Prosím o kontrolu logu.

[vrbickyjaroslav]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jaryn01 at 2016-10-05 16:24:08
Microsoft Windows 10 Pro
System drive C: has 162 GB (68%) free of 238 GB
Total RAM: 4094 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:24:16, on 5.10.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Jaryn01\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Games\World_of_Tanks\WargamingGameUpdater.exe
C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Gaming Keyboard\OSD.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jaryn01.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: VirtualKeyboardBrowserHelperObject - {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {93BC2EA7-2F17-4729-948A-D2E03FFB2412} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll
O2 - BHO: Safe Money Plugin - {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [VICTORY Gaming Keyboard] "C:\Program Files (x86)\Gaming Keyboard\Monitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Jaryn01\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jaryn01\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [World of Tanks] "C:\Games\World_of_Tanks\WargamingGameUpdater.exe"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jaryn01\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jaryn01\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: O&O Defrag Tray.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Virtuální klávesnice - {5547CE1F-74E9-41E5-9CBF-5211ECC37341} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{35ee404b-44ec-4d7f-97c8-fde4d7d3b7f4}: NameServer = 192.168.38.1,10.10.10.10
O17 - HKLM\System\CS1\Services\Tcpip\..\{35ee404b-44ec-4d7f-97c8-fde4d7d3b7f4}: NameServer = 192.168.38.1,10.10.10.10
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus 15.0.2 (AVP15.0.2) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: O&O CleverCache (OOCleverCache) - O&O Software GmbH - C:\Program Files\OO Software\CleverCache\ooccag.exe
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10865 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\mqsvc.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\OO Software\CleverCache\ooccag.exe"

C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\OO Software\Defrag\oodag.exe"
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
dashost.exe {2979da07-908a-4c95-a5a1fb6795514186}
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"ν
"C:\Program Files\OO Software\CleverCache\ooccctrl.exe" /tasktray
"C:\Program Files\OO Software\Defrag\oodtray.exe"
"C:\Users\Jaryn01\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Games\World_of_Tanks\WargamingGameUpdater.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Gaming Keyboard\OSD.exe"
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Jaryn01\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.143 --handshake-handle=0x24c
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="8168.0.2144394824\1248873995" --mojo-application-channel-token=9E2E4A190FE0ECC50F231D49EAD4328F --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/Default/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_25/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x1200 --gpu-driver-vendor=NVIDIA --gpu-driver-version=10.18.13.6839 --gpu-driver-date=6-2-2016 --mojo-platform-channel-handle=1456 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/Default/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_25/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=05964E2B2E208304338CF02F499F2F1D --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=D622E7EF160E272B89FD363E9B42B45B --mojo-application-channel-token=05964E2B2E208304338CF02F499F2F1D --channel="8168.3.604272668\2085857371" --mojo-platform-channel-handle=2544 /prefetch:1
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/Default/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_25/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=ED352C7DBE46D4327BBD4F86EECDEC4D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=1ED7632DA0F4D3668746EE92A1BC2B7C --mojo-application-channel-token=ED352C7DBE46D4327BBD4F86EECDEC4D --channel="8168.21.1991679422\1166584141" --mojo-platform-channel-handle=3968 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 640 644 652 8192 648
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\Jaryn01\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3562744649-1859518726-1150267491-1000Core.job - C:\Users\Jaryn01\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3562744649-1859518726-1150267491-1000UA.job - C:\Users\Jaryn01\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2016-03-24 1871864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{93BC2EA7-2F17-4729-948A-D2E03FFB2412}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2016-03-24 1871864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2016-03-24 1871864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2016-03-24 1705976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-07-31 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{93BC2EA7-2F17-4729-948A-D2E03FFB2412}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2016-03-24 1705976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2016-03-24 1705976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-31 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]
"ooccctrl.exe"=C:\Program Files\OO Software\CleverCache\ooccctrl.exe [2010-12-08 4346696]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2016-09-12 5128904]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Jaryn01\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
"OneDrive"=C:\Users\Jaryn01\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-16 633024]
"World of Tanks"=C:\Games\World_of_Tanks\WargamingGameUpdater.exe [2016-09-26 3134728]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Jaryn01\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"=C:\WINDOWS\system32\cmd.exe [2016-07-16 232960]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"VICTORY Gaming Keyboard"=C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [2013-04-09 270336]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-06-22 598552]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O&O Defrag Tray.lnk - C:\WINDOWS\Installer\{A2D1D1B3-2C94-4E3A-BCD3-268F93010169}\app_icon.ico

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-05 16:24:08 ----D---- C:\rsit
2016-10-05 16:24:08 ----D---- C:\Program Files\trend micro
2016-09-30 16:49:39 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-09-30 16:49:37 ----A---- C:\WINDOWS\system32\wmp.dll
2016-09-30 16:49:36 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-09-30 16:49:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-09-30 16:49:34 ----A---- C:\WINDOWS\SYSWOW64\LicenseManagerApi.dll
2016-09-30 16:49:34 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-09-30 16:49:34 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-09-30 16:49:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.UXRes.dll
2016-09-30 16:49:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-09-30 16:49:33 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-09-30 16:49:33 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-09-30 16:49:32 ----A---- C:\WINDOWS\system32\tquery.dll
2016-09-30 16:49:32 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-09-30 16:49:31 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-09-30 16:49:31 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-09-30 16:49:31 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2016-09-30 16:49:30 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-09-30 16:49:30 ----A---- C:\WINDOWS\system32\nettrace.dll
2016-09-30 16:49:30 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-09-30 16:49:29 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2016-09-30 16:49:29 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2016-09-30 16:49:29 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-09-30 16:49:29 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-09-30 16:49:29 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-09-30 16:49:28 ----A---- C:\WINDOWS\SYSWOW64\TempSignedLicenseExchangeTask.dll
2016-09-30 16:49:28 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-09-30 16:49:28 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-09-30 16:49:27 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-09-30 16:49:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2016-09-30 16:49:27 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-09-30 16:49:27 ----A---- C:\WINDOWS\system32\mprdim.dll
2016-09-30 16:49:27 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-09-30 16:49:27 ----A---- C:\WINDOWS\system32\ci.dll
2016-09-30 16:49:26 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-09-30 16:49:26 ----A---- C:\WINDOWS\system32\wkssvc.dll
2016-09-30 16:49:26 ----A---- C:\WINDOWS\system32\SessEnv.dll
2016-09-30 16:49:26 ----A---- C:\WINDOWS\system32\offlinesam.dll
2016-09-30 16:49:26 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-09-30 16:49:26 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-09-30 16:49:26 ----A---- C:\WINDOWS\system32\hal.dll
2016-09-30 16:49:26 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-09-30 16:49:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-09-30 16:49:25 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2016-09-30 16:49:25 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2016-09-30 16:49:25 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-09-30 16:49:25 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-09-30 16:49:25 ----A---- C:\WINDOWS\system32\webio.dll
2016-09-30 16:49:25 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-09-30 16:49:24 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2016-09-30 16:49:24 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2016-09-30 16:49:24 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-09-30 16:49:24 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-09-30 16:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-09-30 16:49:23 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-09-30 16:49:23 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-09-30 16:49:23 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-09-30 16:49:23 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-30 16:49:23 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2016-09-30 16:49:23 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-09-30 16:49:23 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-09-30 16:49:22 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-09-30 16:49:22 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2016-09-30 16:49:22 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-09-30 16:49:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-09-30 16:49:21 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-09-30 16:49:21 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2016-09-30 16:49:21 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2016-09-30 16:49:21 ----A---- C:\WINDOWS\system32\securekernel.exe
2016-09-30 16:49:21 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-09-30 16:49:21 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-09-30 16:49:21 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-09-30 16:49:20 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-09-30 16:49:20 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-09-30 16:49:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2016-09-30 16:49:18 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-09-30 16:49:18 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-09-30 16:49:18 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-09-30 16:49:18 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-30 16:49:18 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-09-30 16:49:18 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2016-09-30 16:49:17 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-09-30 16:49:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2016-09-30 16:49:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2016-09-30 16:49:17 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-09-30 16:49:17 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-09-30 16:49:17 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-09-30 16:49:17 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-09-30 16:49:17 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-09-30 16:49:17 ----A---- C:\WINDOWS\system32\lsm.dll
2016-09-30 16:49:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-30 16:49:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-09-30 16:49:16 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-09-30 16:49:16 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-09-30 16:49:16 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-09-30 16:49:15 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-09-30 16:49:15 ----A---- C:\WINDOWS\system32\tspubwmi.dll
2016-09-30 16:49:15 ----A---- C:\WINDOWS\system32\puiobj.dll
2016-09-30 16:49:15 ----A---- C:\WINDOWS\system32\NetworkUXBroker.dll
2016-09-30 16:49:15 ----A---- C:\WINDOWS\system32\netshell.dll
2016-09-30 16:49:15 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2016-09-30 16:49:15 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-09-30 16:49:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-09-30 16:49:14 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-09-30 16:49:14 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-09-30 16:49:14 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2016-09-30 16:49:14 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2016-09-30 16:49:14 ----A---- C:\WINDOWS\SYSWOW64\credprovslegacy.dll
2016-09-30 16:49:14 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-09-30 16:49:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-09-30 16:49:14 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-09-30 16:49:14 ----A---- C:\WINDOWS\system32\credprovslegacy.dll
2016-09-30 16:49:14 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-09-30 16:49:13 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-09-30 16:49:05 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-09-30 16:49:04 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-09-30 16:49:04 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-09-30 16:49:04 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2016-09-30 16:49:04 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2016-09-30 16:49:04 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-30 16:49:03 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-09-30 16:49:03 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-09-30 16:49:03 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-09-30 16:49:03 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-09-30 16:49:02 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-30 16:49:01 ----A---- C:\WINDOWS\system32\cdp.dll
2016-09-30 16:49:00 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-09-30 16:48:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-09-30 16:48:59 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-09-30 16:48:58 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2016-09-30 16:48:58 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-09-30 16:48:58 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-09-30 16:48:57 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-09-30 16:48:57 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-09-30 16:48:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-09-30 16:48:56 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-09-30 16:48:56 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-09-30 16:48:55 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-09-30 16:48:55 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-09-30 16:48:55 ----A---- C:\WINDOWS\system32\tdh.dll
2016-09-30 16:48:54 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-09-30 16:48:54 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-09-30 16:48:54 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-09-30 16:48:54 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-09-30 16:48:54 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-09-30 16:48:53 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-09-30 16:48:53 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-09-30 16:48:53 ----A---- C:\WINDOWS\system32\devinv.dll
2016-09-30 16:48:53 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-09-30 16:48:53 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-09-30 16:48:52 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-09-30 16:48:52 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-09-30 16:48:52 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2016-09-30 16:48:52 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2016-09-30 16:48:52 ----A---- C:\WINDOWS\system32\resutils.dll
2016-09-30 16:48:52 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-09-30 16:48:52 ----A---- C:\WINDOWS\system32\manage-bde.exe
2016-09-30 16:48:52 ----A---- C:\WINDOWS\system32\localspl.dll
2016-09-30 16:48:51 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2016-09-30 16:48:51 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2016-09-30 16:48:51 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-09-30 16:48:51 ----A---- C:\WINDOWS\system32\sppcext.dll
2016-09-30 16:48:51 ----A---- C:\WINDOWS\system32\pwcreator.exe
2016-09-30 16:48:51 ----A---- C:\WINDOWS\system32\pdh.dll
2016-09-30 16:48:51 ----A---- C:\WINDOWS\system32\icsvc.dll
2016-09-30 16:48:51 ----A---- C:\WINDOWS\system32\discan.dll
2016-09-30 16:48:51 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2016-09-30 16:48:50 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-09-30 16:48:50 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-09-30 16:48:50 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-09-30 16:48:50 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-09-30 16:48:50 ----A---- C:\WINDOWS\system32\ReAgent.dll
2016-09-30 16:48:50 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2016-09-30 16:48:50 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-09-30 16:48:50 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-09-30 16:48:49 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-09-30 16:48:49 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2016-09-30 16:48:49 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-09-30 16:48:49 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-09-30 16:48:49 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-09-30 16:48:49 ----A---- C:\WINDOWS\system32\Sens.dll
2016-09-30 16:48:49 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-09-30 16:48:49 ----A---- C:\WINDOWS\system32\fveui.dll
2016-09-30 16:48:49 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-30 16:48:49 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-09-30 16:48:48 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2016-09-30 16:48:48 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-30 16:48:48 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-09-30 16:48:48 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2016-09-30 16:48:48 ----A---- C:\WINDOWS\splwow64.exe
2016-09-30 16:48:47 ----A---- C:\WINDOWS\SYSWOW64\wlancfg.dll
2016-09-30 16:48:47 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-09-30 16:48:47 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2016-09-30 16:48:47 ----A---- C:\WINDOWS\system32\bdeui.dll
2016-09-30 16:48:46 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-09-30 16:48:46 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2016-09-30 16:48:46 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-09-30 16:48:46 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-09-30 16:48:46 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-09-30 16:48:46 ----A---- C:\WINDOWS\system32\fvenotify.exe
2016-09-30 16:48:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2016-09-30 16:48:45 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2016-09-30 16:48:45 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2016-09-30 16:48:45 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-09-30 16:48:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-09-30 16:48:44 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-09-30 16:48:43 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-09-30 16:48:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2016-09-30 16:48:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2016-09-30 16:48:43 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2016-09-30 16:48:43 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-09-30 16:48:43 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-09-30 16:48:43 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-09-30 16:48:43 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-09-30 16:48:43 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2016-09-30 16:48:42 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2016-09-30 16:48:42 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-09-30 16:48:42 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-09-30 16:48:42 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2016-09-30 16:48:42 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-09-30 16:48:42 ----A---- C:\WINDOWS\system32\ffbroker.dll
2016-09-30 16:48:38 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-09-30 16:48:36 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-09-30 16:48:35 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-09-30 16:48:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-09-30 16:48:33 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-09-30 16:48:32 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-09-30 16:48:32 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-09-30 16:48:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-09-30 16:48:30 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-30 16:48:30 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-09-30 16:48:29 ----A---- C:\WINDOWS\system32\twinui.dll
2016-09-30 16:48:29 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-09-30 16:48:28 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-09-30 16:48:27 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-09-30 16:48:25 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-09-30 16:48:21 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-09-30 16:48:21 ----A---- C:\WINDOWS\system32\spaceman.exe
2016-09-30 16:48:21 ----A---- C:\WINDOWS\system32\mispace.dll
2016-09-30 16:48:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-09-30 16:48:20 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-09-30 16:48:20 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-09-30 16:48:20 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-09-30 16:48:19 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-09-30 16:48:19 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-09-30 16:48:18 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2016-09-30 16:48:18 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-09-30 16:48:18 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-09-30 16:48:17 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-09-30 16:48:17 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-09-30 16:48:17 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-09-30 16:48:17 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-09-30 16:48:17 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-09-30 16:48:16 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-09-30 16:48:16 ----A---- C:\WINDOWS\system32\wininet.dll
2016-09-30 16:48:16 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-09-30 16:48:15 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-09-30 16:48:15 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-09-30 16:48:15 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-09-30 16:48:15 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2016-09-30 16:48:15 ----A---- C:\WINDOWS\explorer.exe
2016-09-30 16:48:14 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-09-30 16:48:14 ----A---- C:\WINDOWS\system32\uReFS.dll
2016-09-30 16:48:14 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-09-30 16:48:14 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-09-30 16:48:13 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-09-30 16:48:13 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-09-30 16:48:13 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-09-30 16:48:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-09-30 16:48:12 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-09-30 16:48:12 ----A---- C:\WINDOWS\system32\rascustom.dll
2016-09-30 16:48:11 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-09-30 16:48:11 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-09-30 16:48:11 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-09-30 16:48:11 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-09-30 16:48:11 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2016-09-30 16:48:11 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-09-30 16:48:11 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-09-30 16:48:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-09-30 16:48:10 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-09-30 16:48:10 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-09-30 16:48:10 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-09-30 16:48:10 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-09-30 16:48:10 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-09-30 16:48:10 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-09-30 16:48:10 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-09-30 16:48:10 ----A---- C:\WINDOWS\system32\RMapi.dll
2016-09-30 16:48:10 ----A---- C:\WINDOWS\system32\mprapi.dll
2016-09-30 16:48:09 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-09-30 16:48:09 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-09-30 16:48:09 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-09-30 16:48:09 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-09-30 16:48:09 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-09-30 16:48:09 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2016-09-30 16:48:09 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-09-30 16:48:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-09-30 16:48:08 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-09-30 16:48:08 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2016-09-30 16:48:08 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2016-09-30 16:48:08 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-09-30 16:48:08 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-09-30 16:48:08 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2016-09-30 16:48:08 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-09-30 16:48:08 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-09-30 16:48:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2016-09-30 16:48:07 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-09-30 16:48:07 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-30 16:48:07 ----A---- C:\WINDOWS\system32\nltest.exe
2016-09-30 16:48:06 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-09-30 16:48:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-09-30 16:48:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2016-09-30 16:48:06 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2016-09-30 16:48:06 ----A---- C:\WINDOWS\SYSWOW64\cngkeyhelper.dll
2016-09-30 16:48:06 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-09-30 16:48:06 ----A---- C:\WINDOWS\system32\devenum.dll
2016-09-30 16:48:06 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-09-30 16:48:06 ----A---- C:\WINDOWS\system32\cngkeyhelper.dll
2016-09-30 16:48:05 ----A---- C:\WINDOWS\SYSWOW64\DataExchange.dll
2016-09-30 16:48:05 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-09-30 16:48:05 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-09-30 16:48:05 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2016-09-30 16:48:05 ----A---- C:\WINDOWS\system32\RelPost.exe
2016-09-30 16:48:05 ----A---- C:\WINDOWS\system32\rasmans.dll
2016-09-30 16:48:05 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-09-30 16:48:05 ----A---- C:\WINDOWS\system32\DataExchange.dll
2016-09-30 16:48:05 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-09-30 16:48:04 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2016-09-30 16:48:04 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-09-30 16:48:04 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-09-30 16:48:04 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-09-30 16:48:04 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-09-30 16:48:04 ----A---- C:\WINDOWS\system32\setupugc.exe
2016-09-30 16:48:04 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-09-30 16:48:04 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-09-30 16:48:04 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2016-09-30 16:48:04 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2016-09-30 16:48:04 ----A---- C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-09-30 16:48:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-09-30 16:48:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-09-30 16:48:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-09-30 16:48:03 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-09-30 16:48:03 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-30 16:48:03 ----A---- C:\WINDOWS\system32\fveprompt.exe
2016-09-30 16:48:03 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2016-09-30 16:48:03 ----A---- C:\WINDOWS\system32\baaupdate.exe
2016-09-30 16:48:03 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-09-30 16:48:02 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-09-30 16:48:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2016-09-30 16:48:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-09-30 16:48:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2016-09-30 16:48:01 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-09-30 16:48:01 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-09-30 16:48:01 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-09-30 16:48:01 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-09-30 16:48:01 ----A---- C:\WINDOWS\system32\dsreg.dll
2016-09-30 16:48:01 ----A---- C:\WINDOWS\system32\bootux.dll
2016-09-30 16:48:00 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2016-09-30 16:48:00 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2016-09-30 16:48:00 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-09-30 16:48:00 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-09-30 16:48:00 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-09-30 16:48:00 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-09-30 16:48:00 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-09-30 16:48:00 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\system32\Family.Client.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-09-30 16:47:59 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\system32\smphost.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\system32\imapi2.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-09-30 16:47:58 ----A---- C:\WINDOWS\system32\appinfo.dll
2016-09-30 16:47:57 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-09-30 16:47:57 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-09-30 16:47:56 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-09-30 16:47:56 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-09-30 16:47:55 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-09-30 16:47:54 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-09-30 16:47:54 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-09-30 16:47:53 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-09-30 16:47:53 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-09-30 16:47:52 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-09-30 16:47:51 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-09-30 16:47:51 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-09-30 16:47:50 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2016-09-30 16:47:50 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-09-30 16:47:50 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-09-30 16:47:50 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-30 16:47:49 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-09-30 16:47:49 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-09-30 16:47:49 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-09-30 16:47:48 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-09-30 16:47:48 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-09-30 16:47:48 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-09-30 16:47:47 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-09-30 16:47:47 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2016-09-30 16:47:47 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-09-30 16:47:47 ----A---- C:\WINDOWS\SYSWOW64\NetworkCollectionAgent.dll
2016-09-30 16:47:47 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-09-30 16:47:47 ----A---- C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-09-30 16:47:46 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-09-30 16:47:46 ----A---- C:\WINDOWS\system32\winload.exe
2016-09-30 16:47:46 ----A---- C:\WINDOWS\system32\provops.dll
2016-09-30 16:47:46 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-09-30 16:47:45 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-09-30 16:47:45 ----A---- C:\WINDOWS\system32\winresume.exe
2016-09-30 16:47:45 ----A---- C:\WINDOWS\system32\hvix64.exe
2016-09-30 16:47:44 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-09-30 16:47:44 ----A---- C:\WINDOWS\system32\hvax64.exe
2016-09-30 16:47:44 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-09-30 16:47:43 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-09-30 16:47:43 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-09-30 16:47:43 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-09-30 16:47:43 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-09-30 16:47:43 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-09-30 16:47:43 ----A---- C:\WINDOWS\system32\hvloader.exe
2016-09-30 16:47:43 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-09-30 16:47:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-09-30 16:47:42 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-09-30 16:47:42 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-09-30 16:47:42 ----A---- C:\WINDOWS\system32\mprddm.dll
2016-09-30 16:47:42 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-09-30 16:47:42 ----A---- C:\WINDOWS\system32\biwinrt.dll
2016-09-30 16:47:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2016-09-30 16:47:41 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2016-09-30 16:47:41 ----A---- C:\WINDOWS\system32\wlancfg.dll
2016-09-30 16:47:41 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-09-30 16:47:41 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-09-30 16:47:41 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-09-30 16:47:41 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-09-30 16:47:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-09-30 16:47:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2016-09-30 16:47:40 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2016-09-30 16:47:40 ----A---- C:\WINDOWS\SYSWOW64\pwrshplugin.dll
2016-09-30 16:47:40 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-09-30 16:47:40 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2016-09-30 16:47:40 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-09-30 16:47:40 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-09-30 16:47:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-09-30 16:47:39 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-30 16:47:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-09-30 16:47:39 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-09-30 16:47:39 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-09-30 16:47:38 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2016-09-30 16:47:38 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-09-30 16:47:38 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2016-09-30 16:47:38 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-09-30 16:47:38 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2016-09-30 16:47:38 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-09-30 16:47:38 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-09-30 16:47:38 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-09-30 16:47:38 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-09-30 16:47:38 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-09-30 16:47:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-09-30 16:47:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-09-30 16:47:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2016-09-30 16:47:37 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2016-09-30 16:47:37 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-09-30 16:47:37 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-09-30 16:47:37 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-09-30 16:47:37 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2016-09-30 16:47:36 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2016-09-30 16:47:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2016-09-30 16:47:36 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-09-30 16:47:36 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2016-09-30 16:47:36 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-09-30 16:47:36 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-09-30 16:47:36 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2016-09-30 16:47:36 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-09-30 16:47:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2016-09-30 16:47:35 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-09-30 16:47:35 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-30 16:47:35 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2016-09-30 16:47:35 ----A---- C:\WINDOWS\system32\MSAC3ENC.DLL
2016-09-30 16:47:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-09-30 16:47:32 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-09-30 16:47:30 ----A---- C:\WINDOWS\system32\msctf.dll
2016-09-30 16:47:29 ----A---- C:\WINDOWS\system32\shell32.dll
2016-09-30 16:47:27 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-09-30 16:47:27 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-09-30 16:47:26 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-09-30 16:47:26 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-09-30 16:47:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-09-30 16:47:25 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-09-30 16:47:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-09-30 16:47:24 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-09-30 16:47:24 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-09-30 16:47:23 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-09-30 16:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-09-30 16:47:22 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-09-30 16:47:22 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-09-30 16:47:22 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2016-09-30 16:47:21 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-09-30 16:47:21 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-09-30 16:47:20 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-09-30 16:47:20 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-09-30 16:47:20 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-09-30 16:47:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-09-30 16:47:19 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-09-30 16:47:19 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-09-30 16:47:19 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-09-30 16:47:19 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-09-30 16:47:18 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-09-30 16:47:18 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-09-30 16:47:18 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-09-30 16:47:18 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-09-30 16:47:17 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-09-30 16:47:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-09-30 16:47:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-09-30 16:47:17 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-09-30 16:47:17 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2016-09-30 16:47:17 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-30 16:47:17 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-09-30 16:47:17 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-09-30 16:47:17 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-09-30 16:47:16 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2016-09-30 16:47:16 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-09-30 16:47:16 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-09-30 16:47:16 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2016-09-30 16:47:16 ----A---- C:\WINDOWS\system32\skci.dll
2016-09-30 16:47:16 ----A---- C:\WINDOWS\system32\icsvcext.dll
2016-09-30 16:47:16 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-09-30 16:47:16 ----A---- C:\WINDOWS\system32\dwmapi.dll
2016-09-30 16:47:16 ----A---- C:\WINDOWS\system32\bdeunlock.exe
2016-09-30 16:47:15 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-09-30 16:47:15 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-09-30 16:47:15 ----A---- C:\WINDOWS\SYSWOW64\mprapi.dll
2016-09-30 16:47:15 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-09-30 16:47:15 ----A---- C:\WINDOWS\system32\qedit.dll
2016-09-30 16:47:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-09-30 16:47:15 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-09-30 16:47:15 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2016-09-30 16:47:15 ----A---- C:\WINDOWS\system32\drivers\AppVStrm.sys
2016-09-30 16:47:15 ----A---- C:\WINDOWS\system32\AppVClient.exe
2016-09-30 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-09-30 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-30 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-09-30 16:47:14 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-30 16:47:14 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-09-30 16:47:14 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-09-30 16:47:14 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-09-30 16:47:14 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-09-30 16:47:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-09-30 16:47:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-09-30 16:47:13 ----A---- C:\WINDOWS\SYSWOW64\BackgroundMediaPolicy.dll
2016-09-30 16:47:13 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-09-30 16:47:13 ----A---- C:\WINDOWS\system32\pwrshplugin.dll
2016-09-30 16:47:13 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-09-30 16:47:13 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-09-30 16:47:13 ----A---- C:\WINDOWS\system32\bdechangepin.exe
2016-09-30 16:47:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-09-30 16:47:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2016-09-30 16:47:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2016-09-30 16:47:12 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-09-30 16:47:12 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-09-30 16:47:12 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-09-30 16:47:12 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-30 16:47:12 ----A---- C:\WINDOWS\system32\sbe.dll
2016-09-30 16:47:12 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-09-30 16:47:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2016-09-30 16:47:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-09-30 16:47:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-09-30 16:47:11 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2016-09-30 16:47:11 ----A---- C:\WINDOWS\SYSWOW64\ClipboardServer.dll
2016-09-30 16:47:11 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-30 16:47:11 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-09-30 16:47:10 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2016-09-30 16:47:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2016-09-30 16:47:10 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-09-30 16:47:10 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-09-30 16:47:10 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-09-30 16:47:10 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-09-30 16:47:10 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-09-30 16:47:10 ----A---- C:\WINDOWS\system32\rshx32.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\system32\odbcconf.dll
2016-09-30 16:47:09 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-09-30 16:47:09 ----A---- C:\WINDOWS\system32\dialclient.dll
2016-09-30 16:47:08 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-09-30 16:47:08 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-09-16 19:48:10 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-16 19:48:09 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-09-16 19:48:09 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-09-16 19:48:09 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2016-09-16 19:48:09 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-09-16 19:48:09 ----A---- C:\WINDOWS\system32\ExSMime.dll
2016-09-16 19:48:09 ----A---- C:\WINDOWS\system32\ClipboardServer.dll
2016-09-16 19:48:05 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2016-09-16 19:48:05 ----A---- C:\WINDOWS\system32\cdd.dll
2016-09-16 19:48:04 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2016-09-16 19:48:03 ----A---- C:\WINDOWS\system32\POSyncServices.dll
2016-09-16 19:48:01 ----A---- C:\WINDOWS\system32\wups2.dll
2016-09-16 19:48:01 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-09-16 19:47:58 ----A---- C:\WINDOWS\system32\cscui.dll
2016-09-16 19:47:57 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2016-09-16 19:47:57 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-09-16 19:47:56 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccessRes.dll
2016-09-16 19:47:56 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2016-09-16 19:47:56 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2016-09-16 19:47:56 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2016-09-16 19:47:56 ----A---- C:\WINDOWS\system32\UserDataAccessRes.dll
2016-09-16 19:47:56 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-09-16 19:47:56 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-09-16 19:47:56 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-09-16 19:47:55 ----A---- C:\WINDOWS\SYSWOW64\POSyncServices.dll
2016-09-16 19:47:54 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-09-16 19:47:53 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-09-16 19:47:53 ----A---- C:\WINDOWS\SYSWOW64\DbgModel.dll
2016-09-16 19:47:53 ----A---- C:\WINDOWS\system32\DbgModel.dll
2016-09-16 19:47:48 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-09-16 19:47:47 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2016-09-16 19:47:47 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-09-16 19:47:46 ----A---- C:\WINDOWS\system32\ContactActivation.dll
2016-09-16 19:47:45 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2016-09-16 19:47:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-09-16 19:47:44 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-09-16 19:47:43 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-09-16 19:47:43 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-09-16 19:47:43 ----A---- C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-09-16 19:47:43 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-09-16 19:47:43 ----A---- C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-09-16 19:47:43 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2016-09-16 19:47:42 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-09-16 19:47:42 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2016-09-16 19:47:39 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-09-16 19:47:39 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-09-16 19:47:39 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-16 19:47:37 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-09-16 19:47:35 ----A---- C:\WINDOWS\system32\XamlTileRender.dll
2016-09-16 19:47:35 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-09-16 19:47:35 ----A---- C:\WINDOWS\system32\csrsrv.dll
2016-09-16 19:47:35 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-09-16 19:47:34 ----A---- C:\WINDOWS\SYSWOW64\MSAJApi.dll
2016-09-16 19:47:34 ----A---- C:\WINDOWS\system32\MSAJApi.dll
2016-09-16 19:47:34 ----A---- C:\WINDOWS\system32\invagent.dll
2016-09-16 19:47:34 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-09-16 19:47:33 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\SYSWOW64\eappprxy.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\system32\eappprxy.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\system32\eappgnui.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-09-16 19:47:32 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-09-16 19:47:31 ----A---- C:\WINDOWS\SYSWOW64\ContactActivation.dll
2016-09-16 19:47:30 ----A---- C:\WINDOWS\system32\provengine.dll
2016-09-16 19:47:30 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-09-16 19:47:29 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-09-16 19:47:28 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-16 19:47:28 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-16 19:47:25 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-09-16 19:47:24 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-09-16 19:47:24 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-16 19:47:24 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2016-09-16 19:47:23 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-09-16 19:47:23 ----A---- C:\WINDOWS\system32\mf.dll
2016-09-16 19:47:23 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-09-16 19:47:22 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-16 19:47:20 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-09-16 19:47:20 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-09-16 19:47:20 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-09-16 19:47:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-16 19:47:19 ----A---- C:\WINDOWS\SYSWOW64\UserDataTypeHelperUtil.dll
2016-09-16 19:47:19 ----A---- C:\WINDOWS\SYSWOW64\UserDataLanguageUtil.dll
2016-09-16 19:47:19 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2016-09-16 19:47:19 ----A---- C:\WINDOWS\SYSWOW64\AddressParser.dll
2016-09-16 19:47:19 ----A---- C:\WINDOWS\system32\VCardParser.dll
2016-09-16 19:47:19 ----A---- C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-09-16 19:47:19 ----A---- C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-09-16 19:47:19 ----A---- C:\WINDOWS\system32\AddressParser.dll
2016-09-16 19:47:18 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2016-09-16 19:47:18 ----A---- C:\WINDOWS\SYSWOW64\UserDataPlatformHelperUtil.dll
2016-09-16 19:47:18 ----A---- C:\WINDOWS\SYSWOW64\ExtrasXmlParser.dll
2016-09-16 19:47:10 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2016-09-16 19:47:10 ----A---- C:\WINDOWS\system32\msxml6r.dll
2016-09-16 19:47:10 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-09-16 19:47:09 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-09-16 19:47:09 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-09-16 19:47:03 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2016-09-16 19:47:03 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-09-16 19:47:02 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-09-16 19:47:02 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-09-16 19:47:02 ----A---- C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-16 19:47:01 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-09-16 19:47:01 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-09-16 19:47:01 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-09-16 19:47:01 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-09-16 19:47:01 ----A---- C:\WINDOWS\system32\moshost.dll
2016-09-16 19:47:01 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-09-16 19:47:00 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2016-09-16 19:47:00 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-09-16 19:47:00 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-09-16 19:47:00 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2016-09-16 19:47:00 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-09-16 19:47:00 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-09-16 19:46:59 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-09-16 19:46:58 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-16 19:46:55 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2016-09-16 19:46:54 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-09-16 19:46:52 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2016-09-16 19:46:52 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2016-09-16 19:46:52 ----A---- C:\WINDOWS\system32\win32u.dll
2016-09-16 19:46:52 ----A---- C:\WINDOWS\system32\win32k.sys
2016-09-16 19:46:49 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-09-16 19:46:48 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-09-16 19:46:48 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2016-09-16 19:46:48 ----A---- C:\WINDOWS\system32\lsass.exe
2016-09-16 19:46:48 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-09-16 19:46:47 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-09-16 19:46:47 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-09-16 19:46:47 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2016-09-16 19:46:47 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-09-16 19:46:47 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-09-16 19:46:47 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2016-09-16 19:46:46 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-09-16 19:46:46 ----A---- C:\WINDOWS\system32\evr.dll
2016-09-16 19:46:45 ----A---- C:\WINDOWS\system32\EncDec.dll
2016-09-16 19:46:45 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-09-16 19:46:44 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-09-16 19:46:43 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-09-16 19:46:43 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-09-16 19:46:43 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-16 19:46:43 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-09-16 19:46:43 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-09-16 19:46:40 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-09-16 19:46:40 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-09-16 19:46:39 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-16 19:46:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-09-16 19:46:38 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2016-09-16 19:46:38 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-16 19:46:38 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-09-16 19:46:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-09-16 19:46:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-09-16 19:46:36 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-09-16 19:46:35 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-09-16 19:46:35 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-09-16 19:46:35 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-09-16 19:46:35 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-09-16 19:46:35 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-09-16 19:46:34 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-09-16 19:46:34 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-09-16 19:46:34 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-09-16 19:46:33 ----A---- C:\WINDOWS\SYSWOW64\wmpmde.dll
2016-09-16 19:46:33 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-09-16 19:46:33 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-09-16 19:46:32 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-09-16 19:46:32 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-09-16 19:46:32 ----A---- C:\WINDOWS\system32\winmde.dll
2016-09-16 19:46:32 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-09-16 19:46:31 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-09-16 19:46:31 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-09-16 19:46:30 ----A---- C:\WINDOWS\system32\ole32.dll
2016-09-16 19:46:30 ----A---- C:\WINDOWS\system32\combase.dll
2016-09-16 19:46:25 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-09-16 19:46:24 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2016-09-16 19:46:23 ----A---- C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
2016-09-16 19:46:21 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-09-16 19:46:20 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-09-16 19:46:20 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-09-16 19:46:17 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-09-16 19:46:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-09-16 19:46:09 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-09-16 19:46:09 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-09-16 19:46:09 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-09-16 19:46:09 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-09-16 19:46:08 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-09-16 19:46:05 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2016-09-16 19:46:05 ----A---- C:\WINDOWS\SYSWOW64\PhoneutilRes.dll
2016-09-16 19:46:05 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2016-09-16 19:46:05 ----A---- C:\WINDOWS\system32\tzres.dll
2016-09-16 19:46:05 ----A---- C:\WINDOWS\system32\PhoneutilRes.dll
2016-09-16 19:46:05 ----A---- C:\WINDOWS\system32\PhoneServiceRes.dll
2016-09-16 19:46:05 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-09-16 19:46:01 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-09-16 19:46:01 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-09-16 19:46:00 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-16 19:46:00 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-16 19:46:00 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-09-16 19:46:00 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2016-09-16 19:45:58 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-09-16 19:45:57 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-09-16 19:45:57 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-09-16 19:45:56 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-09-16 19:45:56 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-09-16 19:45:50 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-09-16 19:45:50 ----A---- C:\WINDOWS\system32\authui.dll
2016-09-16 19:45:48 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-09-16 19:45:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-09-16 19:45:47 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-09-16 19:45:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-16 19:45:46 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-09-16 19:45:46 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2016-09-16 19:45:45 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-09-16 19:45:45 ----A---- C:\WINDOWS\system32\InputService.dll
2016-09-16 19:45:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-16 19:45:44 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-09-16 19:45:44 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-09-16 19:45:44 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-09-16 19:45:44 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-16 19:45:44 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-16 19:45:44 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-16 19:45:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-09-16 19:45:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-09-16 19:45:42 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-16 19:45:42 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-09-16 19:45:41 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-09-16 19:45:41 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-09-16 19:45:34 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-16 19:45:34 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-16 19:45:33 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-09-16 19:45:33 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-09-16 19:45:25 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-09-16 19:45:17 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-09-16 19:45:17 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-09-16 19:45:17 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-09-16 19:45:16 ----A---- C:\WINDOWS\system32\MapRouter.dll
2016-09-16 19:45:16 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2016-09-16 19:45:16 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-09-16 19:45:15 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-09-16 19:45:15 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2016-09-16 19:45:15 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2016-09-16 19:45:14 ----A---- C:\WINDOWS\system32\mos.dll
2016-09-16 19:45:13 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-09-16 19:45:12 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-09-16 19:44:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-16 19:44:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-09-16 19:44:50 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2016-09-16 19:44:50 ----A---- C:\WINDOWS\system32\aclui.dll
2016-09-16 19:44:48 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-09-14 16:52:25 ----D---- C:\WINDOWS\PCHEALTH
2016-09-12 15:33:00 ----A---- C:\WINDOWS\system32\ooscrsav.scr
2016-09-12 15:32:12 ----A---- C:\WINDOWS\system32\oodssrs.dll
2016-09-12 15:30:28 ----A---- C:\WINDOWS\system32\oodbs.exe
2016-09-12 15:30:24 ----A---- C:\WINDOWS\system32\oodbsrs.dll

======List of files/folders modified in the last 1 month======

2016-10-05 16:24:08 ----RD---- C:\Program Files
2016-10-05 15:55:27 ----D---- C:\WINDOWS\Temp
2016-10-05 15:43:00 ----D---- C:\WINDOWS\system32\sru
2016-10-05 15:05:16 ----RD---- C:\WINDOWS\Microsoft.NET
2016-10-05 15:04:30 ----D---- C:\WINDOWS\Prefetch
2016-10-05 15:04:15 ----D---- C:\WINDOWS\system32\SleepStudy
2016-10-05 14:57:55 ----D---- C:\WINDOWS\AppReadiness
2016-10-05 14:57:54 ----HD---- C:\Program Files\WindowsApps
2016-10-04 21:00:51 ----D---- C:\WINDOWS\System32
2016-10-04 21:00:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-04 20:55:34 ----D---- C:\ProgramData\Kaspersky Lab
2016-10-04 20:54:36 ----SHD---- C:\System Volume Information
2016-10-04 20:54:33 ----D---- C:\ProgramData\NVIDIA
2016-10-04 20:54:31 ----D---- C:\WINDOWS\Minidump
2016-10-04 20:54:30 ----D---- C:\Windows
2016-10-04 17:08:55 ----D---- C:\WINDOWS\debug
2016-10-04 16:23:21 ----SHD---- C:\WINDOWS\Installer
2016-10-04 16:23:00 ----D---- C:\Program Files\OO Software
2016-10-04 16:22:47 ----D---- C:\WINDOWS\system32\catroot2
2016-10-02 13:11:28 ----D---- C:\WINDOWS\INF
2016-10-01 16:28:18 ----D---- C:\WINDOWS\rescache
2016-10-01 15:11:50 ----D---- C:\WINDOWS\system32\config
2016-10-01 11:51:44 ----D---- C:\WINDOWS\system32\Tasks
2016-10-01 08:28:06 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-01 08:28:04 ----D---- C:\WINDOWS\WinSxS
2016-09-30 21:51:04 ----RD---- C:\WINDOWS\assembly
2016-09-30 20:34:44 ----D---- C:\WINDOWS\system32\drivers
2016-09-30 20:26:12 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-09-30 20:26:12 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2016-09-30 20:26:10 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-09-30 20:26:10 ----D---- C:\WINDOWS\SYSWOW64\setup
2016-09-30 20:26:10 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-09-30 20:26:09 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-09-30 20:26:09 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-09-30 20:26:09 ----D---- C:\WINDOWS\SysWOW64
2016-09-30 20:26:00 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-09-30 20:26:00 ----D---- C:\WINDOWS\system32\wbem
2016-09-30 20:26:00 ----D---- C:\WINDOWS\system32\Sysprep
2016-09-30 20:26:00 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2016-09-30 20:26:00 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-09-30 20:26:00 ----D---- C:\WINDOWS\system32\setup
2016-09-30 20:26:00 ----D---- C:\WINDOWS\system32\oobe
2016-09-30 20:25:59 ----SD---- C:\WINDOWS\system32\F12
2016-09-30 20:25:59 ----D---- C:\WINDOWS\system32\migration
2016-09-30 20:25:59 ----D---- C:\WINDOWS\system32\en-US
2016-09-30 20:25:59 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-09-30 20:25:59 ----D---- C:\WINDOWS\system32\Dism
2016-09-30 20:25:59 ----D---- C:\WINDOWS\system32\cs-CZ
2016-09-30 20:25:59 ----D---- C:\WINDOWS\system32\Boot
2016-09-30 20:25:59 ----D---- C:\WINDOWS\system32\appraiser
2016-09-30 20:25:56 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-09-30 20:25:56 ----D---- C:\WINDOWS\ShellExperiences
2016-09-30 20:25:56 ----D---- C:\WINDOWS\Provisioning
2016-09-30 20:25:56 ----D---- C:\WINDOWS\bcastdvr
2016-09-30 20:25:56 ----D---- C:\WINDOWS\AppPatch
2016-09-30 20:25:56 ----D---- C:\Program Files\Windows Photo Viewer
2016-09-30 20:25:56 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2016-09-30 20:25:56 ----D---- C:\Program Files\Internet Explorer
2016-09-30 20:25:56 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-09-30 20:25:56 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-30 17:30:52 ----D---- C:\WINDOWS\CbsTemp
2016-09-23 14:55:46 ----RD---- C:\Program Files (x86)
2016-09-23 14:54:02 ----D---- C:\Program Files (x86)\SpeedFan
2016-09-17 05:12:58 ----SD---- C:\WINDOWS\system32\dsc
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\zh-TW
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\zh-HK
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\zh-CN
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\uk-UA
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\tr-TR
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\th-TH
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\sv-SE
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\sl-SI
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\sk-SK
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\ru-RU
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\ro-RO
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\pt-PT
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\pt-BR
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\pl-PL
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\nl-NL
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\nb-NO
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\lv-LV
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\lt-LT
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\ko-KR
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\ja-jp
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\it-IT
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\hu-HU
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\hr-HR
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\he-IL
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\fr-FR
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\fr-CA
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\fi-FI
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\et-EE
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\es-MX
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\es-ES
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\en-GB
2016-09-17 05:12:58 ----D---- C:\WINDOWS\system32\el-GR
2016-09-17 05:12:57 ----D---- C:\WINDOWS\system32\de-DE
2016-09-17 05:12:57 ----D---- C:\WINDOWS\system32\da-DK
2016-09-17 05:12:57 ----D---- C:\WINDOWS\system32\bg-BG
2016-09-17 05:12:57 ----D---- C:\WINDOWS\system32\ar-SA
2016-09-17 05:12:50 ----RD---- C:\Program Files\Windows Defender
2016-09-17 05:12:50 ----D---- C:\Program Files\Windows Media Player
2016-09-17 05:12:50 ----D---- C:\Program Files\Windows Mail
2016-09-17 05:12:50 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-17 05:12:50 ----D---- C:\Program Files (x86)\Windows Defender
2016-09-14 16:52:56 ----D---- C:\ProgramData\Microsoft Help
2016-09-14 16:50:19 ----D---- C:\WINDOWS\system32\MRT
2016-09-14 16:41:40 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-09-11 07:46:10 ----D---- C:\WINDOWS\LiveKernelReports
2016-09-11 07:46:06 ----DC---- C:\WINDOWS\Panther
2016-09-07 18:32:38 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

[vrbickyjaroslav]

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 cm_km_w;Kaspersky Lab Crypto Module (FDE PDK); C:\WINDOWS\system32\DRIVERS\cm_km_w.sys [2015-07-03 247016]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-07-16 45920]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2016-03-24 478392]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 KLHK;Kaspersky Lab service driver; C:\WINDOWS\system32\DRIVERS\klhk.sys [2016-05-26 238000]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2016-05-26 834992]
R1 KLIM6;@oem5.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2016-05-26 49240]
R1 klpd;klpd; C:\WINDOWS\system32\DRIVERS\klpd.sys [2015-07-03 24944]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2016-03-24 77680]
R1 Klwtp;Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2016-03-24 89272]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2015-10-08 190648]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2016-05-26 64368]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 speedfan;speedfan; \??\C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2015-07-03 159960]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2016-03-24 49008]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2016-03-24 48504]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-08-03 175616]
R3 MTsensor;@oem23.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2013-05-17 17280]
R3 NVHDA;@oem4.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2016-06-07 149960]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-06-07 13553088]
R3 NVNET;@netnvm64.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6264.sys [2016-07-16 344192]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2012-07-27 29616]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-17 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-17 141152]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-07-16 117248]
S3 dg_ssudbus;@oem0.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-07-22 130688]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-17 179040]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 nvstor64;nvstor64; C:\WINDOWS\System32\drivers\nvstor64.sys [2007-08-09 130080]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 ssudmdm;@oem3.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-07-22 164992]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-16 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_1652df;CDPUserSvc_1652df; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-08-03 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-06-03 1352760]
R2 OneSyncSvc_1652df;Hostitel synchronizace_1652df; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 OOCleverCache;O&O CleverCache; C:\Program Files\OO Software\CleverCache\ooccag.exe [2010-12-08 850760]
R2 OODefragAgent;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2016-09-12 1735368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe [2016-06-03 424384]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 AVP15.0.2;Služba Kaspersky Anti-Virus 15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [2015-07-03 194000]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-13 136120]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_1652df;Služba zasílání zpráv_1652df; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc_1652df;Data kontaktů_1652df; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-07 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-09-15 823136]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

[Roli]

Zdravím, nic špatného tam nevidím je tedy nějaký problém s PC ?

[vrbickyjaroslav]

Zdravím, nic špatného tam nevidím je tedy nějaký problém s PC ?

Dobrý den, nezdá se mi rychlost internetového připojení a načítaní stránek v prohlížeči

jinak by vše mělo být v pořádku. Děkuji za kontrolu. JV.

[Roli]

Dobrý den, nezdá se mi rychlost internetového připojení a načítaní stránek v prohlížeči

Tak v tom případě se mrknem hlouběji.


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report


Pak použij Mbam z mého popdisu a dej mi sem z něj log po smazání nepořádku.

[vrbickyjaroslav]

Dobrý den, nezdá se mi rychlost internetového připojení a načítaní stránek v prohlížeči

Tak v tom případě se mrknem hlouběji.


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report


Pak použij Mbam z mého popdisu a dej mi sem z něj log po smazání nepořádku.

Zdravím tady jsou:

# AdwCleaner v6.021 - Log soubor vytvořen 09/10/2016 na 02:15:55
# Aktualizováno dne 06/10/2016 z ToolsLib
# Databáze : 2016-10-07.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Jaryn01 - JARYN01-PC
# Beží od : C:\Users\Jaryn01\Desktop\adwcleaner_6.021.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum



***** [ Služby ] *****



***** [ Adresáře ] *****

[-] Adresář smazán:C:\Users\Jaryn01\AppData\Local\Tbccint
[#] Adresář nelze smazat:C:\Users\Jaryn01\AppData\Local\tbccint
[-] Adresář smazán:C:\Users\Jaryn01\AppData\LocalLow\Tbccint
[#] Adresář nelze smazat:C:\Users\Jaryn01\AppData\LocalLow\tbccint
[-] Adresář smazán:C:\ProgramData\Tbccint
[#] Adresář nelze smazat:C:\ProgramData\tbccint
[-] Adresář smazán:C:\Program Files (x86)\Tbccint
[#] Adresář nelze smazat:C:\Program Files (x86)\tbccint


***** [ Soubory ] *****

[-] Soubor smazán:C:\END


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****

[-] Klíč smazán:HKLM\SOFTWARE\Classes\Toolbar.CT3329621
[-] Klíč smazán:HKCU\Software\Classes\CLSID\{1BBF13E0-551E-42DD-91F4-1A547443FFDA}
[-] Klíč smazán:HKCU\Software\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
[-] Klíč smazán:HKCU\Software\Classes\CLSID\{31264A33-A653-46C4-AF49-1232C59A7DA5}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
[-] Klíč smazán:HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\Software\Conduit
[-] Klíč smazán:HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\Software\Tbccint
[-] Klíč smazán:HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\Software\Tbccint_HKLM
[-] Klíč smazán:HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\Software\AppDataLow\Toolbar
[-] Klíč smazán:HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\Software\AppDataLow\Software\BS_Player_ControlBar_B
[-] Klíč smazán:HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\Software\AppDataLow\Software\Tbccint
[-] Klíč smazán:HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\Software\AppDataLow\Software\TbccintSearchScopes
[#] Klíč smazán po restartování:HKCU\Software\Conduit
[#] Klíč smazán po restartování:HKCU\Software\Tbccint
[#] Klíč smazán po restartování:HKCU\Software\Tbccint_HKLM
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\Toolbar
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\Software\Tbccint
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\Software\TbccintSearchScopes
[-] Klíč smazán:HKLM\SOFTWARE\Conduit
[#] Klíč smazán po restartování:[x64] HKCU\Software\Conduit
[#] Klíč smazán po restartování:[x64] HKCU\Software\Tbccint
[#] Klíč smazán po restartování:[x64] HKCU\Software\Tbccint_HKLM
[#] Klíč smazán po restartování:[x64] HKCU\Software\AppDataLow\Toolbar
[#] Klíč smazán po restartování:[x64] HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
[#] Klíč smazán po restartování:[x64] HKCU\Software\AppDataLow\Software\Tbccint
[#] Klíč smazán po restartování:[x64] HKCU\Software\AppDataLow\Software\TbccintSearchScopes
[-] Klíč smazán:HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\Software\Microsoft\Internet Explorer\SearchScopes\{139E1212-4022-46BD-BA06-48028D8B2569}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{139E1212-4022-46BD-BA06-48028D8B2569}
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{139E1212-4022-46BD-BA06-48028D8B2569}
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com


***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [4471 Bajtů] - [09/10/2016 02:15:55]
C:\AdwCleaner\AdwCleaner[S0].txt - [4475 Bajtů] - [09/10/2016 02:15:20]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [4619 Bajtů] ##########


Malwarebytes Anti-Malware
http://www.malwarebytes.org

Datum skenování: 9.10.2016
Čas skenování: 2:27
Protokol: log.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.10.08.07
Databáze rootkitů: v2016.09.26.02
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Jaryn01

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 550869
Uplynulý čas: 11 hod, 59 min, 47 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 3
PUP.Optional.Conduit.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IECT3329621, Do karantény, [8245e1b50e8cf4428e75bd1932d0b050],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{503D19C1-695D-4417-8111-3245737F1578}, Do karantény, [3a8de6b00e8cfd39a2d29ef3a162ad53],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81E69C4F-B935-47AB-8F7C-E7F2550C5988}, Do karantény, [7d4ac6d05347989e6410d7baed16916f],

Hodnoty registru: 2
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{503D19C1-695D-4417-8111-3245737F1578}|AppPath, C:\Users\Jaryn01\AppData\Local\Tbccint\CT3329621, Do karantény, [3a8de6b00e8cfd39a2d29ef3a162ad53]
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-3562744649-1859518726-1150267491-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81E69C4F-B935-47AB-8F7C-E7F2550C5988}|AppPath, C:\Users\Jaryn01\AppData\Local\Tbccint\CT3329621, Do karantény, [7d4ac6d05347989e6410d7baed16916f]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)


Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Roli]

Bezva prohlížeče pročičtěny a jak se nyní chovají ?