\WINDOWS\system32\DXCaptureReplay.dll
2016-09-15 15:28:57 ----A---- C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2016-09-15 15:28:57 ----A---- C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2016-09-15 15:28:56 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-09-15 15:28:56 ----A---- C:\WINDOWS\system32\InputService.dll
2016-09-15 15:28:55 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-09-15 15:28:55 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-09-15 15:28:55 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-15 15:28:55 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-09-15 15:28:54 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2016-09-15 15:28:54 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-09-15 15:28:54 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-09-15 15:28:54 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-09-15 15:28:54 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-09-15 15:28:53 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-09-15 15:28:53 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2016-09-15 15:28:53 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-09-15 15:28:53 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-09-15 15:28:53 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-09-15 15:28:53 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-15 15:28:53 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-15 15:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-09-15 15:28:52 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2016-09-15 15:28:52 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2016-09-15 15:28:52 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-09-15 15:28:52 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-09-15 15:28:52 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-09-15 15:28:52 ----A---- C:\WINDOWS\system32\MSAJApi.dll
2016-09-15 15:28:52 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-09-15 15:28:52 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\system32\rdpcore.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\system32\mf.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\system32\das.dll
2016-09-15 15:28:51 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-09-15 15:28:50 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-09-15 15:28:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2016-09-15 15:28:50 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-09-15 15:28:50 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-09-15 15:28:50 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2016-09-15 15:28:50 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-09-15 15:28:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-09-15 15:28:50 ----A---- C:\WINDOWS\system32\VsGraphicsExperiment.dll
2016-09-15 15:28:50 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2016-09-15 15:28:50 ----A---- C:\WINDOWS\system32\DXCap.exe
2016-09-15 15:28:50 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-09-15 15:28:49 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc_ssp.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\system32\localspl.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2016-09-15 15:28:49 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-09-15 15:28:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-09-15 15:28:48 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-09-15 15:28:48 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-09-15 15:28:48 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-09-15 15:28:48 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-09-15 15:28:48 ----A---- C:\WINDOWS\system32\d2d1debug3.dll
2016-09-15 15:28:48 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-09-15 15:28:47 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-09-15 15:28:47 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2016-09-15 15:28:47 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-09-15 15:28:47 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-09-15 15:28:47 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-09-15 15:28:47 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-09-15 15:28:47 ----A---- C:\WINDOWS\system32\rasgcw.dll
2016-09-15 15:28:47 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-09-15 15:28:46 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-09-15 15:28:46 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2016-09-15 15:28:46 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-09-15 15:28:46 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-09-15 15:28:46 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-09-15 15:28:46 ----A---- C:\WINDOWS\system32\werconcpl.dll
2016-09-15 15:28:46 ----A---- C:\WINDOWS\system32\VsGraphicsCapture.dll
2016-09-15 15:28:46 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-09-15 15:28:46 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-09-15 15:28:46 ----A---- C:\WINDOWS\system32\netcenter.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\SYSWOW64\wsmprovhost.exe
2016-09-15 15:28:45 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\SYSWOW64\syncutil.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\SYSWOW64\duser.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\system32\mscms.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\system32\dot3ui.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2016-09-15 15:28:45 ----A---- C:\WINDOWS\system32\d3d12warp.dll
2016-09-15 15:28:44 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2016-09-15 15:28:44 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2016-09-15 15:28:44 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2016-09-15 15:28:44 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2016-09-15 15:28:44 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2016-09-15 15:28:44 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-09-15 15:28:44 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2016-09-15 15:28:44 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2016-09-15 15:28:44 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-09-15 15:28:44 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-09-15 15:28:44 ----A---- C:\WINDOWS\system32\RADCUI.dll
2016-09-15 15:28:44 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-09-15 15:28:43 ----A---- C:\WINDOWS\system32\shell32.dll
2016-09-15 15:28:43 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-09-15 15:28:43 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-15 15:28:41 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-09-15 15:28:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-09-15 15:28:40 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-09-15 15:28:40 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-09-15 15:28:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-09-15 15:28:39 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-09-15 15:28:39 ----A---- C:\WINDOWS\system32\wininet.dll
2016-09-15 15:28:38 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2016-09-15 15:28:38 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2016-09-15 15:28:38 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-09-15 15:28:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-09-15 15:28:38 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-09-15 15:28:38 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-09-15 15:28:38 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-09-15 15:28:36 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-09-15 15:28:36 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2016-09-15 15:28:36 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-09-15 15:28:36 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-09-15 15:28:36 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-09-15 15:28:36 ----A---- C:\WINDOWS\system32\webservices.dll
2016-09-15 15:28:36 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-09-15 15:28:35 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-09-15 15:28:35 ----A---- C:\WINDOWS\system32\winresume.exe
2016-09-15 15:28:35 ----A---- C:\WINDOWS\system32\ole32.dll
2016-09-15 15:28:34 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2016-09-15 15:28:34 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-09-15 15:28:34 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-09-15 15:28:34 ----A---- C:\WINDOWS\SYSWOW64\PhoneOm.dll
2016-09-15 15:28:34 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-09-15 15:28:34 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-09-15 15:28:34 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2016-09-15 15:28:33 ----A---- C:\WINDOWS\system32\winload.exe
2016-09-15 15:28:33 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-09-15 15:28:33 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-09-15 15:28:32 ----A---- C:\WINDOWS\SYSWOW64\MSAJApi.dll
2016-09-15 15:28:32 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-09-15 15:28:32 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-09-15 15:28:32 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-09-15 15:28:31 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2016-09-15 15:28:28 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2016-09-15 15:28:28 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-09-15 15:28:28 ----A---- C:\WINDOWS\SYSWOW64\filemgmt.dll
2016-09-15 15:28:28 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-09-15 15:28:28 ----A---- C:\WINDOWS\system32\nettrace.dll
2016-09-15 15:28:28 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-09-15 15:28:28 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys
2016-09-15 15:28:28 ----A---- C:\WINDOWS\system32\comuid.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\system32\WlanMM.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\system32\wbemcomn.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\system32\quartz.dll
2016-09-15 15:28:27 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-09-15 15:28:27 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\SYSWOW64\cic.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\system32\winipcsecproc_ssp.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\system32\usocore.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2016-09-15 15:28:26 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-15 15:28:26 ----A---- C:\WINDOWS\system32\lsass.exe
2016-09-15 15:28:26 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2016-09-15 15:28:26 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-09-15 15:28:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-09-15 15:28:25 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-15 15:28:24 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-09-15 15:28:24 ----A---- C:\WINDOWS\SYSWOW64\azroleui.dll
2016-09-15 15:28:23 ----A---- C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-09-15 15:28:22 ----A---- C:\WINDOWS\SYSWOW64\pla.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\SYSWOW64\mmcshext.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\SYSWOW64\mmcbase.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\system32\wdc.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\system32\spcompat.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2016-09-15 15:28:22 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-09-15 15:28:22 ----A---- C:\WINDOWS\system32\azroles.dll
2016-09-15 15:28:21 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2016-09-15 15:28:21 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-09-15 15:28:21 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2016-09-15 15:28:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Cortana.ProxyStub.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\SYSWOW64\fwcfg.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\system32\WmpDui.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\system32\WcnApi.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\system32\WalletService.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\system32\drivers\MTConfig.sys
2016-09-15 15:28:20 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-09-15 15:28:20 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-09-15 15:28:19 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2016-09-15 15:28:19 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-09-15 15:28:19 ----A---- C:\WINDOWS\system32\fdWCN.dll
2016-09-15 15:28:19 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\SYSWOW64\VoipRT.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\SYSWOW64\oemlicense.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\system32\wlanui.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\system32\ieui.dll
2016-09-15 15:28:18 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-09-15 15:28:17 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2016-09-15 15:28:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2016-09-15 15:28:17 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2016-09-15 15:28:17 ----A---- C:\WINDOWS\SYSWOW64\certmgr.dll
2016-09-15 15:28:17 ----A---- C:\WINDOWS\SYSWOW64\authfwcfg.dll
2016-09-15 15:28:17 ----A---- C:\WINDOWS\system32\WLanConn.dll
2016-09-15 15:28:17 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-09-15 15:28:17 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-09-15 15:28:17 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\SYSWOW64\msobjs.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\SYSWOW64\licensingdiag.exe
2016-09-15 15:28:16 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\system32\wsmprovhost.exe
2016-09-15 15:28:16 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\system32\IconCodecService.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-09-15 15:28:16 ----A---- C:\WINDOWS\system32\dafWCN.dll
2016-09-15 15:28:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-09-15 15:28:15 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-09-15 15:28:15 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-09-15 15:28:15 ----A---- C:\WINDOWS\SYSWOW64\CheckNetIsolation.exe
2016-09-15 15:28:15 ----A---- C:\WINDOWS\system32\odbcconf.dll
2016-09-15 15:28:15 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-09-15 15:28:15 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2016-09-15 15:28:13 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-09-15 15:28:09 ----A---- C:\WINDOWS\system32\mos.dll
2016-09-15 15:28:08 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-09-15 15:28:02 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-09-15 15:28:02 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-09-15 15:28:01 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-09-15 15:28:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-09-15 15:28:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-09-15 15:28:00 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2016-09-15 15:28:00 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-09-15 15:27:59 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-09-15 15:27:58 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-09-15 15:27:58 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-09-15 15:27:58 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-09-15 15:27:57 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-09-15 15:27:57 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-09-15 15:27:56 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-09-15 15:27:56 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-09-15 15:27:56 ----A---- C:\WINDOWS\system32\VSSVC.exe
2016-09-15 15:27:56 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-09-15 15:27:56 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-09-15 15:27:56 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-09-15 15:27:56 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-09-15 15:27:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-09-15 15:27:55 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-09-15 15:27:55 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2016-09-15 15:27:55 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-09-15 15:27:55 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-09-15 15:27:55 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-09-15 15:27:55 ----A---- C:\WINDOWS\system32\msctf.dll
2016-09-15 15:27:55 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-09-15 15:27:55 ----A---- C:\WINDOWS\system32\diagperf.dll
2016-09-15 15:27:54 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-09-15 15:27:54 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-09-15 15:27:54 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-09-15 15:27:54 ----A---- C:\WINDOWS\system32\vssapi.dll
2016-09-15 15:27:54 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-09-15 15:27:54 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-09-15 15:27:53 ----A---- C:\WINDOWS\system32\termsrv.dll
2016-09-15 15:27:53 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-09-15 15:27:52 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-09-15 15:27:52 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-09-15 15:27:52 ----A---- C:\WINDOWS\system32\PhoneOm.dll
2016-09-15 15:27:51 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-09-15 15:27:51 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-09-15 15:27:51 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-09-15 15:27:51 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-09-15 15:27:51 ----A---- C:\WINDOWS\system32\wlidprov.dll
2016-09-15 15:27:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-09-15 15:27:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-09-15 15:27:50 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-09-15 15:27:49 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-09-15 15:27:49 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-09-15 15:27:49 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2016-09-15 15:27:48 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-09-15 15:27:47 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-09-15 15:27:47 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-15 15:27:47 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-09-15 15:27:47 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2016-09-15 15:27:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-15 15:27:46 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-09-15 15:27:46 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-09-15 15:27:46 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-09-15 15:27:46 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-09-15 15:27:46 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-09-15 15:27:45 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-09-15 15:27:45 ----A---- C:\WINDOWS\system32\swprv.dll
2016-09-15 15:27:45 ----A---- C:\WINDOWS\system32\mprddm.dll
2016-09-15 15:27:45 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-09-15 15:27:45 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-09-15 15:27:44 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-09-15 15:27:44 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2016-09-15 15:27:44 ----A---- C:\WINDOWS\system32\vds.exe
2016-09-15 15:27:44 ----A---- C:\WINDOWS\system32\resutils.dll
2016-09-15 15:27:44 ----A---- C:\WINDOWS\system32\mispace.dll
2016-09-15 15:27:44 ----A---- C:\WINDOWS\system32\defragsvc.dll
2016-09-15 15:27:44 ----A---- C:\WINDOWS\system32\apphelp.dll
2016-09-15 15:27:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-09-15 15:27:43 ----A---- C:\WINDOWS\SYSWOW64\comuid.dll
2016-09-15 15:27:43 ----A---- C:\WINDOWS\SYSWOW64\certca.dll
2016-09-15 15:27:43 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-09-15 15:27:43 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-09-15 15:27:43 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-09-15 15:27:43 ----A---- C:\WINDOWS\system32\moshost.dll
2016-09-15 15:27:43 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-09-15 15:27:43 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-09-15 15:27:42 ----A---- C:\WINDOWS\system32\XpsFilt.dll
2016-09-15 15:27:42 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-15 15:27:42 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-09-15 15:27:42 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-09-15 15:27:41 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-09-15 15:27:41 ----A---- C:\WINDOWS\system32\wbengine.exe
2016-09-15 15:27:41 ----A---- C:\WINDOWS\system32\upnphost.dll
2016-09-15 15:27:41 ----A---- C:\WINDOWS\system32\tdh.dll
2016-09-15 15:27:41 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-09-15 15:27:41 ----A---- C:\WINDOWS\system32\netman.dll
2016-09-15 15:27:41 ----A---- C:\WINDOWS\system32\kernel32.dll
2016-09-15 15:27:41 ----A---- C:\WINDOWS\system32\icsvc.dll
2016-09-15 15:27:41 ----A---- C:\WINDOWS\system32\APHostService.dll
2016-09-15 15:27:40 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-09-15 15:27:40 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-09-15 15:27:40 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-09-15 15:27:39 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-09-15 15:27:39 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-09-15 15:27:39 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-09-15 15:27:38 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-09-15 15:27:38 ----A---- C:\WINDOWS\system32\wusa.exe
2016-09-15 15:27:38 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-09-15 15:27:38 ----A---- C:\WINDOWS\system32\sdengin2.dll
2016-09-15 15:27:38 ----A---- C:\WINDOWS\system32\netcfgx.dll
2016-09-15 15:27:38 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-09-15 15:27:38 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-09-15 15:27:38 ----A---- C:\WINDOWS\system32\csrsrv.dll
2016-09-15 15:27:37 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-09-15 15:27:37 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-09-15 15:27:37 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-09-15 15:27:37 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2016-09-15 15:27:37 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-09-15 15:27:37 ----A---- C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2016-09-15 15:27:37 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-09-15 15:27:37 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2016-09-15 15:27:36 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-15 15:27:36 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-09-15 15:27:36 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-09-15 15:27:36 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-09-15 15:27:36 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-09-15 15:27:36 ----A---- C:\WINDOWS\system32\fdProxy.dll
2016-09-15 15:27:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-09-15 15:27:35 ----A---- C:\WINDOWS\SYSWOW64\usbceip.dll
2016-09-15 15:27:35 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-09-15 15:27:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2016-09-15 15:27:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-09-15 15:27:34 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-09-15 15:27:34 ----A---- C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-09-15 15:27:34 ----A---- C:\WINDOWS\system32\udhisapi.dll
2016-09-15 15:27:33 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-09-15 15:27:33 ----A---- C:\WINDOWS\system32\upnpcont.exe
2016-09-15 15:27:31 ----A---- C:\WINDOWS\SYSWOW64\XpsFilt.dll
2016-09-15 15:27:31 ----A---- C:\WINDOWS\system32\autochk.exe
2016-09-15 15:27:29 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-09-15 15:27:27 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-09-15 15:27:27 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2016-09-15 15:27:27 ----A---- C:\WINDOWS\system32\duser.dll
2016-09-15 15:27:27 ----A---- C:\WINDOWS\system32\dui70.dll
2016-09-15 15:27:26 ----A---- C:\WINDOWS\system32\VoipRT.dll
2016-09-15 15:27:26 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-15 15:27:26 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-09-15 15:27:26 ----A---- C:\WINDOWS\system32\adtschema.dll
2016-09-15 15:27:25 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-09-15 15:27:25 ----A---- C:\WINDOWS\system32\netshell.dll
2016-09-15 15:27:25 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-09-15 15:27:24 ----A---- C:\WINDOWS\system32\pla.dll
2016-09-15 15:27:23 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-09-15 15:27:21 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-09-15 15:27:21 ----A---- C:\WINDOWS\system32\scapi.dll
2016-09-15 15:27:21 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-09-15 15:27:20 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-09-15 15:27:20 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-09-15 15:27:20 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-15 15:27:20 ----A---- C:\WINDOWS\system32\StikyNot.exe
2016-09-15 15:27:20 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-09-15 15:27:20 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-09-15 15:27:19 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2016-09-15 15:27:19 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-09-15 15:27:19 ----A---- C:\WINDOWS\system32\vdsutil.dll
2016-09-15 15:27:19 ----A---- C:\WINDOWS\system32\themeui.dll
2016-09-15 15:27:19 ----A---- C:\WINDOWS\system32\syncutil.dll
2016-09-15 15:27:19 ----A---- C:\WINDOWS\system32\eapsvc.dll
2016-09-15 15:27:19 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-09-15 15:27:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-09-15 15:27:18 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-09-15 15:27:18 ----A---- C:\WINDOWS\system32\vsstrace.dll
2016-09-15 15:27:18 ----A---- C:\WINDOWS\system32\vss_ps.dll
2016-09-15 15:27:18 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-09-15 15:27:17 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-09-15 15:27:17 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-09-15 15:27:17 ----A---- C:\WINDOWS\system32\msobjs.dll
2016-09-15 15:27:17 ----A---- C:\WINDOWS\system32\ipsecsnp.dll
2016-09-15 15:27:17 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-09-15 15:27:17 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-09-15 15:27:16 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-09-15 15:27:15 ----A---- C:\WINDOWS\SYSWOW64\dot3ui.dll
2016-09-15 15:27:15 ----A---- C:\WINDOWS\SYSWOW64\azroles.dll
2016-09-15 15:27:15 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-09-15 15:27:15 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-09-15 15:27:15 ----A---- C:\WINDOWS\system32\fhsvc.dll
2016-09-15 15:27:15 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-09-15 15:27:15 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-09-15 15:27:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-09-15 15:27:14 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2016-09-15 15:27:14 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2016-09-15 15:27:14 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-15 15:27:14 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-09-15 15:27:14 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-15 15:27:14 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2016-09-15 15:27:14 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2016-09-15 15:27:13 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-09-15 15:27:12 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-09-15 15:27:11 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-09-15 15:27:11 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-09-15 15:27:10 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2016-09-15 15:27:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-09-15 15:27:07 ----A---- C:\WINDOWS\system32\wmp.dll
2016-09-15 15:27:06 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-09-15 15:27:05 ----A---- C:\WINDOWS\system32\twinui.dll
2016-09-15 15:27:03 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-15 15:27:02 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-09-15 15:27:02 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-15 15:27:01 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-09-15 15:27:01 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-09-15 15:27:01 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-15 15:27:01 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2016-09-15 15:27:00 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-09-15 15:26:59 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-09-15 15:26:58 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2016-09-15 15:26:57 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2016-09-15 15:26:57 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-09-15 15:26:57 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-15 15:26:57 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-15 15:26:57 ----A---- C:\WINDOWS\system32\mmc.exe
2016-09-15 15:26:57 ----A---- C:\WINDOWS\explorer.exe
2016-09-15 15:26:55 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-09-15 15:26:55 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-09-15 15:26:55 ----A---- C:\WINDOWS\system32\winmde.dll
2016-09-15 15:26:55 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2016-09-15 15:26:55 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-15 15:26:55 ----A---- C:\WINDOWS\system32\Pimstore.dll
2016-09-15 15:26:55 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-09-15 15:26:55 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-09-15 15:26:54 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-09-15 15:26:54 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-09-15 15:26:54 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-09-15 15:26:54 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-15 15:26:54 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-09-15 15:26:52 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-09-15 15:26:52 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-09-15 15:26:52 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-15 15:26:52 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-09-15 15:26:52 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-15 15:26:52 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-09-15 15:26:52 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-09-15 15:26:51 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2016-09-15 15:26:51 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-09-15 15:26:51 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-09-15 15:26:51 ----A---- C:\WINDOWS\system32\winmsipc.dll
2016-09-15 15:26:51 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-15 15:26:51 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-09-15 15:26:51 ----A---- C:\WINDOWS\system32\gameux.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-09-15 15:26:50 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\wmpeffects.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\w32time.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-09-15 15:26:50 ----A---- C:\WINDOWS\system32\certca.dll
2016-09-15 15:26:49 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-09-15 15:26:49 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-09-15 15:26:49 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-09-15 15:26:49 ----A---- C:\WINDOWS\system32\SecureTimeAggregator.dll
2016-09-15 15:26:49 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-09-15 15:26:49 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-09-15 15:26:49 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-09-15 15:26:49 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\SYSWOW64\wmpeffects.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\sppcext.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\filemgmt.dll
2016-09-15 15:26:48 ----A---- C:\WINDOWS\system32\cryptui.dll
2016-09-15 15:26:47 ----A---- C:\WINDOWS\system32\WSService.dll
2016-09-15 15:26:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-09-15 15:26:47 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\winipcfile.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\SRH.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\mmcshext.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\mmcbase.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\hal.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-09-15 15:26:46 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsExt.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\system32\mprdim.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\system32\DbgModel.dll
2016-09-15 15:26:45 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2016-09-15 15:26:44 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-09-15 15:26:44 ----A---- C:\WINDOWS\SYSWOW64\DbgModel.dll
2016-09-15 15:26:44 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-09-15 15:26:44 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-09-15 15:26:44 ----A---- C:\WINDOWS\system32\gpedit.dll
2016-09-15 15:26:44 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-09-15 15:26:44 ----A---- C:\WINDOWS\system32\cic.dll
2016-09-15 15:26:44 ----A---- C:\WINDOWS\system32\certcli.dll
2016-09-15 15:26:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-09-15 15:26:43 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2016-09-15 15:26:43 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-09-15 15:26:43 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2016-09-15 15:26:43 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-09-15 15:26:42 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2016-09-15 15:26:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-09-15 15:26:41 ----A---- C:\WINDOWS\system32\oemlicense.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\SYSWOW64\WSSync.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\WUDFx.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\sppinst.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\Display.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\dbghelp.dll
2016-09-15 15:26:39 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-09-15 15:26:38 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2016-09-15 15:26:38 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-09-15 15:26:38 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-09-15 15:26:38 ----A---- C:\WINDOWS\system32\ImplatSetup.dll
2016-09-15 15:26:38 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-09-15 15:25:15 ----A---- C:\WINDOWS\system32\mqcertui.dll

======List of files/folders modified in the last 1 month======

2016-09-21 17:46:59 ----D---- C:\Users\pc1\AppData\Roaming\TS3Client
2016-09-21 17:46:56 ----D---- C:\WINDOWS\INF
2016-09-21 17:46:55 ----D---- C:\WINDOWS\Minidump
2016-09-21 17:46:55 ----D---- C:\WINDOWS\debug
2016-09-21 17:46:55 ----D---- C:\Windows
2016-09-21 17:46:49 ----D---- C:\WINDOWS\Temp
2016-09-21 17:44:26 ----D---- C:\WINDOWS\prefetch
2016-09-21 17:43:08 ----RD---- C:\Program Files
2016-09-21 17:40:50 ----D---- C:\Škola
2016-09-21 17:38:46 ----D---- C:\WINDOWS\system32\drivers
2016-09-21 17:34:43 ----RD---- C:\Program Files (x86)
2016-09-21 17:34:10 ----D---- C:\Users\pc1\AppData\Roaming\Pro Cycling Manager 2015
2016-09-21 17:33:59 ----D---- C:\Program Files (x86)\R.G. Mechanics
2016-09-21 17:32:19 ----SHD---- C:\WINDOWS\Installer
2016-09-21 17:32:19 ----SHD---- C:\Config.Msi
2016-09-21 17:32:18 ----D---- C:\Program Files\Common Files
2016-09-21 17:29:09 ----D---- C:\Users\pc1\AppData\Roaming\Corel
2016-09-21 17:28:49 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-09-21 17:28:41 ----HD---- C:\ProgramData
2016-09-21 17:26:17 ----RSD---- C:\WINDOWS\assembly
2016-09-21 17:26:11 ----D---- C:\WINDOWS\syswow64
2016-09-21 17:26:11 ----D---- C:\WINDOWS\System32
2016-09-21 17:24:23 ----D---- C:\Users\pc1\AppData\Roaming\.minecraft
2016-09-21 17:21:59 ----D---- C:\Program Files (x86)\Adobe
2016-09-21 17:18:15 ----D---- C:\WINDOWS\Microsoft.NET
2016-09-21 17:18:03 ----D---- C:\ProgramData\Microsoft Help
2016-09-21 17:16:46 ----AD---- C:\Program Files\Microsoft Office
2016-09-21 17:15:55 ----RSD---- C:\WINDOWS\Fonts
2016-09-21 17:15:52 ----D---- C:\WINDOWS\ShellNew
2016-09-21 17:15:36 ----AD---- C:\Program Files (x86)\Microsoft.NET
2016-09-21 17:15:31 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2016-09-21 17:13:29 ----D---- C:\Program Files\Common Files\System
2016-09-21 17:03:01 ----D---- C:\WINDOWS\system32\sru
2016-09-21 16:48:57 ----A---- C:\WINDOWS\win.ini
2016-09-21 16:47:20 ----SHD---- C:\System Volume Information
2016-09-21 15:29:12 ----AD---- C:\Program Files (x86)\Battle.net
2016-09-21 15:08:36 ----D---- C:\WINDOWS\AppReadiness
2016-09-21 15:08:26 ----HD---- C:\Program Files\WindowsApps
2016-09-19 17:33:34 ----D---- C:\WINDOWS\system32\Tasks
2016-09-19 17:32:11 ----D---- C:\ProgramData\Adobe
2016-09-19 17:30:57 ----SD---- C:\Users\pc1\AppData\Roaming\Microsoft
2016-09-19 17:30:57 ----D---- C:\Users\pc1\AppData\Roaming\Adobe
2016-09-19 09:45:16 ----D---- C:\WINDOWS\system32\NDF
2016-09-19 09:05:02 ----AD---- C:\KMPlayer
2016-09-17 21:58:31 ----D---- C:\WINDOWS\rescache
2016-09-16 23:10:20 ----D---- C:\WINDOWS\system32\config
2016-09-16 16:05:15 ----D---- C:\WINDOWS\system32\catroot2
2016-09-16 15:46:36 ----D---- C:\Program Files (x86)\Hearthstone
2016-09-16 15:07:15 ----D---- C:\WINDOWS\WinSxS
2016-09-16 15:03:07 ----D---- C:\WINDOWS\system32\DriverStore
2016-09-16 15:02:00 ----AD---- C:\Program Files\Microsoft Silverlight
2016-09-16 15:01:58 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-09-15 23:47:34 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-09-15 23:47:34 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-09-15 23:47:32 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-09-15 23:47:32 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-09-15 23:47:32 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-09-15 23:47:31 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2016-09-15 23:47:24 ----D---- C:\WINDOWS\system32\wbem
2016-09-15 23:47:24 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-09-15 23:47:23 ----SD---- C:\WINDOWS\system32\F12
2016-09-15 23:47:23 ----D---- C:\WINDOWS\system32\setup
2016-09-15 23:47:23 ----D---- C:\WINDOWS\system32\oobe
2016-09-15 23:47:23 ----D---- C:\WINDOWS\system32\migwiz
2016-09-15 23:47:23 ----D---- C:\WINDOWS\system32\migration
2016-09-15 23:47:23 ----D---- C:\WINDOWS\system32\Dism
2016-09-15 23:47:23 ----D---- C:\WINDOWS\system32\cs-CZ
2016-09-15 23:47:23 ----D---- C:\WINDOWS\system32\Boot
2016-09-15 23:47:23 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2016-09-15 23:47:10 ----RD---- C:\WINDOWS\PrintDialog
2016-09-15 23:47:10 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-09-15 23:47:10 ----RD---- C:\WINDOWS\DevicesFlow
2016-09-15 23:47:10 ----D---- C:\WINDOWS\AppPatch
2016-09-15 23:47:10 ----D---- C:\Program Files\Windows Photo Viewer
2016-09-15 23:47:10 ----D---- C:\Program Files\Windows Media Player
2016-09-15 23:47:10 ----D---- C:\Program Files\Windows Mail
2016-09-15 23:47:10 ----D---- C:\Program Files\Windows Defender
2016-09-15 23:47:10 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-09-15 23:47:10 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-15 23:47:10 ----D---- C:\Program Files (x86)\Windows Defender
2016-09-15 23:47:10 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-15 23:47:09 ----D---- C:\Program Files\Internet Explorer
2016-09-15 17:33:05 ----D---- C:\WINDOWS\CbsTemp
2016-09-15 17:22:24 ----D---- C:\WINDOWS\system32\appraiser
2016-09-15 17:20:02 ----D---- C:\WINDOWS\system32\MRT
2016-09-15 17:13:36 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-09-15 15:10:45 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2016-09-15 15:10:45 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2016-09-14 19:39:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-14 15:29:20 ----D---- C:\Users\pc1\AppData\Roaming\vlc
2016-09-14 15:25:10 ----AD---- C:\Program Files (x86)\Overwatch
2016-09-08 15:50:25 ----D---- C:\Users\pc1\AppData\Roaming\uTorrent
2016-09-07 08:04:35 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2016-09-07 03:00:59 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-08-29 22:58:31 ----D---- C:\Users\pc1\AppData\Roaming\Skype
2016-08-29 22:41:54 ----D---- C:\ProgramData\Skype
2016-08-29 22:41:52 ----RD---- C:\Program Files (x86)\Skype

Re: Preventivka - děkuji za kontrolu

Napsal: 21 zář 2016 16:54
od Raynar7
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem179.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-06-04 73976]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-03-05 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-08-05 292704]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-08-30 644968]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-03-24 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-03-05 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-03-12 1070904]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-03-05 463744]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-03-05 37656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-03-12 107792]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-03-05 165344]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-11-24 23968792]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-11-24 679960]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-08-03 84992]
R3 dtlitescsibus;@oem181.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 30264]
R3 dtliteusbbus;@oem182.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 46392]
R3 ibtfltcoex;@oem122.inf,%PROVIDER_NAME%;Intel Corporation; C:\WINDOWS\system32\DRIVERS\ibtfltcoex.sys [2015-07-01 79632]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-10-23 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 IntcDAud;@oem114.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem148.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 MEIx64;@oem108.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-04 99288]
R3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2015-10-30 3343872]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-30 589824]
R3 RTSUER;@oem16.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
R3 SensorsSimulatorDriver;@oem90.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2015-10-30 216064]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2012-12-21 32136]
R3 SynTP;@oem131.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\System32\drivers\SynTP.sys [2012-12-21 466824]
R3 tap0901;@oem5.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2013-08-22 40664]
S0 amdkmafd;@oem119.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-06-03 31992]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S1 EpfwLWF;@oem189.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-12-18 52872]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BRDriver64_1_3_3_E02B25FC;BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys []
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-08-03 112640]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-03-29 245760]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-08-03 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-08-03 954368]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 CVirtA;@oem177.inf,%CVirtA_Desc%;Cisco Systems VPN Adapter for 64-bit Windows; C:\WINDOWS\System32\drivers\CVirtA64.sys [2010-02-08 14992]
S3 dc1-controller;@dc1-controller.inf,%dc1-controller.SvcDesc%;Xbox Peripherals Driver; C:\WINDOWS\System32\drivers\dc1-controller.sys [2015-10-30 57344]
S3 DellRbtn;@oem82.inf,%DellRbtn%;Airplane Mode Switch; C:\WINDOWS\System32\drivers\DellRbtn.sys [2013-01-25 10752]
S3 dg_ssudbus;@oem176.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\System32\drivers\ssudbus.sys [2014-01-22 108800]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-10-30 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 kvpndev;@oem115.inf,%kvpndev.Service.DispName%;Kerio VPN adapter; C:\WINDOWS\System32\drivers\kvpndrv.sys [2008-01-16 73216]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-08-03 181248]
S3 RSUSBVSTOR;@oem95.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-12-21 28040]
S3 ssudmdm;@oem130.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 SWVNIC;@oem136.inf,%SWVNIC.Service.DispName%;SonicWALL Virtual Miniport; C:\WINDOWS\System32\drivers\swvnic.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-08 82128]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016-08-22 2159320]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-11-24 255000]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-03-05 237096]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-10-23 330136]
R2 OneSyncSvc_e10fae4;Hostitel synchronizace_e10fae4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-06-24 303360]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-10-23 291744]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_e10fae4;Data kontaktů_e10fae4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-11 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_20c7302f;Hostitel synchronizace_20c7302f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2ab3a1a1;Hostitel synchronizace_2ab3a1a1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3dec4;Hostitel synchronizace_3dec4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_545f5;Hostitel synchronizace_545f5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_5d7b02f;Hostitel synchronizace_5d7b02f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_7e35a;Hostitel synchronizace_7e35a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_7f36d74;Hostitel synchronizace_7f36d74; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_7f5f3;Hostitel synchronizace_7f5f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_7ff3afa;Hostitel synchronizace_7ff3afa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d3176;Hostitel synchronizace_d3176; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-07-25 324224]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-11 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_20c7302f;Služba zasílání zpráv_20c7302f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2ab3a1a1;Služba zasílání zpráv_2ab3a1a1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3dec4;Služba zasílání zpráv_3dec4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_545f5;Služba zasílání zpráv_545f5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_5d7b02f;Služba zasílání zpráv_5d7b02f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7e35a;Služba zasílání zpráv_7e35a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7f36d74;Služba zasílání zpráv_7f36d74; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7f5f3;Služba zasílání zpráv_7f5f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7ff3afa;Služba zasílání zpráv_7ff3afa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d3176;Služba zasílání zpráv_d3176; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_e10fae4;Služba zasílání zpráv_e10fae4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\syswow64\GameMon.des [2016-01-09 3916368]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_20c7302f;Data kontaktů_20c7302f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2ab3a1a1;Data kontaktů_2ab3a1a1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3dec4;Data kontaktů_3dec4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_545f5;Data kontaktů_545f5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_5d7b02f;Data kontaktů_5d7b02f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_7e35a;Data kontaktů_7e35a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_7f36d74;Data kontaktů_7f36d74; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_7f5f3;Data kontaktů_7f5f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_7ff3afa;Data kontaktů_7ff3afa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d3176;Data kontaktů_d3176; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-07 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-07-09 1450064]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

Re: Preventivka - děkuji za kontrolu

Napsal: 21 zář 2016 17:19
od Roli
Zdravím, jen uklidíme :)


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.

Re: Preventivka - děkuji za kontrolu

Napsal: 21 zář 2016 17:38
od Raynar7
Také zdravím, tady to je.

# AdwCleaner v6.020 - Log soubor vytvořen 21/09/2016 na 18:30:02
# Aktualizováno dne 14/09/2016 z ToolsLib
# Databáze : 2016-09-21.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : pc1 - DUŠAN
# Beží od : C:\Users\pc1\Downloads\adwcleaner_6.020.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum



***** [ Služby ] *****



***** [ Adresáře ] *****



***** [ Soubory ] *****

[-] Soubor smazán:C:\END


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****

[-] Klíč smazán:HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[#] Klíč smazán po restartování:[x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Prohlížeče ] *****

[-] [C:\Users\pc1\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazání:fcfenmboojpjinhpgggodefccipikbpd


*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1128 Bajtů] - [21/09/2016 18:30:02]
C:\AdwCleaner\AdwCleaner[S0].txt - [1549 Bajtů] - [21/09/2016 18:29:40]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1276 Bajtů] ##########

Re: Preventivka - děkuji za kontrolu

Napsal: 22 zář 2016 19:26
od Roli
Bezva uklizeno, pokud tedy není s PC žádný problém je to z mé strany vše.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz