VIRY.CZ

Zdravím,

Poslední dobou se mi opakovaně někdo dobývá na nejrůznější účty od eBay přes Microsoft Live až po Instagram. Rád bych se vyhnul tomu, aby to priste byl PayPal nebo muj bankovni ucet, takze prosim o pomoc a nize zasilam log.

Kvuli omezeni v poctu znaku delim log do dvou postu.

PART 1

Logfile of random's system information tool 1.10 (written by random/random)
Run by jakub_000 at 2016-10-14 18:45:34
Microsoft Windows 10 Home
System drive C: has 195 GB (45%) free of 435 GB
Total RAM: 3979 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:45:44, on 14.10.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Users\jakub_000\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Users\jakub_000\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
C:\Program Files\WindowsApps\Microsoft.BingNews_4.16.18.0_x86__8wekyb3d8bbwe\Microsoft.Msn.News.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\jakub_000.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0721__yaie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jakub_000\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\jakub_000\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\jakub_000\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Users\jakub_000\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\jakub_000\AppData\Local\SweetLabs App Platform\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem46.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LavasoftTcpService - Lavasoft Limited - C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Update service - Popcorn Time - C:\Program Files (x86)\Popcorn Time\Updater.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: WC Assistant (WCAssistantService) - Unknown owner - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10458 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-51c7568e-ae54-4607-b2e0-874934e7240b -SystemEventPortName:HostProcess-46f4c2a0-166d-4cd7-b71a-e6dd5dcb3dae -IoCancelEventPortName:HostProcess-5d1964b2-6243-4b57-9fd8-61ed07b49fb2 -NonStateChangingEventPortName:HostProcess-61b3f90e-08f7-45cd-8bd8-4897eec17b74 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:661186c8-f8dc-4e37-a68b-4ef53ba44adf -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
dashost.exe {fed9b398-2348-4548-bd9738aded41f108}
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
C:\windows\system32\CxAudMsg64.exe
C:\WINDOWS\system32\ibtsiva
"C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\SysWoW64\SAsrv.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe"
"C:\Program Files (x86)\Popcorn Time\Updater.exe"

C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Users\jakub_000\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe" /LOGON
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
igfxTray.exe
"C:\Users\jakub_000\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Windows\RTFTrack.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe" --minimize
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\wmiprvse.exe
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Users\jakub_000\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe" --type=renderer --disable-breakpad --disable-desktop-notifications --disable-logging --disable-speech-input --lang=en-US --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/8/OneClickSignIn/BlueOnWhite/Prefetch/ContentPrefetchPrefetchOff/Prerender/Prerender15minTTL/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V1/SpeculativePrefetchingLearning/SpeculativePrefetchingLearningEnabled/Test0PercentDefault/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_81/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warm_socket/ --noerrdialogs --disable-client-side-phishing-detection --disable-bundled-ppapi-flash --channel="3836.1.1024443234\776324117" /prefetch:3
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Users\jakub_000\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.BingNews_4.16.18.0_x86__8wekyb3d8bbwe\Microsoft.Msn.News.exe" -ServerName:AppexNews.AppX3vz52bd72d0ycrnwe6jysfgn7k1qcv00.mca
"C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe"
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0x258
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4992.0.44525305\1416093626" --mojo-application-channel-token=321C2DBD0BD2987A68CD4BC9B84D6D25 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Control/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Control/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Control/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_02/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,18,31,48,56 --gpu-vendor-id=0x8086 --gpu-device-id=0x0f31 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --gpu-driver-date=8-17-2015 --mojo-platform-channel-handle=1504 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Control/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Control/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_02/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=5A24CA4906246D3F8973122C6D4C0C50 --lang=en-US --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=1A660821C4E03F47B5149900732F0148 --mojo-application-channel-token=5A24CA4906246D3F8973122C6D4C0C50 --channel="4992.3.111495788\1536492731" --mojo-platform-channel-handle=2848 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Control/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Control/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_02/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=EBCB50502C59B4D12882DED46D5ED7DF --lang=en-US --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=80D6A6C0C56EF95E898276B3A1CF2886 --mojo-application-channel-token=EBCB50502C59B4D12882DED46D5ED7DF --channel="4992.4.1526305422\987827380" --mojo-platform-channel-handle=2868 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Control/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Control/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_02/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=1343C0856C2F0F40B401082719A1D7F6 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=305F12738677E652C257E52E03855DA8 --mojo-application-channel-token=1343C0856C2F0F40B401082719A1D7F6 --channel="4992.6.385123217\1506753078" --mojo-platform-channel-handle=5948 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Control/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Control/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_02/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=2921F4E6CBB41841FB67F0D5C25579A1 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=B6877D2A1ABFB83B069CC4CDFD108D7B --mojo-application-channel-token=2921F4E6CBB41841FB67F0D5C25579A1 --channel="4992.9.130941466\1490554698" --mojo-platform-channel-handle=3472 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Control/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Control/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_02/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=84C4A97C6D66104EDA93A90C5BB404D1 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=B1A5ECDC7FBCEA22D74305E83BE6ABFB --mojo-application-channel-token=84C4A97C6D66104EDA93A90C5BB404D1 --channel="4992.10.610404179\1070442513" --mojo-platform-channel-handle=7484 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x3b0
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 620 648 656 8192 652
"C:\Users\jakub_000\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2014-02-27 6340312]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2014-09-20 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2014-09-20 10841584]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-07-27 3945672]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\jakub_000\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-09-25 633024]
"Web Companion"=C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [2016-10-08 1790616]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\jakub_000\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"=C:\WINDOWS\system32\cmd.exe [2016-07-16 232960]
"Application Restart #1"=C:\Users\jakub_000\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [2016-09-18 7874024]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-08-08 8900328]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-14 18:45:34 ----D---- C:\rsit
2016-10-14 18:45:34 ----D---- C:\Program Files\trend micro
2016-10-13 20:43:43 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2016-10-13 20:43:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-13 20:43:42 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2016-10-13 20:43:42 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-10-13 20:43:42 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2016-10-13 20:43:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-10-13 20:43:41 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-10-13 20:43:41 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-13 20:43:41 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2016-10-13 20:43:40 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2016-10-13 20:43:40 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-13 20:43:40 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2016-10-13 20:43:40 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2016-10-13 20:43:40 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-13 20:43:40 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-13 20:43:39 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-13 20:43:39 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-13 20:43:39 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-13 20:43:39 ----A---- C:\WINDOWS\system32\dsreg.dll
2016-10-13 20:43:39 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-10-13 20:43:38 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-13 20:43:37 ----A---- C:\WINDOWS\system32\netshell.dll
2016-10-13 20:43:37 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-10-13 20:43:37 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-10-13 20:43:36 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-10-13 20:43:35 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-13 20:43:33 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-13 20:43:33 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-13 20:43:32 ----A---- C:\WINDOWS\system32\wpx.dll
2016-10-13 20:43:32 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-10-13 20:43:32 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-13 20:43:31 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-10-13 20:43:31 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-13 20:43:31 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-10-13 20:43:31 ----A---- C:\WINDOWS\system32\bcdedit.exe
2016-10-13 20:43:30 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-13 20:43:30 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-13 20:43:30 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-13 20:43:29 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-13 20:43:29 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-10-13 20:43:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-10-13 20:43:28 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-13 20:43:26 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-13 20:43:25 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-13 20:43:24 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2016-10-13 20:43:23 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-10-13 20:43:23 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-10-13 20:43:19 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-13 20:43:18 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-10-13 20:43:17 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-10-13 20:43:17 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-10-13 20:43:16 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-10-13 20:43:15 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-13 20:43:15 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-13 20:43:14 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-13 20:43:14 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-10-13 20:43:13 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-10-13 20:43:13 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-10-13 20:43:13 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-10-13 20:43:13 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-13 20:43:13 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-10-13 20:43:12 ----A---- C:\WINDOWS\system32\smartscreen.exe
2016-10-13 20:43:12 ----A---- C:\WINDOWS\system32\drivers\MegaSas2i.sys
2016-10-13 20:43:11 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-13 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-10-13 20:43:10 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-13 20:43:09 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-10-13 20:43:09 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-13 20:43:08 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-13 20:43:08 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2016-10-13 20:43:08 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-13 20:43:06 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\system32\dialclient.dll
2016-10-13 20:43:05 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-13 20:43:04 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-13 20:43:04 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-13 20:43:04 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-10-13 20:43:03 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-10-13 20:43:03 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2016-10-13 20:43:03 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-10-13 20:43:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-13 20:43:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-10-13 20:43:02 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-13 20:43:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-10-13 20:43:01 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-13 20:43:01 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-10-13 20:42:56 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-13 20:42:56 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-10-13 20:42:56 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-10-13 20:42:54 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-13 20:42:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-13 20:42:48 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-10-13 20:42:47 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-13 20:42:47 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-10-13 20:42:43 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-10-13 20:42:43 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-13 20:42:42 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-10-13 20:42:42 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-10-13 20:42:42 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-10-13 20:42:41 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-10-13 20:42:40 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-10-13 20:42:39 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-13 20:42:38 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-10-13 20:42:38 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-10-13 20:42:37 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-13 20:42:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-10-13 20:42:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-10-13 20:42:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-13 20:42:36 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-13 20:42:36 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-10-13 20:42:36 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-13 20:42:36 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-13 20:42:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-10-13 20:42:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-10-13 20:42:35 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-13 20:42:35 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-13 20:42:34 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-13 20:42:34 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-13 20:42:33 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2016-10-13 20:42:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-13 20:42:32 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-10-13 20:42:32 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-13 20:42:32 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-10-13 20:42:32 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-10-13 20:42:32 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-10-13 20:42:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-10-13 20:42:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-10-13 20:42:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-10-13 20:42:31 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2016-10-13 20:42:31 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-13 20:42:31 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-13 20:42:30 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-13 20:42:30 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-13 20:42:29 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-10-13 20:42:29 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-10-13 20:42:28 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-13 20:42:28 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-10-13 20:42:28 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-13 20:42:27 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2016-10-13 20:42:27 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-10-13 20:42:27 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-13 20:42:27 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-13 20:42:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2016-10-13 20:42:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-10-13 20:42:26 ----A---- C:\WINDOWS\system32\msi.dll
2016-10-13 20:42:26 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-10-13 20:42:25 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-10-13 20:42:24 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-13 20:42:23 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-10-13 20:42:23 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-10-13 20:42:23 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-10-13 20:42:23 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-10-13 20:42:23 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-10-13 20:42:22 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-10-13 20:42:22 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-13 20:42:22 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-13 20:42:22 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-13 20:42:22 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-10-13 20:42:22 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-13 20:42:21 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-10-13 20:42:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-13 20:42:20 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-10-13 20:42:19 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-13 20:42:18 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-13 20:42:18 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-10-13 20:42:17 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-13 20:42:13 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-13 20:42:12 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-10-13 20:42:12 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-13 20:42:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2016-10-13 20:42:07 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-13 20:42:06 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-13 20:42:06 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-10-13 20:42:05 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-13 20:42:05 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-10-13 20:42:04 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-10-13 20:42:04 ----A---- C:\WINDOWS\system32\cloudAP.dll
2016-10-13 20:42:03 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-13 20:42:03 ----A---- C:\WINDOWS\system32\mfps.dll
2016-10-13 20:42:03 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-10-13 20:42:02 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2016-10-05 18:24:47 ----AD---- C:\Program Files (x86)\Mozilla Thunderbird
2016-10-02 14:34:39 ----A---- C:\WINDOWS\SYSWOW64\LicenseManagerApi.dll
2016-10-02 14:34:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-10-02 14:34:38 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-10-02 14:34:37 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-10-02 14:34:37 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-10-02 14:34:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.UXRes.dll
2016-10-02 14:34:34 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-10-02 14:34:34 ----A---- C:\WINDOWS\system32\tquery.dll
2016-10-02 14:34:33 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-02 14:34:33 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2016-10-02 14:34:32 ----A---- C:\WINDOWS\system32\nettrace.dll
2016-10-02 14:34:31 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2016-10-02 14:34:31 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-10-02 14:34:31 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-10-02 14:34:30 ----A---- C:\WINDOWS\SYSWOW64\TempSignedLicenseExchangeTask.dll
2016-10-02 14:34:30 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-10-02 14:34:30 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-10-02 14:34:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2016-10-02 14:34:29 ----A---- C:\WINDOWS\system32\ci.dll
2016-10-02 14:34:28 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-10-02 14:34:28 ----A---- C:\WINDOWS\system32\mprdim.dll
2016-10-02 14:34:28 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-10-02 14:34:27 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-10-02 14:34:27 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-10-02 14:34:27 ----A---- C:\WINDOWS\system32\SessEnv.dll
2016-10-02 14:34:27 ----A---- C:\WINDOWS\system32\hal.dll
2016-10-02 14:34:26 ----A---- C:\WINDOWS\system32\wkssvc.dll
2016-10-02 14:34:26 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-10-02 14:34:26 ----A---- C:\WINDOWS\system32\offlinesam.dll
2016-10-02 14:34:26 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-10-02 14:34:26 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-10-02 14:34:25 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2016-10-02 14:34:25 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-10-02 14:34:25 ----A---- C:\WINDOWS\system32\webio.dll
2016-10-02 14:34:25 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-10-02 14:34:25 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-10-02 14:34:24 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2016-10-02 14:34:24 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-10-02 14:34:23 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2016-10-02 14:34:22 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-10-02 14:34:22 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-10-02 14:34:22 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-10-02 14:34:22 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-10-02 14:34:22 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-10-02 14:34:21 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2016-10-02 14:34:21 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-10-02 14:34:20 ----A---- C:\WINDOWS\system32\securekernel.exe
2016-10-02 14:34:20 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-10-02 14:34:20 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-10-02 14:34:19 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-10-02 14:34:19 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-10-02 14:34:19 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-10-02 14:34:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2016-10-02 14:34:17 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-10-02 14:34:16 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-10-02 14:34:15 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-10-02 14:34:15 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-10-02 14:34:15 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-10-02 14:34:15 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2016-10-02 14:34:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2016-10-02 14:34:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2016-10-02 14:34:14 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-10-02 14:34:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-10-02 14:34:14 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-10-02 14:34:14 ----A---- C:\WINDOWS\system32\lsm.dll
2016-10-02 14:34:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-10-02 14:34:12 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-10-02 14:34:12 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-10-02 14:34:11 ----A---- C:\WINDOWS\system32\puiobj.dll
2016-10-02 14:34:11 ----A---- C:\WINDOWS\system32\NetworkUXBroker.dll
2016-10-02 14:34:11 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2016-10-02 14:34:10 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-10-02 14:34:10 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2016-10-02 14:34:10 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2016-10-02 14:34:10 ----A---- C:\WINDOWS\SYSWOW64\credprovslegacy.dll
2016-10-02 14:34:10 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-10-02 14:34:10 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-10-02 14:34:10 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-10-02 14:34:10 ----A---- C:\WINDOWS\system32\credprovslegacy.dll
2016-10-02 14:34:09 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-10-02 14:34:09 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-10-02 14:34:08 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-10-02 14:33:56 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-10-02 14:33:56 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2016-10-02 14:33:55 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-10-02 14:33:55 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2016-10-02 14:33:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-10-02 14:33:55 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-02 14:33:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-02 14:33:54 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-10-02 14:33:54 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-10-02 14:33:53 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-02 14:33:52 ----A---- C:\WINDOWS\system32\cdp.dll
2016-10-02 14:33:50 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-10-02 14:33:50 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-02 14:33:49 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-10-02 14:33:48 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2016-10-02 14:33:48 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-02 14:33:48 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-10-02 14:33:47 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-10-02 14:33:46 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-10-02 14:33:46 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-10-02 14:33:46 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-10-02 14:33:46 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-10-02 14:33:45 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-10-02 14:33:45 ----A---- C:\WINDOWS\system32\tdh.dll
2016-10-02 14:33:45 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-10-02 14:33:44 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-10-02 14:33:44 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-10-02 14:33:44 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-10-02 14:33:44 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-02 14:33:43 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-10-02 14:33:43 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-02 14:33:43 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-02 14:33:43 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-10-02 14:33:42 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2016-10-02 14:33:42 ----A---- C:\WINDOWS\system32\resutils.dll
2016-10-02 14:33:42 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-10-02 14:33:42 ----A---- C:\WINDOWS\system32\localspl.dll
2016-10-02 14:33:41 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2016-10-02 14:33:41 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-10-02 14:33:41 ----A---- C:\WINDOWS\system32\sppcext.dll
2016-10-02 14:33:41 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2016-10-02 14:33:41 ----A---- C:\WINDOWS\system32\pdh.dll
2016-10-02 14:33:41 ----A---- C:\WINDOWS\system32\manage-bde.exe
2016-10-02 14:33:40 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2016-10-02 14:33:40 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-10-02 14:33:40 ----A---- C:\WINDOWS\system32\icsvc.dll
2016-10-02 14:33:40 ----A---- C:\WINDOWS\system32\discan.dll
2016-10-02 14:33:40 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2016-10-02 14:33:39 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-10-02 14:33:39 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-10-02 14:33:39 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-10-02 14:33:39 ----A---- C:\WINDOWS\system32\ReAgent.dll
2016-10-02 14:33:38 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-10-02 14:33:38 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2016-10-02 14:33:38 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-10-02 14:33:38 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-10-02 14:33:37 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-10-02 14:33:37 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2016-10-02 14:33:37 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-10-02 14:33:37 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-02 14:33:36 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-10-02 14:33:36 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-10-02 14:33:36 ----A---- C:\WINDOWS\system32\Sens.dll
2016-10-02 14:33:36 ----A---- C:\WINDOWS\system32\fveui.dll
2016-10-02 14:33:35 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2016-10-02 14:33:35 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2016-10-02 14:33:35 ----A---- C:\WINDOWS\splwow64.exe
2016-10-02 14:33:34 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-10-02 14:33:34 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-02 14:33:34 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2016-10-02 14:33:33 ----A---- C:\WINDOWS\SYSWOW64\wlancfg.dll
2016-10-02 14:33:33 ----A---- C:\WINDOWS\system32\fvenotify.exe
2016-10-02 14:33:33 ----A---- C:\WINDOWS\system32\bdeui.dll
2016-10-02 14:33:32 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-10-02 14:33:32 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-10-02 14:33:32 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-10-02 14:33:31 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2016-10-02 14:33:31 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-10-02 14:33:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2016-10-02 14:33:30 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2016-10-02 14:33:30 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2016-10-02 14:33:30 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2016-10-02 14:33:30 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-10-02 14:33:29 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2016-10-02 14:33:29 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-10-02 14:33:29 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-10-02 14:33:29 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-10-02 14:33:29 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-10-02 14:33:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2016-10-02 14:33:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-10-02 14:33:28 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-10-02 14:33:28 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-10-02 14:33:28 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-10-02 14:33:27 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-10-02 14:33:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2016-10-02 14:33:27 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-02 14:33:27 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2016-10-02 14:33:26 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-10-02 14:33:26 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-10-02 14:33:25 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-10-02 14:33:25 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-10-02 14:33:25 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2016-10-02 14:33:25 ----A---- C:\WINDOWS\system32\ffbroker.dll
2016-10-02 14:33:24 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2016-10-02 14:33:02 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-02 14:32:58 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-10-02 14:32:54 ----A---- C:\WINDOWS\system32\spaceman.exe
2016-10-02 14:32:54 ----A---- C:\WINDOWS\system32\mispace.dll
2016-10-02 14:32:53 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-10-02 14:32:53 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-10-02 14:32:53 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-10-02 14:32:53 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-02 14:32:52 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-10-02 14:32:52 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-10-02 14:32:51 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2016-10-02 14:32:51 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-10-02 14:32:51 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-10-02 14:32:50 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-10-02 14:32:50 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-10-02 14:32:49 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-10-02 14:32:49 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-10-02 14:32:48 ----A---- C:\WINDOWS\explorer.exe
2016-10-02 14:32:47 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-10-02 14:32:47 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2016-10-02 14:32:46 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-10-02 14:32:45 ----A---- C:\WINDOWS\system32\uReFS.dll
2016-10-02 14:32:43 ----A---- C:\WINDOWS\system32\rascustom.dll
2016-10-02 14:32:42 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-10-02 14:32:41 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-10-02 14:32:41 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-10-02 14:32:41 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-10-02 14:32:41 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2016-10-02 14:32:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-10-02 14:32:40 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-02 14:32:40 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-02 14:32:40 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-02 14:32:40 ----A---- C:\WINDOWS\system32\RMapi.dll
2016-10-02 14:32:40 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-10-02 14:32:39 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-10-02 14:32:39 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-10-02 14:32:39 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-02 14:32:39 ----A---- C:\WINDOWS\system32\mprapi.dll
2016-10-02 14:32:38 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-10-02 14:32:38 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-10-02 14:32:38 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-10-02 14:32:38 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-02 14:32:37 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-10-02 14:32:37 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-10-02 14:32:37 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2016-10-02 14:32:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-10-02 14:32:36 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2016-10-02 14:32:36 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2016-10-02 14:32:36 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2016-10-02 14:32:36 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-10-02 14:32:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2016-10-02 14:32:35 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-10-02 14:32:35 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-10-02 14:32:35 ----A---- C:\WINDOWS\system32\nltest.exe
2016-10-02 14:32:35 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-10-02 14:32:34 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-10-02 14:32:34 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-10-02 14:32:34 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-10-02 14:32:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-10-02 14:32:33 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2016-10-02 14:32:33 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-10-02 14:32:33 ----A---- C:\WINDOWS\system32\devenum.dll
2016-10-02 14:32:33 ----A---- C:\WINDOWS\system32\DataExchange.dll
2016-10-02 14:32:33 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-10-02 14:32:32 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-10-02 14:32:32 ----A---- C:\WINDOWS\system32\RelPost.exe
2016-10-02 14:32:32 ----A---- C:\WINDOWS\system32\rasmans.dll
2016-10-02 14:32:32 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-10-02 14:32:31 ----A---- C:\WINDOWS\SYSWOW64\DataExchange.dll
2016-10-02 14:32:31 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-10-02 14:32:31 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2016-10-02 14:32:31 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2016-10-02 14:32:30 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2016-10-02 14:32:30 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-10-02 14:32:30 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-10-02 14:32:30 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2016-10-02 14:32:30 ----A---- C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-10-02 14:32:29 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-10-02 14:32:29 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-10-02 14:32:29 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-10-02 14:32:29 ----A---- C:\WINDOWS\system32\setupugc.exe
2016-10-02 14:32:29 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-10-02 14:32:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-02 14:32:28 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-10-02 14:32:28 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-10-02 14:32:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-10-02 14:32:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-10-02 14:32:27 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2016-10-02 14:32:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2016-10-02 14:32:26 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-10-02 14:32:26 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-10-02 14:32:26 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-10-02 14:32:26 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-10-02 14:32:25 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-10-02 14:32:25 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-10-02 14:32:25 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-10-02 14:32:25 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-02 14:32:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-10-02 14:32:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2016-10-02 14:32:24 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-10-02 14:32:24 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-10-02 14:32:24 ----A---- C:\WINDOWS\system32\bootux.dll
2016-10-02 14:32:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2016-10-02 14:32:23 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-10-02 14:32:23 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-10-02 14:32:23 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-10-02 14:32:22 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2016-10-02 14:32:22 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2016-10-02 14:32:22 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-10-02 14:32:21 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-10-02 14:32:21 ----A---- C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-10-02 14:32:21 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-10-02 14:32:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2016-10-02 14:32:20 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-10-02 14:32:20 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-10-02 14:32:20 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-10-02 14:32:20 ----A---- C:\WINDOWS\system32\Family.Client.dll
2016-10-02 14:32:19 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2016-10-02 14:32:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-02 14:32:19 ----A---- C:\WINDOWS\system32\imapi2.dll
2016-10-02 14:32:19 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2016-10-02 14:32:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2016-10-02 14:32:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2016-10-02 14:32:18 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-10-02 14:32:18 ----A---- C:\WINDOWS\system32\smphost.dll
2016-10-02 14:32:18 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-10-02 14:32:18 ----A---- C:\WINDOWS\system32\appinfo.dll
2016-10-02 14:32:16 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-10-02 14:32:16 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-10-02 14:32:11 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-10-02 14:32:09 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-10-02 14:32:06 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-10-02 14:32:04 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-10-02 14:32:04 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-10-02 14:32:03 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2016-10-02 14:32:03 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-10-02 14:32:02 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-10-02 14:32:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll

Predem moc dekuju.

Jakub

Part 2


2016-10-02 14:31:59 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-10-02 14:31:59 ----A---- C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-10-02 14:31:59 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-10-02 14:31:58 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2016-10-02 14:31:58 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-10-02 14:31:58 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-10-02 14:31:57 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-10-02 14:31:57 ----A---- C:\WINDOWS\SYSWOW64\NetworkCollectionAgent.dll
2016-10-02 14:31:56 ----A---- C:\WINDOWS\system32\provops.dll
2016-10-02 14:31:55 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-10-02 14:31:54 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-02 14:31:53 ----A---- C:\WINDOWS\system32\hvix64.exe
2016-10-02 14:31:52 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-10-02 14:31:51 ----A---- C:\WINDOWS\system32\hvax64.exe
2016-10-02 14:31:50 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-10-02 14:31:48 ----A---- C:\WINDOWS\system32\hvloader.exe
2016-10-02 14:31:47 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-10-02 14:31:47 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-10-02 14:31:46 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-10-02 14:31:46 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-10-02 14:31:46 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-10-02 14:31:45 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-10-02 14:31:44 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-10-02 14:31:44 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-10-02 14:31:44 ----A---- C:\WINDOWS\system32\biwinrt.dll
2016-10-02 14:31:43 ----A---- C:\WINDOWS\system32\mprddm.dll
2016-10-02 14:31:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-10-02 14:31:41 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2016-10-02 14:31:40 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-10-02 14:31:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2016-10-02 14:31:39 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-10-02 14:31:39 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-10-02 14:31:38 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2016-10-02 14:31:38 ----A---- C:\WINDOWS\system32\wlancfg.dll
2016-10-02 14:31:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-10-02 14:31:38 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-02 14:31:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-10-02 14:31:37 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2016-10-02 14:31:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2016-10-02 14:31:36 ----A---- C:\WINDOWS\SYSWOW64\pwrshplugin.dll
2016-10-02 14:31:36 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-10-02 14:31:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-10-02 14:31:34 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-10-02 14:31:34 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-10-02 14:31:33 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-10-02 14:31:33 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-02 14:31:32 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2016-10-02 14:31:32 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2016-10-02 14:31:32 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-10-02 14:31:32 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-10-02 14:31:31 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-10-02 14:31:31 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2016-10-02 14:31:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2016-10-02 14:31:30 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-10-02 14:31:30 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-10-02 14:31:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-10-02 14:31:29 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2016-10-02 14:31:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-10-02 14:31:27 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-10-02 14:31:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-10-02 14:31:26 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2016-10-02 14:31:26 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2016-10-02 14:31:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-10-02 14:31:25 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-10-02 14:31:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2016-10-02 14:31:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2016-10-02 14:31:21 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2016-10-02 14:31:21 ----A---- C:\WINDOWS\system32\MSAC3ENC.DLL
2016-10-02 14:31:11 ----A---- C:\WINDOWS\system32\msctf.dll
2016-10-02 14:31:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-10-02 14:30:57 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-10-02 14:30:57 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-10-02 14:30:56 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-10-02 14:30:55 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-10-02 14:30:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-10-02 14:30:48 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-10-02 14:30:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-02 14:30:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-10-02 14:30:46 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-10-02 14:30:45 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-10-02 14:30:45 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-10-02 14:30:44 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-10-02 14:30:44 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-10-02 14:30:44 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-10-02 14:30:44 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-10-02 14:30:43 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-10-02 14:30:42 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-10-02 14:30:42 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-10-02 14:30:42 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-10-02 14:30:41 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-10-02 14:30:41 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-02 14:30:40 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-10-02 14:30:40 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2016-10-02 14:30:40 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-10-02 14:30:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-02 14:30:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-02 14:30:39 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2016-10-02 14:30:39 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2016-10-02 14:30:38 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-10-02 14:30:38 ----A---- C:\WINDOWS\system32\skci.dll
2016-10-02 14:30:38 ----A---- C:\WINDOWS\system32\icsvcext.dll
2016-10-02 14:30:38 ----A---- C:\WINDOWS\system32\dwmapi.dll
2016-10-02 14:30:38 ----A---- C:\WINDOWS\system32\bdeunlock.exe
2016-10-02 14:30:37 ----A---- C:\WINDOWS\system32\qedit.dll
2016-10-02 14:30:36 ----A---- C:\WINDOWS\SYSWOW64\mprapi.dll
2016-10-02 14:30:36 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-10-02 14:30:36 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-02 14:30:36 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-10-02 14:30:35 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-10-02 14:30:35 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-10-02 14:30:35 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-10-02 14:30:35 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2016-10-02 14:30:34 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-10-02 14:30:34 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-10-02 14:30:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-10-02 14:30:33 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-10-02 14:30:33 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-10-02 14:30:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-10-02 14:30:32 ----A---- C:\WINDOWS\SYSWOW64\BackgroundMediaPolicy.dll
2016-10-02 14:30:32 ----A---- C:\WINDOWS\system32\pwrshplugin.dll
2016-10-02 14:30:32 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-10-02 14:30:31 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-10-02 14:30:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2016-10-02 14:30:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2016-10-02 14:30:30 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-10-02 14:30:29 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-10-02 14:30:29 ----A---- C:\WINDOWS\system32\sbe.dll
2016-10-02 14:30:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2016-10-02 14:30:28 ----A---- C:\WINDOWS\SYSWOW64\ClipboardServer.dll
2016-10-02 14:30:28 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-10-02 14:30:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-10-02 14:30:27 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2016-10-02 14:30:26 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2016-10-02 14:30:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2016-10-02 14:30:26 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-10-02 14:30:25 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-10-02 14:30:25 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-10-02 14:30:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2016-10-02 14:30:24 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-10-02 14:30:24 ----A---- C:\WINDOWS\system32\rshx32.dll
2016-10-02 14:30:24 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-10-02 14:30:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2016-10-02 14:30:23 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2016-10-02 14:30:23 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-10-02 14:30:23 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-10-02 14:30:22 ----A---- C:\WINDOWS\system32\odbcconf.dll
2016-09-24 11:29:04 ----D---- C:\ProgramData\Microsoft OneDrive
2016-09-24 02:13:36 ----SHD---- C:\Recovery
2016-09-24 02:13:19 ----DC---- C:\WINDOWS\Panther
2016-09-24 02:07:27 ----D---- C:\Windows.old
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2016-09-24 02:03:49 ----A---- C:\WINDOWS\SYSWOW64\CloudBackupSettings.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\system32\encapi.dll
2016-09-24 02:03:49 ----A---- C:\WINDOWS\system32\CloudBackupSettings.dll
2016-09-24 02:03:48 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2016-09-24 02:03:41 ----A---- C:\WINDOWS\SYSWOW64\wmpmde.dll
2016-09-24 02:03:41 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-09-24 02:03:41 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-09-24 02:03:41 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-09-24 02:03:41 ----A---- C:\WINDOWS\system32\FSClient.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\wpninprc.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-09-24 02:03:40 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-09-24 02:03:39 ----A---- C:\WINDOWS\SYSWOW64\eappprxy.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-09-24 02:03:39 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2016-09-24 02:03:39 ----A---- C:\WINDOWS\system32\dasHost.exe
2016-09-24 02:03:39 ----A---- C:\WINDOWS\system32\das.dll
2016-09-24 02:03:38 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-09-24 02:03:38 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-09-24 02:03:38 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-09-24 02:03:38 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-09-24 02:03:38 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-09-24 02:03:38 ----A---- C:\WINDOWS\system32\evr.dll
2016-09-24 02:03:38 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-09-24 02:03:37 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-09-24 02:03:37 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2016-09-24 02:03:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2016-09-24 02:03:37 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2016-09-24 02:03:37 ----A---- C:\WINDOWS\system32\spwmp.dll
2016-09-24 02:03:37 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2016-09-24 02:03:37 ----A---- C:\WINDOWS\system32\dxmasf.dll
2016-09-24 02:03:36 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-09-24 02:03:36 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-09-24 02:03:36 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-09-24 02:03:35 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-09-24 02:03:35 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-09-24 02:03:35 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2016-09-24 02:03:35 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-09-24 02:03:35 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2016-09-24 02:03:35 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-09-24 02:03:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-24 02:03:34 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2016-09-24 02:03:34 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\lsass.exe
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2016-09-24 02:03:34 ----A---- C:\WINDOWS\system32\csrsrv.dll
2016-09-24 02:03:29 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-09-24 02:03:29 ----A---- C:\WINDOWS\system32\msxml6r.dll
2016-09-24 02:03:29 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-09-24 02:03:29 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\tcpipcfg.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\slcext.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\netiougc.exe
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\DscCoreConfProv.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\system32\tsmf.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-24 02:03:28 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-09-24 02:03:28 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\w32time.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\tcpipcfg.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\sppc.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\slc.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\provtool.exe
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\provengine.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\PhoneServiceRes.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\netiougc.exe
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\EncDec.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\C_IS2022.DLL
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\c_GSM7.DLL
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\C_G18030.DLL
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\authui.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-09-24 02:03:22 ----A---- C:\WINDOWS\system32\aclui.dll
2016-09-24 02:03:21 ----A---- C:\WINDOWS\SYSWOW64\pidgenx.dll
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\slcext.dll
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\pidgenx.dll
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\ole32.dll
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\invagent.dll
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\GenValObj.exe
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\DscCoreConfProv.dll
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-09-24 02:03:21 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-09-24 02:03:18 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-09-24 02:03:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-09-24 02:03:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-09-24 02:03:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-09-24 02:03:18 ----A---- C:\WINDOWS\system32\XamlTileRender.dll
2016-09-24 02:03:18 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-09-24 02:03:18 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-24 02:03:18 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-24 02:03:18 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-24 02:03:18 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-09-24 02:03:18 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2016-09-24 02:03:18 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\UserDataTypeHelperUtil.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\UserDataPlatformHelperUtil.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\UserDataLanguageUtil.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccessRes.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\POSyncServices.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\PhoneutilRes.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\ExtrasXmlParser.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\ContactActivation.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\SYSWOW64\AddressParser.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\wups2.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\winmde.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\VCardParser.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\usocore.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\UserDataAccessRes.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\POSyncServices.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\PhoneutilRes.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\mf.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\ExSMime.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\DbgModel.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\dafpos.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\ContactActivation.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2016-09-24 02:03:17 ----A---- C:\WINDOWS\system32\AddressParser.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\moshost.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MapRouter.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-09-24 02:03:12 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\storagewmi_passthru.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\MSAJApi.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\encapi.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\delegatorprovider.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\DbgModel.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\C_IS2022.DLL
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\c_GSM7.DLL
2016-09-24 02:03:11 ----A---- C:\WINDOWS\SYSWOW64\C_G18030.DLL
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\wincorlib.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\win32u.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\win32k.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\wevtapi.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\user32.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\tzres.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\storagewmi_passthru.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\schannel.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\samlib.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\MSAJApi.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\InputService.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\eappprxy.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\eappgnui.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\delegatorprovider.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\container.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\combase.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\ClipboardServer.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\cdd.dll
2016-09-24 02:03:11 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-09-24 01:55:38 ----A---- C:\WINDOWS\system32\prm0005.dll
2016-09-24 01:55:15 ----A---- C:\WINDOWS\system32\perfi005.dat
2016-09-24 01:55:15 ----A---- C:\WINDOWS\system32\perfh005.dat
2016-09-24 01:55:15 ----A---- C:\WINDOWS\system32\perfd005.dat
2016-09-24 01:55:15 ----A---- C:\WINDOWS\system32\perfc005.dat
2016-09-24 01:54:33 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2016-09-24 01:54:33 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2016-09-24 01:54:32 ----D---- C:\WINDOWS\SYSWOW64\cs
2016-09-24 01:54:31 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-09-24 01:54:30 ----D---- C:\WINDOWS\system32\cs
2016-09-24 01:54:29 ----D---- C:\WINDOWS\cs-CZ
2016-09-24 01:43:24 ----D---- C:\WINDOWS\system32\Microsoft
2016-09-24 01:39:36 ----D---- C:\Program Files\Reference Assemblies
2016-09-24 01:39:36 ----D---- C:\Program Files\MSBuild
2016-09-24 01:39:36 ----D---- C:\Program Files (x86)\Reference Assemblies
2016-09-24 01:39:36 ----D---- C:\Program Files (x86)\MSBuild
2016-09-24 01:38:38 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2016-09-24 01:38:38 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2016-09-24 01:38:38 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-09-24 01:38:34 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-09-24 01:38:34 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-09-24 01:38:34 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-09-24 01:38:04 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2016-09-23 17:07:45 ----D---- C:\ProgramData\USOShared
2016-09-23 17:06:06 ----SHD---- C:\ProgramData\Templates
2016-09-23 17:06:06 ----SHD---- C:\ProgramData\Start Menu
2016-09-23 17:06:06 ----SHD---- C:\ProgramData\Documents
2016-09-23 17:06:06 ----SHD---- C:\ProgramData\Desktop
2016-09-23 17:06:06 ----SHD---- C:\ProgramData\Application Data
2016-09-23 16:41:48 ----ASH---- C:\hiberfil.sys
2016-09-23 16:26:12 ----SD---- C:\Users\jakub_000\AppData\Roaming\Microsoft
2016-09-23 16:21:01 ----D---- C:\WINDOWS\SYSWOW64\sda
2016-09-23 16:20:31 ----D---- C:\ProgramData\Conexant
2016-09-23 16:20:29 ----D---- C:\Program Files\CONEXANT
2016-09-23 16:20:27 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2016-09-23 16:20:27 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2016-09-23 16:20:18 ----AD---- C:\Program Files\Intel
2016-09-23 16:19:54 ----D---- C:\Program Files\Synaptics
2016-09-23 16:18:21 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2016-09-23 16:16:37 ----AS---- C:\WINDOWS\bootstat.dat
2016-09-23 16:15:22 ----D---- C:\WINDOWS\Prefetch
2016-09-23 16:15:00 ----D---- C:\WINDOWS\system32\SleepStudy
2016-09-23 16:15:00 ----D---- C:\WINDOWS\ServiceProfiles
2016-09-23 16:14:43 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT

======List of files/folders modified in the last 1 month======

2016-10-14 18:45:34 ----RD---- C:\Program Files
2016-10-14 18:35:34 ----D---- C:\WINDOWS\System32
2016-10-14 18:35:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-14 18:35:13 ----RD---- C:\WINDOWS\Microsoft.NET
2016-10-14 18:30:41 ----D---- C:\WINDOWS\Temp
2016-10-14 18:26:55 ----D---- C:\WINDOWS\system32\config
2016-10-14 18:06:00 ----D---- C:\WINDOWS\system32\sru
2016-10-14 17:11:16 ----HD---- C:\Program Files\WindowsApps
2016-10-14 17:10:58 ----D---- C:\WINDOWS\AppReadiness
2016-10-14 02:27:25 ----RD---- C:\WINDOWS\assembly
2016-10-14 02:16:29 ----D---- C:\WINDOWS\WinSxS
2016-10-14 02:13:58 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-14 02:13:01 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-14 02:12:26 ----D---- C:\WINDOWS\system32\catroot2
2016-10-14 02:11:25 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-10-14 02:11:25 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-10-14 02:11:25 ----D---- C:\WINDOWS\SysWOW64
2016-10-14 02:11:24 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-10-14 02:11:23 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-10-14 02:11:23 ----D---- C:\WINDOWS\system32\wbem
2016-10-14 02:11:23 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-10-14 02:11:23 ----D---- C:\WINDOWS\system32\migwiz
2016-10-14 02:11:23 ----D---- C:\WINDOWS\system32\en-US
2016-10-14 02:11:23 ----D---- C:\WINDOWS\system32\cs-CZ
2016-10-14 02:11:23 ----D---- C:\WINDOWS\system32\Boot
2016-10-14 02:11:22 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-10-14 02:11:22 ----D---- C:\WINDOWS\ShellExperiences
2016-10-14 02:11:22 ----D---- C:\WINDOWS\INF
2016-10-14 02:11:22 ----D---- C:\Program Files\Windows Photo Viewer
2016-10-14 02:11:22 ----D---- C:\Program Files\Windows Mail
2016-10-14 02:11:22 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-10-14 02:11:20 ----D---- C:\WINDOWS\system32\drivers
2016-10-13 22:33:04 ----D---- C:\WINDOWS\system32\MRT
2016-10-13 22:22:30 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-10-13 22:22:25 ----D---- C:\WINDOWS\CbsTemp
2016-10-13 21:49:21 ----SHD---- C:\System Volume Information
2016-10-13 20:26:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2016-10-13 20:25:41 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2016-10-09 17:12:15 ----HD---- C:\ProgramData
2016-10-08 18:20:29 ----A---- C:\WINDOWS\SYSWOW64\LavasoftTcpService.dll
2016-10-06 22:24:04 ----RD---- C:\Program Files (x86)
2016-10-03 22:09:37 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-03 19:24:54 ----D---- C:\WINDOWS\rescache
2016-10-03 01:22:57 ----A---- C:\WINDOWS\SYSWOW64\LavasoftTcpServiceOff.ini
2016-10-03 01:22:57 ----A---- C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2016-10-03 01:22:05 ----D---- C:\Windows
2016-10-03 01:19:48 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-10-03 01:19:48 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-10-03 01:19:48 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2016-10-03 01:19:48 ----D---- C:\WINDOWS\SYSWOW64\setup
2016-10-03 01:19:48 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-10-03 01:19:41 ----SD---- C:\WINDOWS\system32\F12
2016-10-03 01:19:41 ----D---- C:\WINDOWS\system32\Sysprep
2016-10-03 01:19:41 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2016-10-03 01:19:41 ----D---- C:\WINDOWS\system32\setup
2016-10-03 01:19:41 ----D---- C:\WINDOWS\system32\oobe
2016-10-03 01:19:41 ----D---- C:\WINDOWS\system32\drivers\en-US
2016-10-03 01:19:41 ----D---- C:\WINDOWS\system32\Dism
2016-10-03 01:19:40 ----D---- C:\WINDOWS\system32\appraiser
2016-10-03 01:19:35 ----D---- C:\WINDOWS\Provisioning
2016-10-03 01:19:33 ----D---- C:\WINDOWS\bcastdvr
2016-10-03 01:19:33 ----D---- C:\WINDOWS\AppPatch
2016-10-03 01:19:33 ----D---- C:\Program Files\Internet Explorer
2016-10-03 01:19:33 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-01 16:17:43 ----SD---- C:\ProgramData\Microsoft
2016-09-27 14:34:47 ----D---- C:\WINDOWS\Logs
2016-09-25 11:45:22 ----D---- C:\WINDOWS\system32\Tasks
2016-09-25 11:45:17 ----D---- C:\WINDOWS\appcompat
2016-09-24 17:25:36 ----D---- C:\WINDOWS\debug
2016-09-24 13:29:21 ----D---- C:\WINDOWS\system32\restore
2016-09-24 11:26:27 ----D---- C:\WINDOWS\system32\WDI
2016-09-24 11:24:56 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-09-24 02:06:14 ----SD---- C:\WINDOWS\system32\dsc
2016-09-24 02:06:14 ----D---- C:\WINDOWS\system32\migration
2016-09-24 02:06:14 ----D---- C:\WINDOWS\system32\fr-CA
2016-09-24 02:06:14 ----D---- C:\WINDOWS\system32\es-MX
2016-09-24 02:06:12 ----RD---- C:\Program Files\Windows Defender
2016-09-24 02:06:12 ----D---- C:\Program Files\Windows Media Player
2016-09-24 02:06:12 ----D---- C:\Program Files (x86)\Windows Media Player
2016-09-24 02:06:12 ----D---- C:\Program Files (x86)\Windows Defender
2016-09-24 01:56:24 ----D---- C:\WINDOWS\OCR
2016-09-24 01:54:33 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2016-09-24 01:54:33 ----D---- C:\WINDOWS\SYSWOW64\winrm
2016-09-24 01:54:33 ----D---- C:\WINDOWS\SYSWOW64\WCN
2016-09-24 01:54:33 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2016-09-24 01:54:33 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2016-09-24 01:54:33 ----D---- C:\WINDOWS\SYSWOW64\oobe
2016-09-24 01:54:33 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-09-24 01:54:33 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2016-09-24 01:54:32 ----D---- C:\WINDOWS\SYSWOW64\Com
2016-09-24 01:54:32 ----D---- C:\WINDOWS\system32\winrm
2016-09-24 01:54:32 ----D---- C:\WINDOWS\system32\WCN
2016-09-24 01:54:32 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-09-24 01:54:32 ----D---- C:\WINDOWS\system32\slmgr
2016-09-24 01:54:32 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2016-09-24 01:54:32 ----D---- C:\WINDOWS\system32\MUI
2016-09-24 01:54:30 ----D---- C:\WINDOWS\system32\Com
2016-09-24 01:54:30 ----D---- C:\WINDOWS\servicing
2016-09-24 01:54:30 ----D---- C:\WINDOWS\PolicyDefinitions
2016-09-24 01:54:29 ----D---- C:\WINDOWS\IME
2016-09-24 01:54:29 ----D---- C:\WINDOWS\Help
2016-09-24 01:54:29 ----D---- C:\Program Files\Common Files\System
2016-09-23 17:07:45 ----D---- C:\ProgramData\USOPrivate
2016-09-23 17:05:35 ----D---- C:\WINDOWS\SoftwareDistribution
2016-09-23 17:02:21 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2016-09-23 17:02:19 ----D---- C:\WINDOWS\Registration
2016-09-23 17:02:12 ----RSD---- C:\WINDOWS\Fonts
2016-09-23 17:02:12 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-09-23 17:01:56 ----D---- C:\WINDOWS\system32\LogFiles
2016-09-23 17:01:33 ----D---- C:\WINDOWS\Tasks
2016-09-23 16:48:38 ----D---- C:\WINDOWS\system32\drivers\etc
2016-09-23 16:41:08 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-09-23 16:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-09-23 16:41:06 ----HD---- C:\WINDOWS\Installer
2016-09-23 16:36:40 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2016-09-23 16:36:40 ----D---- C:\WINDOWS\SYSWOW64\zh-HK
2016-09-23 16:36:40 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2016-09-23 16:36:36 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2016-09-23 16:36:36 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2016-09-23 16:36:36 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2016-09-23 16:36:35 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2016-09-23 16:36:35 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2016-09-23 16:36:35 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2016-09-23 16:36:34 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-09-23 16:36:34 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2016-09-23 16:36:34 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2016-09-23 16:36:33 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2016-09-23 16:36:33 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2016-09-23 16:36:33 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2016-09-23 16:36:32 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2016-09-23 16:36:32 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2016-09-23 16:36:32 ----D---- C:\WINDOWS\SYSWOW64\ms-my
2016-09-23 16:36:32 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-09-23 16:36:31 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2016-09-23 16:36:31 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2016-09-23 16:36:30 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2016-09-23 16:36:30 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2016-09-23 16:36:30 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2016-09-23 16:36:28 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2016-09-23 16:36:28 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2016-09-23 16:36:28 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2016-09-23 16:36:28 ----D---- C:\WINDOWS\SYSWOW64\gl-es
2016-09-23 16:36:27 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2016-09-23 16:36:27 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2016-09-23 16:36:27 ----D---- C:\WINDOWS\SYSWOW64\eu-es
2016-09-23 16:36:26 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2016-09-23 16:36:26 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2016-09-23 16:36:24 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2016-09-23 16:36:23 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2016-09-23 16:36:23 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2016-09-23 16:36:23 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2016-09-23 16:36:21 ----D---- C:\WINDOWS\SYSWOW64\ca-es-valencia
2016-09-23 16:36:21 ----D---- C:\WINDOWS\SYSWOW64\ca-es
2016-09-23 16:36:21 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2016-09-23 16:36:20 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2016-09-23 16:36:15 ----HD---- C:\WINDOWS\system32\WLANProfiles
2016-09-23 16:36:15 ----D---- C:\WINDOWS\system32\zh-TW
2016-09-23 16:36:15 ----D---- C:\WINDOWS\system32\zh-HK
2016-09-23 16:36:15 ----D---- C:\WINDOWS\system32\zh-CN
2016-09-23 16:36:11 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-09-23 16:36:11 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-09-23 16:36:11 ----D---- C:\WINDOWS\system32\uk-UA
2016-09-23 16:36:11 ----D---- C:\WINDOWS\system32\tr-TR
2016-09-23 16:36:11 ----D---- C:\WINDOWS\system32\th-TH
2016-09-23 16:36:10 ----D---- C:\WINDOWS\system32\sv-SE
2016-09-23 16:36:10 ----D---- C:\WINDOWS\system32\spool
2016-09-23 16:36:08 ----D---- C:\WINDOWS\system32\sl-SI
2016-09-23 16:36:07 ----D---- C:\WINDOWS\system32\sk-SK
2016-09-23 16:36:07 ----D---- C:\WINDOWS\system32\ru-RU
2016-09-23 16:36:07 ----D---- C:\WINDOWS\system32\ro-RO
2016-09-23 16:36:06 ----D---- C:\WINDOWS\system32\pt-PT
2016-09-23 16:36:06 ----D---- C:\WINDOWS\system32\pt-BR
2016-09-23 16:36:05 ----D---- C:\WINDOWS\system32\pl-PL
2016-09-23 16:36:01 ----D---- C:\WINDOWS\system32\nl-NL
2016-09-23 16:36:01 ----D---- C:\WINDOWS\system32\NDF
2016-09-23 16:36:01 ----D---- C:\WINDOWS\system32\nb-NO
2016-09-23 16:36:01 ----D---- C:\WINDOWS\system32\ms-my
2016-09-23 16:36:00 ----D---- C:\WINDOWS\system32\lv-LV
2016-09-23 16:36:00 ----D---- C:\WINDOWS\system32\lt-LT
2016-09-23 16:36:00 ----D---- C:\WINDOWS\system32\ko-KR
2016-09-23 16:35:59 ----D---- C:\WINDOWS\system32\ja-jp
2016-09-23 16:35:59 ----D---- C:\WINDOWS\system32\it-IT
2016-09-23 16:35:59 ----D---- C:\WINDOWS\system32\InputMethod
2016-09-23 16:35:58 ----D---- C:\WINDOWS\system32\hu-HU
2016-09-23 16:35:58 ----D---- C:\WINDOWS\system32\hr-HR
2016-09-23 16:35:58 ----D---- C:\WINDOWS\system32\he-IL
2016-09-23 16:35:58 ----D---- C:\WINDOWS\system32\gl-es
2016-09-23 16:35:57 ----D---- C:\WINDOWS\system32\fr-FR
2016-09-23 16:35:57 ----D---- C:\WINDOWS\system32\fi-FI
2016-09-23 16:35:57 ----D---- C:\WINDOWS\system32\eu-es
2016-09-23 16:35:57 ----D---- C:\WINDOWS\system32\et-EE
2016-09-23 16:35:56 ----D---- C:\WINDOWS\system32\es-ES
2016-09-23 16:35:54 ----D---- C:\WINDOWS\system32\en-GB
2016-09-23 16:35:53 ----D---- C:\WINDOWS\system32\el-GR
2016-09-23 16:35:52 ----D---- C:\WINDOWS\system32\de-DE
2016-09-23 16:35:51 ----D---- C:\WINDOWS\system32\da-DK
2016-09-23 16:34:09 ----D---- C:\WINDOWS\system32\ca-es-valencia
2016-09-23 16:34:09 ----D---- C:\WINDOWS\system32\ca-es
2016-09-23 16:34:08 ----D---- C:\WINDOWS\system32\bg-BG
2016-09-23 16:34:08 ----D---- C:\WINDOWS\system32\ar-SA
2016-09-23 16:33:57 ----D---- C:\WINDOWS\LiveKernelReports
2016-09-23 16:33:52 ----D---- C:\WINDOWS\InputMethod
2016-09-23 16:31:35 ----RD---- C:\Users
2016-09-23 16:31:31 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-23 16:31:29 ----D---- C:\Program Files (x86)\Common Files
2016-09-23 16:31:26 ----D---- C:\Program Files\Common Files\microsoft shared
2016-09-23 16:31:25 ----D---- C:\Program Files\Common Files
2016-09-23 16:31:02 ----D---- C:\WINDOWS\system32\Recovery
2016-09-23 16:24:50 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-09-23 16:21:37 ----RD---- C:\WINDOWS\PrintDialog
2016-09-23 16:21:35 ----RD---- C:\WINDOWS\MiracastView
2016-09-23 16:21:03 ----D---- C:\WINDOWS\twain_32
2016-09-23 16:20:36 ----D---- C:\WINDOWS\system32\CatRoot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-07-14 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-08-06 292704]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-07-16 45920]
R0 MBI;@oem43.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\WINDOWS\System32\drivers\MBI.sys [2013-10-10 29464]
R0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-07-14 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-07-14 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-07-14 1070904]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-07-14 473592]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-07-14 37656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-07-14 108304]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-07-14 162904]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 ACPIVPC;@oem28.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-09-20 35576]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-09-24 84992]
R3 CnxtHdAudService;@oem37.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-05-19 1543912]
R3 ibtusb;@oem46.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2016-07-12 349960]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-09-24 3797424]
R3 IntcDAud;@oem10.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem44.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2016-07-16 3485696]
R3 rt640x64;@oem25.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-22 886528]
R3 RTSUER;@oem39.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-03 410880]
R3 rtsuvc;@oem6.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2014-02-27 9109720]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-07-27 42696]
R3 SynTP;@oem11.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-07-27 618696]
R3 TXEIx64;@oem26.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\WINDOWS\System32\drivers\TXEIx64.sys [2014-01-15 88592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-09-24 965120]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-07-16 117248]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-24 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2016-07-16 45568]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-07-16 263008]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2016-07-16 96608]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-07-16 137056]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2016-07-16 28512]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-07-14 197128]
R2 CDPUserSvc_1542a2;CDPUserSvc_1542a2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ibtsiva;@oem46.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-09-24 328616]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 LavasoftTcpService;LavasoftTcpService; C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2016-10-08 2751760]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-09-20 198192]
R2 OneSyncSvc_1542a2;Sync Host_1542a2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 SAService;Conexant SmartAudio service; C:\WINDOWS\syswow64\SAsrv.exe [2011-09-01 447104]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-07-27 246472]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 Update service;Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [2015-07-17 339968]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-26 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_1542a2;Contact Data_1542a2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 UnistoreSvc_1542a2;User Data Storage_1542a2; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-09-24 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_1542a2;MessagingService_1542a2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-10-05 147400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-24 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Při prvním pokusu program na konci Clean fáze zamrznul, takže posílám log až z druhého pokusu, který došel do konce.

Při prvním pokusu program našel 154 threats, při druhém už jen šest.

# AdwCleaner v6.021 - Logfile created 14/10/2016 at 19:36:29
# Updated on 06/10/2016 by ToolsLib
# Database : 2016-10-14.1 [Server]
# Operating System : Windows 10 Home (X64)
# Username : jakub_000 - FREAK-LENOVO
# Running from : C:\Users\jakub_000\Desktop\adwcleaner_6.021.exe
# Mode: Clean
# Support : https://toolslib.net/forum



***** [ Services ] *****



***** [ Folders ] *****

[#] Folder deleted on reboot: C:\Users\jakub_000\AppData\Local\SweetLabs App Platform


***** [ Files ] *****

[#] File deleted: C:\WINDOWS\SysNative\LavasoftTcpService64.dll
[#] File deleted: C:\WINDOWS\SysWoW64\lavasofttcpservice.dll


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKU\S-1-5-21-180008785-2586712722-1835403446-1001\Software\SweetLabs App Platform
[#] Key deleted on reboot: HKCU\Software\SweetLabs App Platform
[#] Key deleted on reboot: [x64] HKCU\Software\SweetLabs App Platform


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1194 Bytes] - [14/10/2016 19:36:29]
C:\AdwCleaner\AdwCleaner[S0].txt - [12613 Bytes] - [14/10/2016 19:08:14]
C:\AdwCleaner\AdwCleaner[S1].txt - [1510 Bytes] - [14/10/2016 19:34:16]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1414 Bytes] ##########

Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-10-2016
Ran by jakub_000 (administrator) on FREAK-LENOVO (15-10-2016 13:50:25)
Running from C:\Users\jakub_000\Desktop
Loaded Profiles: jakub_000 (Available Profiles: jakub_000 & postgres)
Platform: Windows 10 Home Version 1607 (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\jakub_000\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6340312 2014-02-27] (Realtek semiconductor)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-05] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2014-09-20] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10841584 2014-09-20] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-07-27] (Synaptics Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8900328 2016-08-08] (AVAST Software)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-07-14] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{1f44ea58-3972-463c-b405-3baff1590ac9}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{8ed895cc-5fea-4dc9-89ee-68a596966141}: [DhcpNameServer] 150.207.1.3

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-180008785-2586712722-1835403446-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-180008785-2586712722-1835403446-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-180008785-2586712722-1835403446-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-180008785-2586712722-1835403446-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-180008785-2586712722-1835403446-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-180008785-2586712722-1835403446-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}

FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-07-14]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-07-14]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default [2016-10-15]
CHR Extension: (Google Slides) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-05]
CHR Extension: (Google Docs) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Google Drive) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-25]
CHR Extension: (YouTube) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-28]
CHR Extension: (Google Search) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Sheets) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-05]
CHR Extension: (Google Docs Offline) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (AdBlock) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-10-10]
CHR Extension: (Avast Online Security) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Gmail) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\jakub_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-23]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-05-25]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-25]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-07-14] (AVAST Software)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328616 2015-09-24] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-09-20] (Lenovo(beijing) Limited)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-27] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-07-14] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-07-14] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108304 2016-07-14] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-07-14] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-07-14] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-07-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [473592 2016-07-14] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162904 2016-07-14] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-08-06] (AVAST Software)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [349960 2016-07-12] (Intel Corporation)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-10] (Intel Corporation)
S0 megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [64352 2016-10-05] (Avago Technologies)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3485696 2016-07-16] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [9109720 2014-02-27] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-27] (Synaptics Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-15 13:50 - 2016-10-15 13:51 - 00013058 _____ C:\Users\jakub_000\Desktop\FRST.txt
2016-10-15 13:50 - 2016-10-15 13:50 - 00000000 ____D C:\FRST
2016-10-15 13:49 - 2016-10-15 13:49 - 00112640 _____ (forum.viry.cz) C:\Users\jakub_000\Desktop\FRSTLauncher.exe
2016-10-15 13:47 - 2016-10-15 13:47 - 00112640 _____ (forum.viry.cz) C:\Users\jakub_000\Downloads\Unconfirmed 603626.crdownload
2016-10-15 13:47 - 2016-10-15 13:47 - 00112640 _____ (forum.viry.cz) C:\Users\jakub_000\Downloads\Unconfirmed 116579.crdownload
2016-10-14 19:04 - 2016-10-14 19:36 - 00000000 ____D C:\AdwCleaner
2016-10-14 19:03 - 2016-10-14 19:04 - 03874368 _____ C:\Users\jakub_000\Desktop\adwcleaner_6.021.exe
2016-10-14 18:45 - 2016-10-14 18:45 - 01222144 _____ C:\Users\jakub_000\Downloads\RSITx64.exe
2016-10-14 18:45 - 2016-10-14 18:45 - 00000000 ____D C:\rsit
2016-10-14 18:45 - 2016-10-14 18:45 - 00000000 ____D C:\Program Files\trend micro
2016-10-14 18:42 - 2016-10-14 18:42 - 02406912 _____ (Farbar) C:\Users\jakub_000\Desktop\FRST64.exe
2016-10-13 20:43 - 2016-10-05 12:17 - 01322848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-10-13 20:43 - 2016-10-05 12:13 - 02750384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-13 20:43 - 2016-10-05 12:13 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-13 20:43 - 2016-10-05 12:13 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-13 20:43 - 2016-10-05 12:12 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-10-13 20:43 - 2016-10-05 12:09 - 22219328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-13 20:43 - 2016-10-05 12:09 - 00064352 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2016-10-13 20:43 - 2016-10-05 11:51 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-10-13 20:43 - 2016-10-05 11:50 - 02256592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-10-13 20:43 - 2016-10-05 11:45 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-10-13 20:43 - 2016-10-05 11:44 - 22568960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-13 20:43 - 2016-10-05 11:41 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-10-13 20:43 - 2016-10-05 11:38 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-13 20:43 - 2016-10-05 11:36 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-13 20:43 - 2016-10-05 11:35 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-13 20:43 - 2016-10-05 11:35 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-13 20:43 - 2016-10-05 11:33 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-13 20:43 - 2016-10-05 11:33 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-13 20:43 - 2016-10-05 11:33 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-10-13 20:43 - 2016-10-05 11:32 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-10-13 20:43 - 2016-10-05 11:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-10-13 20:43 - 2016-10-05 11:31 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-10-13 20:43 - 2016-10-05 11:31 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-10-13 20:43 - 2016-10-05 11:30 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-10-13 20:43 - 2016-10-05 11:29 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-13 20:43 - 2016-10-05 11:29 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-10-13 20:43 - 2016-10-05 11:28 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2016-10-13 20:43 - 2016-10-05 11:26 - 23680512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-13 20:43 - 2016-10-05 11:26 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-13 20:43 - 2016-10-05 11:26 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-10-13 20:43 - 2016-10-05 11:26 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-10-13 20:43 - 2016-10-05 11:26 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-10-13 20:43 - 2016-10-05 11:26 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2016-10-13 20:43 - 2016-10-05 11:25 - 01589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-13 20:43 - 2016-10-05 11:25 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-10-13 20:43 - 2016-10-05 11:25 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2016-10-13 20:43 - 2016-10-05 11:25 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-10-13 20:43 - 2016-10-05 11:25 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-10-13 20:43 - 2016-10-05 11:24 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-10-13 20:43 - 2016-10-05 11:24 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-13 20:43 - 2016-10-05 11:23 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-10-13 20:43 - 2016-10-05 11:23 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-13 20:43 - 2016-10-05 11:23 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-10-13 20:43 - 2016-10-05 11:23 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-10-13 20:43 - 2016-10-05 11:23 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-10-13 20:43 - 2016-10-05 11:22 - 13081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-13 20:43 - 2016-10-05 11:21 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-10-13 20:43 - 2016-10-05 11:21 - 01364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-10-13 20:43 - 2016-10-05 11:21 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-10-13 20:43 - 2016-10-05 11:20 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-10-13 20:43 - 2016-10-05 11:20 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-13 20:43 - 2016-10-05 11:19 - 02390016 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2016-10-13 20:43 - 2016-10-05 11:19 - 02265088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-13 20:43 - 2016-10-05 11:19 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-13 20:43 - 2016-10-05 11:19 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-13 20:43 - 2016-10-05 11:18 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-10-13 20:43 - 2016-10-05 11:18 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-10-13 20:43 - 2016-10-05 11:18 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-13 20:43 - 2016-10-05 11:17 - 08126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-13 20:43 - 2016-10-05 11:17 - 02914304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-13 20:43 - 2016-10-05 11:16 - 19418624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-10-13 20:43 - 2016-10-05 11:16 - 04747776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-13 20:43 - 2016-10-05 11:16 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-13 20:43 - 2016-10-05 11:15 - 07625728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-10-13 20:43 - 2016-10-05 11:15 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-10-13 20:43 - 2016-10-05 11:15 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-10-13 20:43 - 2016-10-05 11:15 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2016-10-13 20:43 - 2016-10-05 11:14 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-10-13 20:43 - 2016-10-05 11:14 - 02667520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-13 20:43 - 2016-10-05 11:14 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-13 20:43 - 2016-10-05 11:14 - 01778176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-13 20:43 - 2016-10-05 11:14 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-10-13 20:43 - 2016-10-05 11:13 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-10-13 20:43 - 2016-10-05 11:12 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-13 20:43 - 2016-10-05 11:11 - 12174848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-10-13 20:43 - 2016-10-05 11:11 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-10-13 20:43 - 2016-10-05 11:11 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-10-13 20:43 - 2016-10-05 11:11 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-10-13 20:43 - 2016-10-05 11:10 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-10-13 20:43 - 2016-10-05 11:09 - 07467520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-10-13 20:43 - 2016-10-05 11:09 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-10-13 20:43 - 2016-10-05 11:09 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-10-13 20:43 - 2016-10-05 11:09 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-10-13 20:43 - 2016-10-05 11:08 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-10-13 20:43 - 2016-10-05 11:07 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-10-13 20:43 - 2016-10-05 11:07 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-10-13 20:43 - 2016-10-05 11:07 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-10-13 20:43 - 2016-10-05 11:07 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-10-13 20:43 - 2016-10-05 11:06 - 02254336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-10-13 20:43 - 2016-10-05 11:06 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-13 20:43 - 2016-10-05 11:06 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-10-13 20:43 - 2016-10-05 11:06 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-10-13 20:43 - 2016-10-05 11:06 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-10-13 20:43 - 2016-10-05 11:05 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-10-13 20:43 - 2016-09-07 07:34 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-13 20:42 - 2016-10-05 12:35 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-10-13 20:42 - 2016-10-05 12:34 - 01051104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-13 20:42 - 2016-10-05 12:34 - 00894088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-13 20:42 - 2016-10-05 12:33 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-13 20:42 - 2016-10-05 12:31 - 02213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-10-13 20:42 - 2016-10-05 12:31 - 01353768 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-13 20:42 - 2016-10-05 12:31 - 01172472 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-13 20:42 - 2016-10-05 12:30 - 07812448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-13 20:42 - 2016-10-05 12:22 - 01181536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-10-13 20:42 - 2016-10-05 12:16 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-10-13 20:42 - 2016-10-05 12:12 - 01112928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-10-13 20:42 - 2016-10-05 12:12 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-13 20:42 - 2016-10-05 12:09 - 04129928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-13 20:42 - 2016-10-05 12:09 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-13 20:42 - 2016-10-05 12:09 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-10-13 20:42 - 2016-10-05 12:08 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-13 20:42 - 2016-10-05 12:04 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-13 20:42 - 2016-10-05 12:04 - 00628032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-10-13 20:42 - 2016-10-05 12:03 - 01705976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-10-13 20:42 - 2016-10-05 11:50 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2016-10-13 20:42 - 2016-10-05 11:49 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-10-13 20:42 - 2016-10-05 11:48 - 01022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-10-13 20:42 - 2016-10-05 11:46 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-10-13 20:42 - 2016-10-05 11:46 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-10-13 20:42 - 2016-10-05 11:46 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-10-13 20:42 - 2016-10-05 11:38 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-13 20:42 - 2016-10-05 11:36 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-13 20:42 - 2016-10-05 11:35 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2016-10-13 20:42 - 2016-10-05 11:35 - 00327680 _____ C:\WINDOWS\system32\wc_storage.dll
2016-10-13 20:42 - 2016-10-05 11:35 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-13 20:42 - 2016-10-05 11:34 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-13 20:42 - 2016-10-05 11:34 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-13 20:42 - 2016-10-05 11:33 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-13 20:42 - 2016-10-05 11:32 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-13 20:42 - 2016-10-05 11:32 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-13 20:42 - 2016-10-05 11:31 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-10-13 20:42 - 2016-10-05 11:31 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-10-13 20:42 - 2016-10-05 11:31 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-13 20:42 - 2016-10-05 11:31 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-13 20:42 - 2016-10-05 11:31 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-10-13 20:42 - 2016-10-05 11:29 - 09129984 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-13 20:42 - 2016-10-05 11:29 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-13 20:42 - 2016-10-05 11:29 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-10-13 20:42 - 2016-10-05 11:28 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-10-13 20:42 - 2016-10-05 11:28 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-10-13 20:42 - 2016-10-05 11:28 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-10-13 20:42 - 2016-10-05 11:28 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-13 20:42 - 2016-10-05 11:28 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2016-10-13 20:42 - 2016-10-05 11:27 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-13 20:42 - 2016-10-05 11:27 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-10-13 20:42 - 2016-10-05 11:27 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-13 20:42 - 2016-10-05 11:26 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-10-13 20:42 - 2016-10-05 11:24 - 13434368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-13 20:42 - 2016-10-05 11:23 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-13 20:42 - 2016-10-05 11:22 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-13 20:42 - 2016-10-05 11:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-13 20:42 - 2016-10-05 11:22 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-13 20:42 - 2016-10-05 11:21 - 08075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-13 20:42 - 2016-10-05 11:21 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-10-13 20:42 - 2016-10-05 11:21 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-10-13 20:42 - 2016-10-05 11:20 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-13 20:42 - 2016-10-05 11:20 - 00804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-10-13 20:42 - 2016-10-05 11:18 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-10-13 20:42 - 2016-10-05 11:18 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-13 20:42 - 2016-10-05 11:18 - 00911872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-13 20:42 - 2016-10-05 11:17 - 04136960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-13 20:42 - 2016-10-05 11:17 - 01493504 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-13 20:42 - 2016-10-05 11:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-10-13 20:42 - 2016-10-05 11:16 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-10-13 20:42 - 2016-10-05 11:16 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-10-13 20:42 - 2016-10-05 11:16 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-10-13 20:42 - 2016-10-05 11:15 - 03617792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-13 20:42 - 2016-10-05 11:15 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-13 20:42 - 2016-10-05 11:15 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-13 20:42 - 2016-10-05 11:15 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-13 20:42 - 2016-10-05 11:15 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-10-13 20:42 - 2016-10-05 11:15 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-10-13 20:42 - 2016-10-05 11:14 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-13 20:42 - 2016-10-05 11:14 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-10-13 20:42 - 2016-10-05 11:14 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-10-13 20:42 - 2016-10-05 11:14 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-13 20:42 - 2016-10-05 11:14 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-13 20:42 - 2016-10-05 11:13 - 12345856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-10-13 20:42 - 2016-10-05 11:13 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-13 20:42 - 2016-10-05 11:12 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-10-13 20:42 - 2016-10-05 11:12 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-13 20:42 - 2016-10-05 11:11 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-10-13 20:42 - 2016-10-05 11:09 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-10-13 20:42 - 2016-10-05 11:09 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-10-13 20:42 - 2016-10-05 11:08 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-10-13 20:42 - 2016-10-05 11:08 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-10-13 20:42 - 2016-10-05 11:07 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-10-13 20:42 - 2016-10-05 11:07 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-10-13 20:42 - 2016-10-05 11:06 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-10-13 20:42 - 2016-10-05 11:06 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-10-13 20:42 - 2016-10-05 11:06 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-10-13 20:42 - 2016-10-05 11:05 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-13 20:42 - 2016-10-05 02:01 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-11 18:30 - 2016-10-11 18:30 - 00033679 _____ C:\Users\jakub_000\Downloads\KaterinaCechova.pdf
2016-10-10 17:02 - 2016-10-10 18:18 - 735209472 _____ C:\Users\jakub_000\Downloads\Peaceful.Warrior[2006]DvDrip[Eng]-aXXo.avi
2016-10-10 16:42 - 2016-10-10 16:42 - 00306688 _____ C:\Users\jakub_000\Downloads\Profesezachranareunasavesveteaneb_2 (1).pps
2016-10-10 16:27 - 2016-10-10 16:27 - 00306688 _____ C:\Users\jakub_000\Downloads\Profesezachranareunasavesveteaneb_2.pps
2016-10-05 18:24 - 2016-10-06 22:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-10-03 19:31 - 2016-10-03 19:31 - 00018185 _____ C:\Users\jakub_000\Desktop\Friday Night Lights_S 1-5_schedule_V7.xlsx
2016-10-02 14:34 - 2016-09-15 19:40 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2016-10-02 14:34 - 2016-09-15 19:35 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-10-02 14:34 - 2016-09-15 19:33 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-10-02 14:34 - 2016-09-15 19:29 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-10-02 14:34 - 2016-09-15 19:27 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-02 14:34 - 2016-09-15 19:27 - 00434528 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-10-02 14:34 - 2016-09-15 19:22 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-10-02 14:34 - 2016-09-15 19:21 - 01000288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-10-02 14:34 - 2016-09-15 19:20 - 00634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-10-02 14:34 - 2016-09-15 19:15 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-10-02 14:34 - 2016-09-15 19:14 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-02 14:34 - 2016-09-15 19:14 - 00119648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-10-02 14:34 - 2016-09-15 19:13 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-10-02 14:34 - 2016-09-15 19:12 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-10-02 14:34 - 2016-09-15 19:06 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-10-02 14:34 - 2016-09-15 19:06 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-10-02 14:34 - 2016-09-15 19:03 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-10-02 14:34 - 2016-09-15 19:03 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2016-10-02 14:34 - 2016-09-15 19:02 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-10-02 14:34 - 2016-09-15 19:01 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2016-10-02 14:34 - 2016-09-15 18:59 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovslegacy.dll
2016-10-02 14:34 - 2016-09-15 18:57 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2016-10-02 14:34 - 2016-09-15 18:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-10-02 14:34 - 2016-09-15 18:56 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-10-02 14:34 - 2016-09-15 18:56 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2016-10-02 14:34 - 2016-09-15 18:55 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2016-10-02 14:34 - 2016-09-15 18:55 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-10-02 14:34 - 2016-09-15 18:55 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2016-10-02 14:34 - 2016-09-15 18:53 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2016-10-02 14:34 - 2016-09-15 18:52 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-10-02 14:34 - 2016-09-15 18:51 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-10-02 14:34 - 2016-09-15 18:50 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-10-02 14:34 - 2016-09-15 18:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-10-02 14:34 - 2016-09-15 18:49 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-10-02 14:34 - 2016-09-15 18:46 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-10-02 14:34 - 2016-09-15 18:43 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2016-10-02 14:34 - 2016-09-15 18:43 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-10-02 14:34 - 2016-09-15 18:42 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-10-02 14:34 - 2016-09-15 18:42 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-10-02 14:34 - 2016-09-15 18:41 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-10-02 14:34 - 2016-09-15 18:40 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-10-02 14:34 - 2016-09-15 18:40 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-10-02 14:34 - 2016-09-15 18:39 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-10-02 14:34 - 2016-09-15 18:39 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-02 14:34 - 2016-09-15 18:38 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-10-02 14:34 - 2016-09-15 18:38 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2016-10-02 14:34 - 2016-09-15 18:37 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-10-02 14:34 - 2016-09-15 18:37 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-10-02 14:34 - 2016-09-15 18:37 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-10-02 14:34 - 2016-09-15 18:36 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-10-02 14:34 - 2016-09-15 18:36 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-10-02 14:34 - 2016-09-15 18:36 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-10-02 14:34 - 2016-09-15 18:36 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-10-02 14:34 - 2016-09-15 18:36 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-10-02 14:34 - 2016-09-15 18:35 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-10-02 14:34 - 2016-09-15 18:35 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-10-02 14:34 - 2016-09-15 18:35 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-10-02 14:34 - 2016-09-15 18:35 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-10-02 14:34 - 2016-09-15 18:34 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-10-02 14:34 - 2016-09-15 18:34 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-10-02 14:34 - 2016-09-15 18:34 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-10-02 14:34 - 2016-09-15 18:32 - 01037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-10-02 14:34 - 2016-09-15 18:30 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-10-02 14:34 - 2016-09-15 18:30 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-10-02 14:34 - 2016-09-15 18:29 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-10-02 14:34 - 2016-09-15 18:28 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-10-02 14:34 - 2016-09-15 18:27 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-10-02 14:34 - 2016-09-15 18:26 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-10-02 14:34 - 2016-09-15 18:25 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-10-02 14:34 - 2016-09-15 18:23 - 03405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-10-02 14:34 - 2016-09-15 18:23 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-10-02 14:34 - 2016-09-15 18:21 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-10-02 14:34 - 2016-09-15 18:21 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-10-02 14:34 - 2016-09-15 18:21 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-10-02 14:34 - 2016-09-15 18:20 - 01535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-10-02 14:34 - 2016-09-15 18:20 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-10-02 14:34 - 2016-09-15 18:20 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-02 14:34 - 2016-09-15 18:20 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-10-02 14:34 - 2016-09-15 18:20 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-10-02 14:34 - 2016-09-15 18:19 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-10-02 14:34 - 2016-09-15 18:19 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-10-02 14:34 - 2016-09-15 18:16 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-10-02 14:34 - 2016-08-05 10:29 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-10-02 14:33 - 2016-09-15 20:14 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-10-02 14:33 - 2016-09-15 19:30 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-10-02 14:33 - 2016-09-15 19:29 - 01377016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-02 14:33 - 2016-09-15 19:29 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-10-02 14:33 - 2016-09-15 19:29 - 00512416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2016-10-02 14:33 - 2016-09-15 19:27 - 00553312 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-02 14:33 - 2016-09-15 19:25 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-02 14:33 - 2016-09-15 19:23 - 00170960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-10-02 14:33 - 2016-09-15 19:21 - 01218912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-02 14:33 - 2016-09-15 19:20 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-10-02 14:33 - 2016-09-15 19:18 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-10-02 14:33 - 2016-09-15 19:16 - 01292640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-10-02 14:33 - 2016-09-15 19:16 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-10-02 14:33 - 2016-09-15 19:13 - 01264912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-10-02 14:33 - 2016-09-15 19:11 - 00773168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-02 14:33 - 2016-09-15 19:10 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-02 14:33 - 2016-09-15 19:10 - 00918848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-02 14:33 - 2016-09-15 19:06 - 01469120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-02 14:33 - 2016-09-15 19:06 - 00587968 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-02 14:33 - 2016-09-15 19:06 - 00050880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-02 14:33 - 2016-09-15 19:03 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-10-02 14:33 - 2016-09-15 19:00 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-10-02 14:33 - 2016-09-15 18:58 - 00491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-10-02 14:33 - 2016-09-15 18:58 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2016-10-02 14:33 - 2016-09-15 18:56 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-10-02 14:33 - 2016-09-15 18:56 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2016-10-02 14:33 - 2016-09-15 18:56 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-10-02 14:33 - 2016-09-15 18:55 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-10-02 14:33 - 2016-09-15 18:55 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-10-02 14:33 - 2016-09-15 18:54 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-10-02 14:33 - 2016-09-15 18:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-10-02 14:33 - 2016-09-15 18:54 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-10-02 14:33 - 2016-09-15 18:53 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-10-02 14:33 - 2016-09-15 18:51 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-10-02 14:33 - 2016-09-15 18:50 - 07219200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-02 14:33 - 2016-09-15 18:47 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-10-02 14:33 - 2016-09-15 18:47 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-10-02 14:33 - 2016-09-15 18:46 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-10-02 14:33 - 2016-09-15 18:46 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-10-02 14:33 - 2016-09-15 18:43 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-10-02 14:33 - 2016-09-15 18:43 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-02 14:33 - 2016-09-15 18:43 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-10-02 14:33 - 2016-09-15 18:41 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-10-02 14:33 - 2016-09-15 18:41 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-10-02 14:33 - 2016-09-15 18:40 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-10-02 14:33 - 2016-09-15 18:40 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-02 14:33 - 2016-09-15 18:40 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-10-02 14:33 - 2016-09-15 18:40 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-10-02 14:33 - 2016-09-15 18:39 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-10-02 14:33 - 2016-09-15 18:39 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-10-02 14:33 - 2016-09-15 18:39 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-10-02 14:33 - 2016-09-15 18:39 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-10-02 14:33 - 2016-09-15 18:38 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2016-10-02 14:33 - 2016-09-15 18:38 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-10-02 14:33 - 2016-09-15 18:38 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-10-02 14:33 - 2016-09-15 18:38 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-10-02 14:33 - 2016-09-15 18:38 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2016-10-02 14:33 - 2016-09-15 18:37 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-10-02 14:33 - 2016-09-15 18:37 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-10-02 14:33 - 2016-09-15 18:37 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-10-02 14:33 - 2016-09-15 18:36 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-10-02 14:33 - 2016-09-15 18:36 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-10-02 14:33 - 2016-09-15 18:36 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-02 14:33 - 2016-09-15 18:36 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-02 14:33 - 2016-09-15 18:35 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-10-02 14:33 - 2016-09-15 18:35 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-10-02 14:33 - 2016-09-15 18:35 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-10-02 14:33 - 2016-09-15 18:35 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-10-02 14:33 - 2016-09-15 18:35 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-10-02 14:33 - 2016-09-15 18:35 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-10-02 14:33 - 2016-09-15 18:35 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-10-02 14:33 - 2016-09-15 18:35 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-10-02 14:33 - 2016-09-15 18:35 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-10-02 14:33 - 2016-09-15 18:33 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-10-02 14:33 - 2016-09-15 18:32 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-10-02 14:33 - 2016-09-15 18:31 - 01912320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-02 14:33 - 2016-09-15 18:31 - 01553408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-02 14:33 - 2016-09-15 18:30 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-10-02 14:33 - 2016-09-15 18:30 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-10-02 14:33 - 2016-09-15 18:29 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-10-02 14:33 - 2016-09-15 18:29 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-10-02 14:33 - 2016-09-15 18:27 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-10-02 14:33 - 2016-09-15 18:27 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-02 14:33 - 2016-09-15 18:27 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-10-02 14:33 - 2016-09-15 18:27 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-10-02 14:33 - 2016-09-15 18:27 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-10-02 14:33 - 2016-09-15 18:27 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-10-02 14:33 - 2016-09-15 18:27 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-10-02 14:33 - 2016-09-15 18:27 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-10-02 14:33 - 2016-09-15 18:27 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-10-02 14:33 - 2016-09-15 18:26 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-10-02 14:33 - 2016-09-15 18:26 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-10-02 14:33 - 2016-09-15 18:26 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-10-02 14:33 - 2016-09-15 18:25 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2016-10-02 14:33 - 2016-09-15 18:25 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-10-02 14:33 - 2016-09-15 18:24 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-10-02 14:33 - 2016-09-15 18:23 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-02 14:33 - 2016-09-15 18:22 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-02 14:33 - 2016-09-15 18:22 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-02 14:33 - 2016-09-15 18:22 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-10-02 14:33 - 2016-09-15 18:21 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-02 14:33 - 2016-09-15 18:19 - 01130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-10-02 14:33 - 2016-09-15 18:19 - 00788992 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-02 14:33 - 2016-09-15 18:16 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-10-02 14:33 - 2016-09-15 18:16 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-10-02 14:32 - 2016-09-15 19:35 - 01570680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-10-02 14:32 - 2016-09-15 19:32 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-10-02 14:32 - 2016-09-15 19:30 - 00646136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-10-02 14:32 - 2016-09-15 19:29 - 00218008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-10-02 14:32 - 2016-09-15 19:29 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-10-02 14:32 - 2016-09-15 19:29 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-10-02 14:32 - 2016-09-15 19:28 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-02 14:32 - 2016-09-15 19:26 - 00090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-10-02 14:32 - 2016-09-15 19:25 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-10-02 14:32 - 2016-09-15 19:24 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-10-02 14:32 - 2016-09-15 19:23 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-10-02 14:32 - 2016-09-15 19:22 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-10-02 14:32 - 2016-09-15 19:22 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-10-02 14:32 - 2016-09-15 19:19 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-10-02 14:32 - 2016-09-15 19:18 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-10-02 14:32 - 2016-09-15 19:18 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-10-02 14:32 - 2016-09-15 19:18 - 00955528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-10-02 14:32 - 2016-09-15 19:18 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-10-02 14:32 - 2016-09-15 19:18 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-10-02 14:32 - 2016-09-15 19:17 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-10-02 14:32 - 2016-09-15 19:16 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-10-02 14:32 - 2016-09-15 19:16 - 02190176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-02 14:32 - 2016-09-15 19:16 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-10-02 14:32 - 2016-09-15 19:16 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-10-02 14:32 - 2016-09-15 19:16 - 00657760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-02 14:32 - 2016-09-15 19:16 - 00401760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-02 14:32 - 2016-09-15 19:16 - 00206096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-10-02 14:32 - 2016-09-15 19:15 - 00649568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-10-02 14:32 - 2016-09-15 19:15 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-02 14:32 - 2016-09-15 19:15 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-10-02 14:32 - 2016-09-15 19:15 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-10-02 14:32 - 2016-09-15 19:12 - 08158672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-10-02 14:32 - 2016-09-15 19:11 - 04673296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-10-02 14:32 - 2016-09-15 19:06 - 01046880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-02 14:32 - 2016-09-15 19:00 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2016-10-02 14:32 - 2016-09-15 19:00 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-10-02 14:32 - 2016-09-15 18:58 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-02 14:32 - 2016-09-15 18:58 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.UserDeviceAssociation.dll
2016-10-02 14:32 - 2016-09-15 18:57 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2016-10-02 14:32 - 2016-09-15 18:57 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-10-02 14:32 - 2016-09-15 18:56 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2016-10-02 14:32 - 2016-09-15 18:56 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2016-10-02 14:32 - 2016-09-15 18:55 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2016-10-02 14:32 - 2016-09-15 18:55 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-10-02 14:32 - 2016-09-15 18:55 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-10-02 14:32 - 2016-09-15 18:55 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2016-10-02 14:32 - 2016-09-15 18:54 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2016-10-02 14:32 - 2016-09-15 18:53 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-10-02 14:32 - 2016-09-15 18:53 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-10-02 14:32 - 2016-09-15 18:52 - 01358336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-10-02 14:32 - 2016-09-15 18:52 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-10-02 14:32 - 2016-09-15 18:52 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2016-10-02 14:32 - 2016-09-15 18:52 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-10-02 14:32 - 2016-09-15 18:49 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-10-02 14:32 - 2016-09-15 18:49 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-10-02 14:32 - 2016-09-15 18:47 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-10-02 14:32 - 2016-09-15 18:47 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2016-10-02 14:32 - 2016-09-15 18:46 - 03305984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-10-02 14:32 - 2016-09-15 18:45 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-10-02 14:32 - 2016-09-15 18:45 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-10-02 14:32 - 2016-09-15 18:44 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2016-10-02 14:32 - 2016-09-15 18:43 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-02 14:32 - 2016-09-15 18:42 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-10-02 14:32 - 2016-09-15 18:42 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2016-10-02 14:32 - 2016-09-15 18:42 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-10-02 14:32 - 2016-09-15 18:42 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2016-10-02 14:32 - 2016-09-15 18:41 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-10-02 14:32 - 2016-09-15 18:41 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-10-02 14:32 - 2016-09-15 18:41 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-10-02 14:32 - 2016-09-15 18:41 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2016-10-02 14:32 - 2016-09-15 18:40 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-10-02 14:32 - 2016-09-15 18:40 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-10-02 14:32 - 2016-09-15 18:40 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-02 14:32 - 2016-09-15 18:40 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-10-02 14:32 - 2016-09-15 18:39 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-10-02 14:32 - 2016-09-15 18:39 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-10-02 14:32 - 2016-09-15 18:39 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-10-02 14:32 - 2016-09-15 18:39 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-10-02 14:32 - 2016-09-15 18:39 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-02 14:32 - 2016-09-15 18:38 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-10-02 14:32 - 2016-09-15 18:38 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-10-02 14:32 - 2016-09-15 18:38 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-10-02 14:32 - 2016-09-15 18:38 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-10-02 14:32 - 2016-09-15 18:38 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-10-02 14:32 - 2016-09-15 18:38 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-10-02 14:32 - 2016-09-15 18:37 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-10-02 14:32 - 2016-09-15 18:37 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-10-02 14:32 - 2016-09-15 18:37 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-10-02 14:32 - 2016-09-15 18:36 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2016-10-02 14:32 - 2016-09-15 18:36 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-10-02 14:32 - 2016-09-15 18:36 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-10-02 14:32 - 2016-09-15 18:36 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-10-02 14:32 - 2016-09-15 18:36 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-10-02 14:32 - 2016-09-15 18:36 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-10-02 14:32 - 2016-09-15 18:36 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-10-02 14:32 - 2016-09-15 18:35 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-10-02 14:32 - 2016-09-15 18:35 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-10-02 14:32 - 2016-09-15 18:34 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-10-02 14:32 - 2016-09-15 18:34 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-10-02 14:32 - 2016-09-15 18:34 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-02 14:32 - 2016-09-15 18:33 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-10-02 14:32 - 2016-09-15 18:33 - 01004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-10-02 14:32 - 2016-09-15 18:33 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-10-02 14:32 - 2016-09-15 18:33 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-10-02 14:32 - 2016-09-15 18:32 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-02 14:32 - 2016-09-15 18:32 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-10-02 14:32 - 2016-09-15 18:31 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-02 14:32 - 2016-09-15 18:31 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-02 14:32 - 2016-09-15 18:30 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-10-02 14:32 - 2016-09-15 18:29 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-02 14:32 - 2016-09-15 18:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-10-02 14:32 - 2016-09-15 18:28 - 03288064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-02 14:32 - 2016-09-15 18:28 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-10-02 14:32 - 2016-09-15 18:28 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-02 14:32 - 2016-09-15 18:27 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-10-02 14:32 - 2016-09-15 18:27 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-02 14:32 - 2016-09-15 18:26 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-10-02 14:32 - 2016-09-15 18:25 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-10-02 14:32 - 2016-09-15 18:25 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-10-02 14:32 - 2016-09-15 18:23 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-10-02 14:32 - 2016-09-15 18:23 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-10-02 14:32 - 2016-09-15 18:23 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-10-02 14:32 - 2016-09-15 18:23 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-10-02 14:32 - 2016-09-15 18:22 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-10-02 14:32 - 2016-09-15 18:22 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-10-02 14:32 - 2016-09-15 18:22 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-10-02 14:32 - 2016-09-15 18:22 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-10-02 14:32 - 2016-09-15 18:21 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-10-02 14:32 - 2016-09-15 18:20 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-10-02 14:32 - 2016-09-15 18:20 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-10-02 14:32 - 2016-09-15 18:20 - 01710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-10-02 14:32 - 2016-09-15 18:19 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-10-02 14:32 - 2016-09-15 18:19 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-10-02 14:32 - 2016-09-15 18:18 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-10-02 14:32 - 2016-09-15 18:18 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-10-02 14:32 - 2016-09-15 18:17 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-10-02 14:32 - 2016-09-15 18:16 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-10-02 14:32 - 2016-08-06 05:34 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-10-02 14:32 - 2016-08-05 10:29 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-10-02 14:31 - 2016-09-15 19:37 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-10-02 14:31 - 2016-09-15 19:37 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-10-02 14:31 - 2016-09-15 19:37 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-10-02 14:31 - 2016-09-15 19:27 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-10-02 14:31 - 2016-09-15 19:27 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-10-02 14:31 - 2016-09-15 19:25 - 00340320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-10-02 14:31 - 2016-09-15 19:18 - 06654616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-10-02 14:31 - 2016-09-15 19:14 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-10-02 14:31 - 2016-09-15 19:14 - 00988512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-10-02 14:31 - 2016-09-15 19:14 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-10-02 14:31 - 2016-09-15 19:14 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-10-02 14:31 - 2016-09-15 19:14 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-10-02 14:31 - 2016-09-15 19:11 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-02 14:31 - 2016-09-15 19:07 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-10-02 14:31 - 2016-09-15 19:00 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-10-02 14:31 - 2016-09-15 18:59 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-10-02 14:31 - 2016-09-15 18:59 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2016-10-02 14:31 - 2016-09-15 18:58 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-10-02 14:31 - 2016-09-15 18:58 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2016-10-02 14:31 - 2016-09-15 18:56 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2016-10-02 14:31 - 2016-09-15 18:56 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-10-02 14:31 - 2016-09-15 18:56 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2016-10-02 14:31 - 2016-09-15 18:55 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-10-02 14:31 - 2016-09-15 18:55 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2016-10-02 14:31 - 2016-09-15 18:55 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-10-02 14:31 - 2016-09-15 18:55 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-10-02 14:31 - 2016-09-15 18:54 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-10-02 14:31 - 2016-09-15 18:52 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-10-02 14:31 - 2016-09-15 18:51 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-10-02 14:31 - 2016-09-15 18:50 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2016-10-02 14:31 - 2016-09-15 18:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-10-02 14:31 - 2016-09-15 18:48 - 01321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-10-02 14:31 - 2016-09-15 18:48 - 01112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-10-02 14:31 - 2016-09-15 18:46 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-10-02 14:31 - 2016-09-15 18:46 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-10-02 14:31 - 2016-09-15 18:43 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-10-02 14:31 - 2016-09-15 18:41 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-10-02 14:31 - 2016-09-15 18:41 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-10-02 14:31 - 2016-09-15 18:40 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-10-02 14:31 - 2016-09-15 18:40 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-10-02 14:31 - 2016-09-15 18:40 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-10-02 14:31 - 2016-09-15 18:40 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-02 14:31 - 2016-09-15 18:39 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2016-10-02 14:31 - 2016-09-15 18:39 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-10-02 14:31 - 2016-09-15 18:39 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-10-02 14:31 - 2016-09-15 18:38 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-10-02 14:31 - 2016-09-15 18:38 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-10-02 14:31 - 2016-09-15 18:38 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-10-02 14:31 - 2016-09-15 18:38 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-10-02 14:31 - 2016-09-15 18:37 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-10-02 14:31 - 2016-09-15 18:37 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-10-02 14:31 - 2016-09-15 18:37 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-10-02 14:31 - 2016-09-15 18:36 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-10-02 14:31 - 2016-09-15 18:36 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2016-10-02 14:31 - 2016-09-15 18:36 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-10-02 14:31 - 2016-09-15 18:36 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-10-02 14:31 - 2016-09-15 18:36 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-10-02 14:31 - 2016-09-15 18:36 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-10-02 14:31 - 2016-09-15 18:35 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-10-02 14:31 - 2016-09-15 18:34 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-10-02 14:31 - 2016-09-15 18:30 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-10-02 14:31 - 2016-09-15 18:27 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-10-02 14:31 - 2016-09-15 18:27 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-10-02 14:31 - 2016-09-15 18:25 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-10-02 14:31 - 2016-09-15 18:24 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-02 14:31 - 2016-09-15 18:24 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-10-02 14:31 - 2016-09-15 18:23 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-02 14:31 - 2016-09-15 18:23 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-10-02 14:31 - 2016-09-15 18:23 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-10-02 14:31 - 2016-09-15 18:22 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-10-02 14:31 - 2016-09-15 18:20 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-10-02 14:31 - 2016-09-15 18:19 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-10-02 14:31 - 2016-09-15 18:17 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-10-02 14:30 - 2016-09-15 19:29 - 00424640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-10-02 14:30 - 2016-09-15 19:29 - 00169056 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2016-10-02 14:30 - 2016-09-15 19:29 - 00074080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-10-02 14:30 - 2016-09-15 19:25 - 00280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-10-02 14:30 - 2016-09-15 19:22 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-10-02 14:30 - 2016-09-15 19:21 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-10-02 14:30 - 2016-09-15 19:15 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-02 14:30 - 2016-09-15 19:15 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-02 14:30 - 2016-09-15 19:14 - 01415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-10-02 14:30 - 2016-09-15 19:12 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-02 14:30 - 2016-09-15 19:11 - 01990640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-02 14:30 - 2016-09-15 19:11 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-10-02 14:30 - 2016-09-15 19:11 - 01066104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-10-02 14:30 - 2016-09-15 19:11 - 00862064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-10-02 14:30 - 2016-09-15 19:11 - 00725664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2016-10-02 14:30 - 2016-09-15 19:08 - 05683712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-10-02 14:30 - 2016-09-15 19:07 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-10-02 14:30 - 2016-09-15 19:07 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-10-02 14:30 - 2016-09-15 19:06 - 00372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-10-02 14:30 - 2016-09-15 19:01 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2016-10-02 14:30 - 2016-09-15 18:58 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-10-02 14:30 - 2016-09-15 18:58 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-10-02 14:30 - 2016-09-15 18:57 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2016-10-02 14:30 - 2016-09-15 18:57 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-10-02 14:30 - 2016-09-15 18:57 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-10-02 14:30 - 2016-09-15 18:56 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2016-10-02 14:30 - 2016-09-15 18:55 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-10-02 14:30 - 2016-09-15 18:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2016-10-02 14:30 - 2016-09-15 18:55 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-10-02 14:30 - 2016-09-15 18:54 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-10-02 14:30 - 2016-09-15 18:53 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-10-02 14:30 - 2016-09-15 18:52 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-10-02 14:30 - 2016-09-15 18:52 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2016-10-02 14:30 - 2016-09-15 18:48 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-10-02 14:30 - 2016-09-15 18:46 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-02 14:30 - 2016-09-15 18:45 - 02749440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-10-02 14:30 - 2016-09-15 18:45 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-02 14:30 - 2016-09-15 18:44 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-10-02 14:30 - 2016-09-15 18:44 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-02 14:30 - 2016-09-15 18:44 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-10-02 14:30 - 2016-09-15 18:43 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-10-02 14:30 - 2016-09-15 18:43 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-10-02 14:30 - 2016-09-15 18:43 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-10-02 14:30 - 2016-09-15 18:43 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-10-02 14:30 - 2016-09-15 18:42 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundMediaPolicy.dll
2016-10-02 14:30 - 2016-09-15 18:41 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-10-02 14:30 - 2016-09-15 18:40 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-10-02 14:30 - 2016-09-15 18:40 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2016-10-02 14:30 - 2016-09-15 18:40 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-10-02 14:30 - 2016-09-15 18:40 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-10-02 14:30 - 2016-09-15 18:38 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-10-02 14:30 - 2016-09-15 18:38 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-10-02 14:30 - 2016-09-15 18:38 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-10-02 14:30 - 2016-09-15 18:37 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-10-02 14:30 - 2016-09-15 18:37 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-02 14:30 - 2016-09-15 18:35 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-10-02 14:30 - 2016-09-15 18:35 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-02 14:30 - 2016-09-15 18:35 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-10-02 14:30 - 2016-09-15 18:35 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2016-10-02 14:30 - 2016-09-15 18:33 - 00966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-10-02 14:30 - 2016-09-15 18:33 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-10-02 14:30 - 2016-09-15 18:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-10-02 14:30 - 2016-09-15 18:30 - 03776512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-02 14:30 - 2016-09-15 18:30 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-10-02 14:30 - 2016-09-15 18:30 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-10-02 14:30 - 2016-09-15 18:29 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-10-02 14:30 - 2016-09-15 18:28 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-10-02 14:30 - 2016-09-15 18:27 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-10-02 14:30 - 2016-09-15 18:25 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-10-02 14:30 - 2016-09-15 18:24 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-10-02 14:30 - 2016-09-15 18:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-10-02 14:30 - 2016-09-15 18:24 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-10-02 14:30 - 2016-09-15 18:20 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-10-02 14:30 - 2016-09-15 18:16 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-02 14:30 - 2016-09-15 18:16 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-10-02 14:30 - 2016-08-06 05:33 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-09-29 17:49 - 2016-09-29 17:49 - 00425253 _____ C:\Users\jakub_000\Downloads\clopidogrel-accord-75-mg-potahovane-tablety-spc.pdf
2016-09-25 11:45 - 2016-09-25 11:45 - 00003352 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-09-24 11:29 - 2016-09-24 11:29 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-09-24 11:24 - 2016-10-03 08:38 - 00000000 ____D C:\Users\jakub_000\AppData\Local\ConnectedDevicesPlatform
2016-09-24 11:24 - 2016-09-24 11:24 - 00000020 ___SH C:\Users\jakub_000\ntuser.ini
2016-09-24 02:13 - 2016-09-23 17:06 - 00000000 ___DC C:\WINDOWS\Panther
2016-09-24 02:07 - 2016-10-05 23:47 - 00000000 ____D C:\Windows.old
2016-09-24 02:03 - 2016-09-24 02:03 - 17187840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-09-24 02:03 - 2016-09-24 02:03 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-09-24 02:03 - 2016-09-24 02:03 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 03299328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02852864 _____ (Microsoft Corporation)

C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-09-24 02:03 - 2016-09-24 02:03 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-09-24 02:03 - 2016-09-24 02:03 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02256224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02183792 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01966288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01853232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 01006080 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00965120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00959104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00773200 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00601200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00409944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-09-24 02:03 - 2016-09-24 02:03 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00303968 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-09-24 02:03 - 2016-09-24 02:03 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-09-24 02:03 - 2016-09-24 02:03 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-09-24 02:03 - 2016-09-24 02:03 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00151224 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-09-24 02:03 - 2016-09-24 02:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-09-24 02:03 - 2016-09-24 02:03 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-09-24 02:03 - 2016-09-24 02:03 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-09-24 02:03 - 2016-09-24 02:03 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-09-24 02:03 - 2016-09-24 02:03 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-09-24 02:03 - 2016-09-24 02:03 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-09-24 02:03 - 2016-09-24 02:03 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-09-24 02:03 - 2016-09-24 02:03 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-09-24 02:03 - 2016-09-24 02:03 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-09-24 02:03 - 2016-09-24 02:03 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-09-24 01:55 - 2016-10-14 19:43 - 00648616 _____ C:\WINDOWS\system32\perfh005.dat
2016-09-24 01:55 - 2016-10-14 19:43 - 00145084 _____ C:\WINDOWS\system32\perfc005.dat
2016-09-24 01:55 - 2016-09-24 01:54 - 00296654 _____ C:\WINDOWS\system32\perfi005.dat
2016-09-24 01:55 - 2016-09-24 01:54 - 00038682 _____ C:\WINDOWS\system32\perfd005.dat
2016-09-24 01:55 - 2016-07-16 05:29 - 06472704 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0005.dll
2016-09-24 01:54 - 2016-09-24 01:54 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-09-24 01:54 - 2016-09-24 01:54 - 00000000 ____D C:\WINDOWS\SysWOW64\cs
2016-09-24 01:54 - 2016-09-24 01:54 - 00000000 ____D C:\WINDOWS\system32\cs
2016-09-24 01:43 - 2016-09-24 01:43 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-09-24 01:39 - 2016-09-24 01:39 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-09-24 01:39 - 2016-09-24 01:39 - 00000000 ____D C:\Program Files\MSBuild
2016-09-24 01:39 - 2016-09-24 01:39 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-09-24 01:39 - 2016-09-24 01:39 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-09-24 01:38 - 2016-09-24 01:38 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-09-24 01:38 - 2016-05-26 00:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-09-24 01:38 - 2016-05-26 00:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-09-24 01:38 - 2016-05-26 00:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-09-24 01:38 - 2016-05-25 21:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-09-24 01:38 - 2016-05-25 21:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-09-24 01:38 - 2016-05-25 21:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-09-23 17:07 - 2016-09-23 17:07 - 00000000 ____D C:\ProgramData\USOShared
2016-09-23 17:06 - 2016-09-23 17:06 - 00000000 _SHDL C:\Users\Default\My Documents
2016-09-23 17:06 - 2016-09-23 17:06 - 00000000 _SHDL C:\Users\Default\Documents\My Videos
2016-09-23 17:06 - 2016-09-23 17:06 - 00000000 _SHDL C:\Users\Default\Documents\My Pictures
2016-09-23 17:06 - 2016-09-23 17:06 - 00000000 _SHDL C:\Users\Default\Documents\My Music
2016-09-23 17:06 - 2016-09-23 17:06 - 00000000 _SHDL C:\Users\Default User\Documents\My Videos
2016-09-23 17:06 - 2016-09-23 17:06 - 00000000 _SHDL C:\Users\Default User\Documents\My Pictures
2016-09-23 17:06 - 2016-09-23 17:06 - 00000000 _SHDL C:\Users\Default User\Documents\My Music
2016-09-23 17:03 - 2016-09-23 17:05 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2016-09-23 17:03 - 2016-09-23 17:05 - 00011433 _____ C:\WINDOWS\diagerr.xml
2016-09-23 17:01 - 2016-10-14 19:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-23 17:01 - 2016-10-13 20:17 - 00004278 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-09-23 17:01 - 2016-09-23 17:01 - 00003498 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-09-23 17:01 - 2016-09-23 17:01 - 00003362 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1468742527
2016-09-23 17:01 - 2016-09-23 17:01 - 00003310 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{50208C72-A738-4016-863B-D6F5E7DAEAD7}
2016-09-23 17:01 - 2016-09-23 17:01 - 00003274 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-09-23 17:01 - 2016-09-23 17:01 - 00002810 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-180008785-2586712722-1835403446-1001
2016-09-23 17:01 - 2016-09-23 17:01 - 00002318 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-180008785-2586712722-1835403446-500
2016-09-23 17:01 - 2016-09-23 17:01 - 00002060 _____ C:\WINDOWS\System32\Tasks\PDVDServ Task
2016-09-23 17:01 - 2016-09-23 17:01 - 00002048 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2016-09-23 17:01 - 2016-09-23 17:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2016-09-23 17:01 - 2014-04-02 19:00 - 00003590 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1131006564-119424937-13047761-500
2016-09-23 16:39 - 2016-09-23 16:39 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-09-23 16:31 - 2016-09-23 16:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-09-23 16:26 - 2016-10-14 02:16 - 00000000 ____D C:\Users\jakub_000
2016-09-23 16:26 - 2016-09-23 16:45 - 00000000 ____D C:\Users\postgres
2016-09-23 16:26 - 2016-09-23 16:26 - 00000000 _SHDL C:\Users\postgres\My Documents
2016-09-23 16:26 - 2016-09-23 16:26 - 00000000 _SHDL C:\Users\postgres\Documents\My Videos
2016-09-23 16:26 - 2016-09-23 16:26 - 00000000 _SHDL C:\Users\postgres\Documents\My Pictures
2016-09-23 16:26 - 2016-09-23 16:26 - 00000000 _SHDL C:\Users\postgres\Documents\My Music
2016-09-23 16:26 - 2016-09-23 16:26 - 00000000 _SHDL C:\Users\jakub_000\My Documents
2016-09-23 16:26 - 2016-09-23 16:26 - 00000000 _SHDL C:\Users\jakub_000\Documents\My Videos
2016-09-23 16:26 - 2016-09-23 16:26 - 00000000 _SHDL C:\Users\jakub_000\Documents\My Pictures
2016-09-23 16:26 - 2016-09-23 16:26 - 00000000 _SHDL C:\Users\jakub_000\Documents\My Music
2016-09-23 16:21 - 2016-09-23 16:21 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-09-23 16:20 - 2016-09-23 16:31 - 00000000 ____D C:\ProgramData\Conexant
2016-09-23 16:20 - 2016-09-23 16:31 - 00000000 ____D C:\Program Files\Intel
2016-09-23 16:20 - 2016-09-23 16:31 - 00000000 ____D C:\Program Files\CONEXANT
2016-09-23 16:20 - 2016-09-23 16:20 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2016-09-23 16:20 - 2016-09-23 16:20 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-09-23 16:20 - 2015-09-24 23:54 - 00072696 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-09-23 16:20 - 2015-09-24 23:54 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-09-23 16:19 - 2016-09-23 16:19 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2016-09-23 16:19 - 2016-09-23 16:19 - 00000000 ____D C:\Program Files\Synaptics
2016-09-23 16:18 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-09-23 16:15 - 2016-10-15 13:44 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-09-23 16:15 - 2016-09-23 16:15 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-09-23 16:14 - 2016-10-14 02:13 - 00234040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-09-18 13:17 - 2016-09-18 13:18 - 07566472 _____ C:\Users\jakub_000\Downloads\Trailer.mp4

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-14 21:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-14 19:43 - 2015-11-15 18:46 - 01856714 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-14 19:39 - 2015-01-18 23:56 - 00000000 __SHD C:\Users\jakub_000\IntelGraphicsProfiles
2016-10-14 19:37 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-10-14 19:21 - 2016-07-22 00:00 - 00000000 ____D C:\ProgramData\Lavasoft
2016-10-14 19:21 - 2016-07-22 00:00 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2016-10-14 19:20 - 2016-07-22 00:00 - 00000000 ____D C:\Users\jakub_000\AppData\Roaming\Lavasoft
2016-10-14 19:19 - 2015-01-18 23:54 - 00000000 ____D C:\Users\jakub_000\AppData\Local\SweetLabs App Platform
2016-10-14 17:11 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-14 17:06 - 2015-01-19 14:46 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-14 02:13 - 2015-01-27 00:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-14 02:11 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-10-14 02:11 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-14 02:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-10-14 02:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-10-14 02:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-10-14 02:11 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-14 02:11 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-10-14 02:11 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-10-13 22:33 - 2015-01-31 14:52 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-13 22:22 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-13 22:22 - 2015-01-31 14:52 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-10-13 20:26 - 2016-07-16 13:42 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2016-10-13 20:25 - 2016-07-16 13:43 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2016-10-11 18:28 - 2016-06-16 22:25 - 00000000 ____D C:\Users\jakub_000\Desktop\kočka
2016-10-10 16:36 - 2016-01-05 21:19 - 00000000 ____D C:\Users\jakub_000\AppData\Local\MicrosoftEdge
2016-10-10 16:32 - 2015-01-18 23:56 - 00000000 ____D C:\Users\jakub_000\AppData\Local\Packages
2016-10-07 18:20 - 2016-07-17 16:24 - 00000000 ____D C:\Users\jakub_000\Desktop\Friday Night Lights
2016-10-03 22:09 - 2016-07-16 13:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-03 22:09 - 2016-07-16 13:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-03 19:24 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-10-03 01:19 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-10-03 01:19 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-10-03 01:19 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-10-03 01:19 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup
2016-10-03 01:19 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-03 01:19 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-03 01:19 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-10-03 01:19 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-10-03 01:19 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-10-03 01:19 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-10-03 01:19 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-09-25 11:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-09-25 11:45 - 2015-11-15 19:04 - 00002453 _____ C:\Users\jakub_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-09-25 11:45 - 2015-01-19 00:03 - 00000000 __RDO C:\Users\jakub_000\OneDrive
2016-09-24 11:24 - 2015-11-15 18:55 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-09-24 02:13 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-09-24 02:06 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-09-24 02:06 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-09-24 02:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-09-24 02:06 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-09-24 01:56 - 2016-07-16 16:15 - 00000000 ____D C:\WINDOWS\OCR
2016-09-24 01:54 - 2016-07-16 16:14 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-09-24 01:54 - 2016-07-16 16:14 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-09-24 01:54 - 2016-07-16 16:14 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-09-24 01:54 - 2016-07-16 16:14 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-09-24 01:54 - 2016-07-16 16:14 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-09-24 01:54 - 2016-07-16 16:14 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-09-24 01:54 - 2016-07-16 16:14 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-09-24 01:54 - 2016-07-16 16:14 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Com
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\IME
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help
2016-09-24 01:54 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\System
2016-09-24 01:54 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing
2016-09-23 17:07 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-09-23 17:06 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-09-23 17:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-09-23 17:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2016-09-23 17:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-09-23 16:50 - 2015-11-15 18:49 - 00022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-09-23 16:48 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-09-23 16:40 - 2016-07-22 00:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
2016-09-23 16:40 - 2016-07-17 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2016-09-23 16:40 - 2015-07-26 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2016-09-23 16:40 - 2015-05-10 23:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2016-09-23 16:40 - 2015-01-27 22:20 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2016-09-23 16:40 - 2015-01-25 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-09-23 16:40 - 2015-01-25 21:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-09-23 16:40 - 2015-01-25 21:08 - 00000000 ____D C:\Users\jakub_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-09-23 16:40 - 2014-09-20 01:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-09-23 16:39 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-09-23 16:39 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-09-23 16:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2016-09-23 16:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2016-09-23 16:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2016-09-23 16:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-09-23 16:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-09-23 16:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-09-23 16:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-09-23 16:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-09-23 16:36 - 2014-09-20 01:06 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-09-23 16:36 - 2014-03-18 12:06 - 00000000 ____D C:\WINDOWS\SysWOW64\gl-es
2016-09-23 16:36 - 2014-03-18 12:06 - 00000000 ____D C:\WINDOWS\SysWOW64\eu-es
2016-09-23 16:36 - 2014-03-18 12:06 - 00000000 ____D C:\WINDOWS\SysWOW64\ca-es-valencia
2016-09-23 16:36 - 2014-03-18 12:06 - 00000000 ____D C:\WINDOWS\SysWOW64\ca-es
2016-09-23 16:36 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-09-23 16:36 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-09-23 16:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-09-23 16:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-09-23 16:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-09-23 16:35 - 2014-03-18 12:06 - 00000000 ____D C:\WINDOWS\system32\gl-es
2016-09-23 16:35 - 2014-03-18 12:06 - 00000000 ____D C:\WINDOWS\system32\eu-es
2016-09-23 16:34 - 2014-03-18 12:06 - 00000000 ____D C:\WINDOWS\system32\ca-es-valencia
2016-09-23 16:34 - 2014-03-18 12:06 - 00000000 ____D C:\WINDOWS\system32\ca-es
2016-09-23 16:33 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-09-23 16:33 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\InputMethod
2016-09-23 16:31 - 2016-07-22 00:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2016-09-23 16:31 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-09-23 16:29 - 2015-01-18 23:59 - 00000000 ____D C:\Users\jakub_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-09-23 16:21 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-09-23 16:21 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-09-23 15:16 - 2015-01-19 00:06 - 00000986 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-22 11:16 - 2015-01-19 00:06 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-20 10:03 - 2016-07-17 10:02 - 00001099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-09-16 10:18 - 2015-01-19 00:07 - 00002283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-16 10:18 - 2015-01-19 00:07 - 00002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk

==================== Files in the root of some directories =======

2015-02-08 16:25 - 2015-02-08 16:25 - 0004949 _____ () C:\ProgramData\bltofzsb.qlf
2016-09-23 16:20 - 2016-09-23 16:20 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\jakub_000\AppData\Local\Temp\libeay32.dll
C:\Users\jakub_000\AppData\Local\Temp\msvcr120.dll
C:\Users\jakub_000\AppData\Local\Temp\oct7515.tmp.exe
C:\Users\jakub_000\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\jakub_000\Desktop" je 233 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\ProgramData\DP45977C.lfl
C:\Users\jakub_000\AppData\Local\Temp
SearchScopes: HKU\S-1-5-21-180008785-2586712722-1835403446-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-180008785-2586712722-1835403446-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
C:\WINDOWS\system32\ApnDatabase.xml
Task: {00F6984B-5D27-4499-8F95-3FCFE5497F1B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {15EB6832-29F9-4B5E-A60C-55146CFB2C19} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {260D1930-2D64-4F7F-A4E9-C89254DF91B3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2BE824D3-6D4F-47D9-A87A-C146D12229C7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3D2579DD-2A14-4A49-92BE-95117AD2F84E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {48B61EFE-0AFA-4F03-85FB-43729A608EB1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {733B6FF0-F7EA-47A6-BC99-3674C03DEFB3} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8C892550-02A4-49D5-B214-41B786EF8582} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {8CB79967-C406-4F0E-A393-B6FE0D69CBB5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {A1F194C4-FEA8-4984-9313-9F8ABE34A58E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A4A39ADE-DE0D-4D2D-BD35-4AFA0E774855} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B6EB5E4E-5535-4354-B0F5-006B264A31FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {C15351BE-C1CF-4B5F-A12B-0C21A5878C1C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-10-2016
Ran by jakub_000 (16-10-2016 14:40:18) Run:1
Running from C:\Users\jakub_000\Desktop
Loaded Profiles: jakub_000 (Available Profiles: jakub_000 & postgres)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\ProgramData\DP45977C.lfl
C:\Users\jakub_000\AppData\Local\Temp
SearchScopes: HKU\S-1-5-21-180008785-2586712722-1835403446-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-180008785-2586712722-1835403446-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
C:\WINDOWS\system32\ApnDatabase.xml
Task: {00F6984B-5D27-4499-8F95-3FCFE5497F1B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {15EB6832-29F9-4B5E-A60C-55146CFB2C19} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {260D1930-2D64-4F7F-A4E9-C89254DF91B3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2BE824D3-6D4F-47D9-A87A-C146D12229C7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3D2579DD-2A14-4A49-92BE-95117AD2F84E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {48B61EFE-0AFA-4F03-85FB-43729A608EB1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {733B6FF0-F7EA-47A6-BC99-3674C03DEFB3} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8C892550-02A4-49D5-B214-41B786EF8582} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {8CB79967-C406-4F0E-A393-B6FE0D69CBB5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {A1F194C4-FEA8-4984-9313-9F8ABE34A58E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A4A39ADE-DE0D-4D2D-BD35-4AFA0E774855} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B6EB5E4E-5535-4354-B0F5-006B264A31FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {C15351BE-C1CF-4B5F-A12B-0C21A5878C1C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End
*****************

C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully

"C:\Users\jakub_000\AppData\Local\Temp" folder move:

Could not move "C:\Users\jakub_000\AppData\Local\Temp" => Scheduled to move on reboot.

HKU\S-1-5-21-180008785-2586712722-1835403446-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-180008785-2586712722-1835403446-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
C:\WINDOWS\system32\ApnDatabase.xml => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00F6984B-5D27-4499-8F95-3FCFE5497F1B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00F6984B-5D27-4499-8F95-3FCFE5497F1B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{15EB6832-29F9-4B5E-A60C-55146CFB2C19}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15EB6832-29F9-4B5E-A60C-55146CFB2C19}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{260D1930-2D64-4F7F-A4E9-C89254DF91B3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{260D1930-2D64-4F7F-A4E9-C89254DF91B3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2BE824D3-6D4F-47D9-A87A-C146D12229C7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BE824D3-6D4F-47D9-A87A-C146D12229C7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3D2579DD-2A14-4A49-92BE-95117AD2F84E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D2579DD-2A14-4A49-92BE-95117AD2F84E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{48B61EFE-0AFA-4F03-85FB-43729A608EB1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48B61EFE-0AFA-4F03-85FB-43729A608EB1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{733B6FF0-F7EA-47A6-BC99-3674C03DEFB3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{733B6FF0-F7EA-47A6-BC99-3674C03DEFB3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8C892550-02A4-49D5-B214-41B786EF8582}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C892550-02A4-49D5-B214-41B786EF8582}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8CB79967-C406-4F0E-A393-B6FE0D69CBB5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8CB79967-C406-4F0E-A393-B6FE0D69CBB5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A1F194C4-FEA8-4984-9313-9F8ABE34A58E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1F194C4-FEA8-4984-9313-9F8ABE34A58E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A4A39ADE-DE0D-4D2D-BD35-4AFA0E774855}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4A39ADE-DE0D-4D2D-BD35-4AFA0E774855}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B6EB5E4E-5535-4354-B0F5-006B264A31FE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B6EB5E4E-5535-4354-B0F5-006B264A31FE}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C15351BE-C1CF-4B5F-A12B-0C21A5878C1C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C15351BE-C1CF-4B5F-A12B-0C21A5878C1C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => not found.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 16-10-2016 14:43:58)

C:\Users\jakub_000\AppData\Local\Temp => moved successfully

==== End of Fixlog 14:44:03 ====

Smazáno. PC by již měl být čistý.

Super, diky moc

Rádo se stalo!