VIRY.CZ

Ahoj, prosím o kontrolu logu. Ntb je v podstatě v základu, ale při stahování solidworks 2016 pravděpodobně došlo ke stáhnutí i něčeho jiného. V prohlížeči vyskakují divné stránky, načítají se automaticky různé stránky, při vyhledávání na googlu se zobrazují nejdříve stránky, co normálně ne.
Děkuji za kontrolu.
Nikdy jsem to nedělal snad tedy postupuji takhle správně..

Logfile of random's system information tool 1.16 (written by random/random)
Run by Lukas Fiala at 2017-03-21 13:28:36
Microsoft Windows 10 Home
System drive C: has 507 GB (71%) free of 715 GB
Total RAM: 3994 MB (45% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:28:52, on 21.03.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Users\Lukas Fiala\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files\trend micro\Lukas Fiala_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://noblok.net/wpad.dat?de64c4b528eb ... 3226377721
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Lukas Fiala\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Google Update] C:\Users\Lukas Fiala\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: SOLIDWORKS 2016 Rychlé spuštění.lnk = ?
O4 - Global Startup: SOLIDWORKS Nástroj pro stahování na pozadí.lnk = ?
O4 - Global Startup: Virtual Router Manager.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DTSInterops (CoordinatorServiceHost) - Dassault Systemes SolidWorks Corporation - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: SOLIDWORKS Electrical Collaborative Server (ewserver) - Unknown owner - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Solver for Flow Simulation 2016 (RemoteSolverDispatcher) - Mentor Graphics Corporation - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VirtualRouterService (Virtual Router) - Chris Pietschmann (http://pietschsoft.com) - C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 9712 bytes

====== Enumerating Processes ======

C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\system32\atiesrxx.exe
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\spoolsv.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe"
"C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe" "SOFTWARE\SRAC\COSMOS_FloWorks 2016"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe"
"C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sTEW_SQLEXPRESS
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\WinLogon.exe -SpecialSession
C:\Windows\System32\dwm.exe
C:\Windows\system32\atieclxx.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\system32\sihost.exe
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
C:\Windows\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\system32\igfxEM.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\igfxHK.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\system32\igfxTray.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\system32\dashost.exe
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\Virtual Router\VirtualRouterClient.exe"
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Users\Lukas Fiala\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe"
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\System32\alg.exe
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.4.86.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Windows\System32\fontdrvhost.exe
C:\Windows\system32\ApplicationFrameHost.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Lukas Fiala\AppData\Local\Google\Chrome SxS\Application\chrome.exe"
"C:\Users\Lukas Fiala\AppData\Local\Google\Chrome SxS\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Lukas Fiala\AppData\Local\Google\Chrome SxS\User Data\Crashpad" "--metrics-dir=C:\Users\Lukas Fiala\AppData\Local\Google\Chrome SxS\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=canary --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=59.0.3046.0 --initial-client-data=0x1a8,0x1ac,0x1b0,0x1a4,0x1b4,0x7fff4e1029a0,0x7fff4e1029c0,0x7fff4e102978
"C:\Users\Lukas Fiala\AppData\Local\Google\Chrome SxS\Application\chrome.exe" --type=watcher --main-thread-id=6452 --on-initialized-event-handle=624 --parent-handle=452 /prefetch:6
"C:\Users\Lukas Fiala\AppData\Local\Google\Chrome SxS\Application\chrome.exe" --type=utility --lang=cs --service-request-channel-token=7EB80B9E0EAF8920BD916498E961B298 --mojo-platform-channel-handle=2960 --ignored=" --type=renderer " /prefetch:8
C:\Windows\System32\InstallAgent.exe -Embedding
C:\Windows\System32\InstallAgentUserBroker.exe -Embedding
"C:\Users\Lukas Fiala\AppData\Local\Google\Chrome SxS\Application\chrome.exe" --type=gpu-process --field-trial-handle=1484 --start-stack-profiler --disable-d3d11 --use-gl=swiftshader-webgl --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,16,19,23,41,42,61,74,80 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --disable-webrtc-hw-encoding --gpu-vendor-id=0x1002 --gpu-device-id=0x6840 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.201.1151.1008 --gpu-driver-date=11-4-2015 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x0166 --gpu-active-vendor-id=0x8086 --gpu-active-device-id=0x0166 --start-stack-profiler --service-request-channel-token=1A9CED74D97278C0212FE9BED2BA526D --mojo-platform-channel-handle=2232 --ignored=" --type=renderer " /prefetch:2
"C:\Users\Lukas Fiala\AppData\Local\Google\Chrome SxS\Application\chrome.exe" --type=renderer --field-trial-handle=1484 --primordial-pipe-token=B5CE9C4AF87D07194D410F6526132134 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=B5CE9C4AF87D07194D410F6526132134 --renderer-client-id=13 --mojo-platform-channel-handle=4516 /prefetch:1
"C:\Users\Lukas Fiala\AppData\Local\Google\Chrome SxS\Application\chrome.exe" --type=renderer --field-trial-handle=1484 --primordial-pipe-token=D95FD17ED33CA436896638CC24C69023 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=D95FD17ED33CA436896638CC24C69023 --renderer-client-id=19 --mojo-platform-channel-handle=5424 /prefetch:1
"C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe" -Embedding
C:\Windows\System32\smartscreen.exe -Embedding
C:\Windows\system32\AUDIODG.EXE 0x31c
"C:\Users\Lukas Fiala\Downloads\RSITx64.exe"

====== Scheduled tasks folder ======

C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2774955484-2510873228-3376545502-1001Core - C:\Users\Lukas Fiala\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2774955484-2510873228-3376545502-1001UA - C:\Users\Lukas Fiala\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1490047428 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\Windows\system32\tasks\User_Feed_Synchronization-{637236E8-35F1-4609-8CF1-F5A68F581466} - C:\Windows\system32\msfeedssync.exe sync
C:\Windows\system32\tasks\{6D24B0CE-74E8-41D4-BB39-5E8CDB551D45} - "c:\program files (x86)\google\chrome\application\chrome.exe" https://www.skype.com/go/downloading?so ... rror=12007
C:\Windows\system32\tasks\{77F2D994-0933-4A78-B715-744737D26078} - "c:\windows\system32\launchwinapp.exe" https://www.skype.com/go/downloading?so ... rror=12007
C:\Windows\system32\tasks\{BA3B7997-AFCB-400A-B001-DAFC5D30306B} - "c:\program files (x86)\google\chrome\application\chrome.exe" https://www.skype.com/go/downloading?so ... rror=12007
C:\Windows\system32\tasks\{DB7612C9-A14D-4D49-8490-6DA2C6DF3E8A} - "c:\program files (x86)\google\chrome\application\chrome.exe" https://ui.skype.com/ui/0/7.32.0.104/cs ... age=tsBing
C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask - %systemroot%\system32\sc.exe start osppsvc
C:\Windows\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\Windows\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\Windows\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\Windows\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\Windows\system32\sc.exe start wuauserv
C:\Windows\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\Windows\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\Windows\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\Windows\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\Windows\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\Windows\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\Windows\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe Reboot
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - %systemroot%\system32\MusNotification.exe Display
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - %systemroot%\system32\MusNotification.exe ReadyToReboot
C:\Windows\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\Windows\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\Windows\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\Windows\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\Windows\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\Windows\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\Windows\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\Windows\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\Windows\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\Windows\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\Windows\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\Windows\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\Windows\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\Windows\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\Windows\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\Windows\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\Windows\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\Windows\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs

======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-04-28 3954352]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2016-09-07 631808]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Lukas Fiala\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-03-03 1518304]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-03-14 27545048]
"Google Update"=C:\Users\Lukas Fiala\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [2017-03-21 601752]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-11-04 767176]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-03-20 205512]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
SOLIDWORKS 2016 Rychlé spuštění.lnk - C:\Windows\Installer\{768F3B65-1695-47B7-9002-B11400CB111D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe
SOLIDWORKS Nástroj pro stahování na pozadí.lnk - C:\Program Files (x86)\Common Files\Manažer instalací SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe
Virtual Router Manager.lnk - C:\Windows\Installer\{BE905C46-2B34-4D73-AEE1-769ED138E0FF}\_118D1A4EFFA6998C3492EB.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2017-03-21 13:28:37 ----D---- C:\Program Files\trend micro
2017-03-21 13:28:36 ----D---- C:\rsit
2017-03-21 01:42:12 ----D---- C:\ProgramData\SWCUTemp
2017-03-21 01:39:01 ----D---- C:\ProgramData\dbg
2017-03-21 00:44:04 ----SHD---- C:\Config.Msi
2017-03-21 00:21:27 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\TeamViewer
2017-03-21 00:21:17 ----D---- C:\Program Files (x86)\TeamViewer
2017-03-20 23:04:53 ----RD---- C:\Program Files (x86)\Skype
2017-03-20 23:02:43 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-03-20 23:00:49 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\AVAST Software
2017-03-20 23:00:21 ----D---- C:\Program Files\Common Files\AV
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswStm.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswsp.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswbuniva.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswbloga.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswbidsha.sys
2017-03-20 23:00:06 ----A---- C:\Windows\system32\drivers\aswbidsdrivera.sys
2017-03-20 22:59:55 ----A---- C:\Windows\system32\aswBoot.exe
2017-03-20 22:56:15 ----D---- C:\Program Files\AVAST Software
2017-03-20 22:55:38 ----D---- C:\ProgramData\AVAST Software
2017-03-17 21:28:11 ----D---- C:\ProgramData\Simpoe
2017-03-17 21:27:23 ----D---- C:\ProgramData\COSMOS Applications
2017-03-17 21:27:16 ----D---- C:\ProgramData\SOLIDWORKS Flow Simulation
2017-03-17 21:23:34 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\pdfforge
2017-03-17 21:23:33 ----A---- C:\Windows\system32\pdfcmon.dll
2017-03-17 21:23:32 ----D---- C:\Program Files\PDFCreator
2017-03-17 21:22:51 ----D---- C:\ProgramData\Dassault Systemes
2017-03-17 21:19:34 ----A---- C:\Windows\eDrawingOfficeAutomator.INI
2017-03-17 21:19:23 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\help_images_otherUI
2017-03-17 21:17:21 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\DassaultSystemes
2017-03-17 21:17:21 ----D---- C:\ProgramData\DassaultSystemes
2017-03-17 21:02:56 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-03-17 21:02:13 ----AD---- C:\ProgramData\SOLIDWORKS
2017-03-17 21:02:13 ----AD---- C:\Program Files\SOLIDWORKS Corp
2017-03-17 21:02:13 ----AD---- C:\Program Files\Common Files\SOLIDWORKS Shared
2017-03-17 21:01:46 ----D---- C:\Program Files\Common Files\Macrovision Shared
2017-03-17 20:59:28 ----AD---- C:\Program Files\Microsoft Visual Studio 8
2017-03-17 20:56:35 ----A---- C:\Windows\SYSWOW64\perf-MSSQL12.TEW_SQLEXPRESS-sqlagtctr.dll
2017-03-17 20:56:34 ----A---- C:\Windows\system32\perf-MSSQL12.TEW_SQLEXPRESS-sqlagtctr.dll
2017-03-17 20:56:16 ----A---- C:\Windows\SYSWOW64\perf-MSSQL$TEW_SQLEXPRESS-sqlctr12.1.4100.1.dll
2017-03-17 20:56:16 ----A---- C:\Windows\system32\perf-MSSQL$TEW_SQLEXPRESS-sqlctr12.1.4100.1.dll
2017-03-17 20:56:09 ----A---- C:\Windows\system32\fssres.dll
2017-03-17 20:56:07 ----A---- C:\Windows\system32\hadrres.dll
2017-03-17 20:55:06 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2017-03-17 20:54:55 ----D---- C:\Windows\system32\RsFx
2017-03-17 20:54:42 ----D---- C:\Program Files\Microsoft.NET
2017-03-17 20:53:40 ----D---- C:\Windows\SYSWOW64\1033
2017-03-17 20:53:40 ----D---- C:\Windows\system32\1033
2017-03-17 20:52:55 ----AD---- C:\Program Files (x86)\Microsoft SQL Server
2017-03-17 20:51:35 ----AD---- C:\Program Files\Microsoft SQL Server
2017-03-17 20:49:51 ----D---- C:\ProgramData\Apple
2017-03-17 20:49:51 ----AD---- C:\Program Files\Bonjour
2017-03-17 20:49:51 ----AD---- C:\Program Files (x86)\Bonjour
2017-03-17 20:48:07 ----D---- C:\Program Files (x86)\MSECache
2017-03-17 20:41:32 ----AD---- C:\ProgramData\SOLIDWORKS Electrical
2017-03-17 20:41:08 ----D---- C:\ProgramData\FLEXnet
2017-03-17 20:40:52 ----D---- C:\SOLIDWORKS Data
2017-03-17 20:34:51 ----D---- C:\Windows\SolidWorks
2017-03-17 20:34:50 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\SOLIDWORKS
2017-03-17 20:27:09 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\WinRAR
2017-03-17 20:26:41 ----AD---- C:\Program Files\WinRAR
2017-03-17 11:32:20 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\uTorrent
2017-03-17 11:18:44 ----D---- C:\Program Files\My Web Shield
2017-03-17 11:18:44 ----A---- C:\Windows\system32\drivers\mwescontroller.sys
2017-03-17 11:18:09 ----D---- C:\ProgramData\e8bbe469-7fb3-1
2017-03-17 11:18:09 ----D---- C:\ProgramData\e8bbe469-1481-0
2017-03-17 11:18:00 ----D---- C:\Program Files (x86)\OneSystemCare
2017-03-16 22:23:37 ----D---- C:\Program Files (x86)\Adobe
2017-03-16 22:23:17 ----D---- C:\ProgramData\Adobe
2017-03-08 17:35:46 ----AD---- C:\Program Files (x86)\Virtual Router
2017-03-07 17:54:30 ----D---- C:\ProgramData\Skype
2017-03-04 01:12:54 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\vlc
2017-03-04 01:12:20 ----D---- C:\Program Files (x86)\VideoLAN
2017-03-04 00:39:30 ----D---- C:\Program Files (x86)\Google
2017-03-03 14:15:14 ----A---- C:\Windows\AutoKMS.ini
2017-03-03 14:04:50 ----D---- C:\Windows\SYSWOW64\XPSViewer
2017-03-03 14:04:07 ----D---- C:\Program Files (x86)\Reference Assemblies
2017-03-03 14:04:05 ----D---- C:\Program Files\Reference Assemblies
2017-03-03 14:04:05 ----D---- C:\Program Files\MSBuild
2017-03-03 14:01:51 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2017-03-03 14:01:51 ----A---- C:\Windows\SYSWOW64\PresentationNative_v0300.dll
2017-03-03 14:01:51 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-03-03 14:01:44 ----A---- C:\Windows\system32\TsWpfWrp.exe
2017-03-03 14:01:44 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2017-03-03 14:01:44 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-03-03 14:00:38 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\Skype
2017-03-03 13:53:11 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\Macromedia
2017-03-03 13:49:43 ----AD---- C:\Program Files\Common Files\DESIGNER
2017-03-03 13:48:54 ----AD---- C:\Program Files (x86)\MSBuild
2017-03-03 13:48:44 ----D---- C:\Windows\PCHEALTH
2017-03-03 13:48:44 ----D---- C:\Program Files\Microsoft Sync Framework
2017-03-03 13:46:32 ----AD---- C:\Program Files (x86)\Microsoft Visual Studio 8
2017-03-03 13:45:51 ----D---- C:\Windows\SHELLNEW
2017-03-03 13:45:51 ----D---- C:\Program Files\Microsoft Analysis Services
2017-03-03 13:45:51 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2017-03-03 13:45:44 ----D---- C:\Program Files (x86)\Microsoft Office
2017-03-03 13:45:43 ----D---- C:\ProgramData\Microsoft Help
2017-03-03 13:45:43 ----AD---- C:\Program Files\Microsoft Office
2017-03-03 13:45:33 ----RHD---- C:\MSOCache
2017-03-02 00:17:04 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-03-01 19:47:42 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\ATI
2017-03-01 19:47:42 ----D---- C:\ProgramData\ATI
2017-03-01 19:47:10 ----D---- C:\ProgramData\Synaptics
2017-03-01 19:47:09 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\Synaptics
2017-03-01 19:47:04 ----A---- C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-03-01 16:20:06 ----D---- C:\Windows\system32\MRT
2017-03-01 16:19:47 ----AC---- C:\Windows\system32\MRT.exe
2017-03-01 16:07:36 ----A---- C:\Windows\system32\wmp.dll
2017-03-01 16:07:35 ----A---- C:\Windows\SYSWOW64\wmp.dll
2017-03-01 16:07:35 ----A---- C:\Windows\SYSWOW64\DolbyDecMFT.dll
2017-03-01 16:07:34 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2017-03-01 16:07:34 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2017-03-01 16:07:33 ----A---- C:\Windows\SYSWOW64\mos.dll
2017-03-01 16:07:33 ----A---- C:\Windows\system32\MFMediaEngine.dll
2017-03-01 16:07:32 ----A---- C:\Windows\SYSWOW64\tquery.dll
2017-03-01 16:07:32 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2017-03-01 16:07:32 ----A---- C:\Windows\system32\d3d10warp.dll
2017-03-01 16:07:32 ----A---- C:\Windows\system32\appraiser.dll
2017-03-01 16:07:32 ----A---- C:\Windows\system32\acmigration.dll
2017-03-01 16:07:31 ----A---- C:\Windows\SYSWOW64\MapRouter.dll
2017-03-01 16:07:31 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2017-03-01 16:07:31 ----A---- C:\Windows\system32\wsp_fs.dll
2017-03-01 16:07:31 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2017-03-01 16:07:31 ----A---- C:\Windows\system32\d3d11.dll
2017-03-01 16:07:31 ----A---- C:\Windows\system32\CoreUIComponents.dll
2017-03-01 16:07:30 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2017-03-01 16:07:30 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2017-03-01 16:07:30 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2017-03-01 16:07:30 ----A---- C:\Windows\SYSWOW64\MapGeocoder.dll
2017-03-01 16:07:30 ----A---- C:\Windows\system32\wlansvc.dll
2017-03-01 16:07:30 ----A---- C:\Windows\system32\mfsvr.dll
2017-03-01 16:07:30 ----A---- C:\Windows\system32\mfcore.dll
2017-03-01 16:07:30 ----A---- C:\Windows\system32\dwmcore.dll
2017-03-01 16:07:29 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-03-01 16:07:29 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2017-03-01 16:07:29 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2017-03-01 16:07:29 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2017-03-01 16:07:29 ----A---- C:\Windows\system32\wsp_health.dll
2017-03-01 16:07:29 ----A---- C:\Windows\system32\mfplat.dll
2017-03-01 16:07:29 ----A---- C:\Windows\system32\mfnetsrc.dll
2017-03-01 16:07:29 ----A---- C:\Windows\system32\mfnetcore.dll
2017-03-01 16:07:28 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2017-03-01 16:07:28 ----A---- C:\Windows\SYSWOW64\msctf.dll
2017-03-01 16:07:28 ----A---- C:\Windows\system32\wwansvc.dll
2017-03-01 16:07:28 ----A---- C:\Windows\system32\Windows.Networking.dll
2017-03-01 16:07:28 ----A---- C:\Windows\system32\mstsc.exe
2017-03-01 16:07:28 ----A---- C:\Windows\system32\mfreadwrite.dll
2017-03-01 16:07:28 ----A---- C:\Windows\system32\generaltel.dll
2017-03-01 16:07:28 ----A---- C:\Windows\system32\FntCache.dll
2017-03-01 16:07:28 ----A---- C:\Windows\system32\devinv.dll
2017-03-01 16:07:28 ----A---- C:\Windows\system32\CompatTelRunner.exe
2017-03-01 16:07:27 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2017-03-01 16:07:27 ----A---- C:\Windows\system32\wsp_sr.dll
2017-03-01 16:07:27 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2017-03-01 16:07:27 ----A---- C:\Windows\system32\spoolsv.exe
2017-03-01 16:07:27 ----A---- C:\Windows\system32\msvproc.dll
2017-03-01 16:07:27 ----A---- C:\Windows\system32\mstscax.dll
2017-03-01 16:07:27 ----A---- C:\Windows\system32\hvix64.exe
2017-03-01 16:07:27 ----A---- C:\Windows\system32\hvax64.exe
2017-03-01 16:07:27 ----A---- C:\Windows\system32\aeinv.dll
2017-03-01 16:07:26 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-03-01 16:07:26 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2017-03-01 16:07:26 ----A---- C:\Windows\SYSWOW64\gdi32full.dll
2017-03-01 16:07:26 ----A---- C:\Windows\system32\Windows.Media.dll
2017-03-01 16:07:26 ----A---- C:\Windows\system32\win32spl.dll
2017-03-01 16:07:26 ----A---- C:\Windows\system32\AppReadiness.dll
2017-03-01 16:07:25 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2017-03-01 16:07:25 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2017-03-01 16:07:25 ----A---- C:\Windows\system32\WWanAPI.dll
2017-03-01 16:07:25 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-01 16:07:25 ----A---- C:\Windows\system32\usercpl.dll
2017-03-01 16:07:25 ----A---- C:\Windows\system32\mfmkvsrcsnk.dll
2017-03-01 16:07:25 ----A---- C:\Windows\system32\LockAppHost.exe
2017-03-01 16:07:25 ----A---- C:\Windows\system32\localspl.dll
2017-03-01 16:07:25 ----A---- C:\Windows\system32\invagent.dll
2017-03-01 16:07:25 ----A---- C:\Windows\system32\hvloader.exe
2017-03-01 16:07:25 ----A---- C:\Windows\system32\drivers\bthport.sys
2017-03-01 16:07:25 ----A---- C:\Windows\system32\D3D12.dll
2017-03-01 16:07:24 ----A---- C:\Windows\SYSWOW64\wer.dll
2017-03-01 16:07:24 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2017-03-01 16:07:24 ----A---- C:\Windows\SYSWOW64\NMAA.dll
2017-03-01 16:07:24 ----A---- C:\Windows\SYSWOW64\LockAppHost.exe
2017-03-01 16:07:24 ----A---- C:\Windows\system32\Windows.Media.Editing.dll
2017-03-01 16:07:24 ----A---- C:\Windows\system32\nettrace.dll
2017-03-01 16:07:24 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2017-03-01 16:07:24 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2017-03-01 16:07:24 ----A---- C:\Windows\system32\mfksproxy.dll
2017-03-01 16:07:24 ----A---- C:\Windows\system32\dxgi.dll
2017-03-01 16:07:24 ----A---- C:\Windows\system32\aepic.dll
2017-03-01 16:07:23 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2017-03-01 16:07:23 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2017-03-01 16:07:23 ----A---- C:\Windows\SYSWOW64\InputService.dll
2017-03-01 16:07:23 ----A---- C:\Windows\system32\Windows.UI.Cred.dll
2017-03-01 16:07:23 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2017-03-01 16:07:23 ----A---- C:\Windows\system32\SpeechPal.dll
2017-03-01 16:07:23 ----A---- C:\Windows\system32\services.exe
2017-03-01 16:07:23 ----A---- C:\Windows\system32\ReAgent.dll
2017-03-01 16:07:23 ----A---- C:\Windows\system32\NetworkBindingEngineMigPlugin.dll
2017-03-01 16:07:23 ----A---- C:\Windows\system32\mprdim.dll
2017-03-01 16:07:23 ----A---- C:\Windows\system32\mfaudiocnv.dll
2017-03-01 16:07:23 ----A---- C:\Windows\system32\LockAppBroker.dll
2017-03-01 16:07:23 ----A---- C:\Windows\system32\drivers\WdiWiFi.sys
2017-03-01 16:07:23 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2017-03-01 16:07:22 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2017-03-01 16:07:22 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2017-03-01 16:07:22 ----A---- C:\Windows\system32\Windows.Web.dll
2017-03-01 16:07:22 ----A---- C:\Windows\system32\TSWorkspace.dll
2017-03-01 16:07:22 ----A---- C:\Windows\system32\nshwfp.dll
2017-03-01 16:07:22 ----A---- C:\Windows\system32\DscCore.dll
2017-03-01 16:07:22 ----A---- C:\Windows\system32\drivers\tpm.sys
2017-03-01 16:07:22 ----A---- C:\Windows\system32\drivers\BthLEEnum.sys
2017-03-01 16:07:22 ----A---- C:\Windows\system32\d2d1.dll
2017-03-01 16:07:22 ----A---- C:\Windows\system32\clusapi.dll
2017-03-01 16:07:21 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2017-03-01 16:07:21 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2017-03-01 16:07:21 ----A---- C:\Windows\SYSWOW64\biwinrt.dll
2017-03-01 16:07:21 ----A---- C:\Windows\system32\SpaceAgent.exe
2017-03-01 16:07:21 ----A---- C:\Windows\system32\SensorService.dll
2017-03-01 16:07:21 ----A---- C:\Windows\system32\rdpcore.dll
2017-03-01 16:07:21 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2017-03-01 16:07:21 ----A---- C:\Windows\system32\FontProvider.dll
2017-03-01 16:07:21 ----A---- C:\Windows\system32\drivers\sdbus.sys
2017-03-01 16:07:21 ----A---- C:\Windows\system32\discan.dll
2017-03-01 16:07:21 ----A---- C:\Windows\system32\aitstatic.exe
2017-03-01 16:07:20 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2017-03-01 16:07:20 ----A---- C:\Windows\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-01 16:07:20 ----A---- C:\Windows\SYSWOW64\weretw.dll
2017-03-01 16:07:20 ----A---- C:\Windows\SYSWOW64\StoreAgent.dll
2017-03-01 16:07:20 ----A---- C:\Windows\SYSWOW64\MapsBtSvc.dll
2017-03-01 16:07:20 ----A---- C:\Windows\SYSWOW64\DataExchange.dll
2017-03-01 16:07:20 ----A---- C:\Windows\system32\wmpps.dll
2017-03-01 16:07:20 ----A---- C:\Windows\system32\wmpeffects.dll
2017-03-01 16:07:20 ----A---- C:\Windows\system32\wlancfg.dll
2017-03-01 16:07:20 ----A---- C:\Windows\system32\MSVideoDSP.dll
2017-03-01 16:07:20 ----A---- C:\Windows\system32\MiracastReceiver.dll
2017-03-01 16:07:20 ----A---- C:\Windows\system32\icsvc.dll
2017-03-01 16:07:20 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2017-03-01 16:07:20 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-03-01 16:07:20 ----A---- C:\Windows\system32\CastLaunch.dll
2017-03-01 16:07:20 ----A---- C:\Windows\system32\browserbroker.dll
2017-03-01 16:07:18 ----A---- C:\Windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-03-01 16:07:18 ----A---- C:\Windows\SYSWOW64\TextInputFramework.dll
2017-03-01 16:07:18 ----A---- C:\Windows\SYSWOW64\MosStorage.dll
2017-03-01 16:07:18 ----A---- C:\Windows\SYSWOW64\input.dll
2017-03-01 16:07:18 ----A---- C:\Windows\system32\Windows.Media.Audio.dll
2017-03-01 16:07:18 ----A---- C:\Windows\system32\Sens.dll
2017-03-01 16:07:18 ----A---- C:\Windows\system32\drivers\hidclass.sys
2017-03-01 16:07:18 ----A---- C:\Windows\system32\drivers\EhStorTcgDrv.sys
2017-03-01 16:07:18 ----A---- C:\Windows\system32\drivers\dam.sys
2017-03-01 16:07:18 ----A---- C:\Windows\system32\credprovs.dll
2017-03-01 16:07:17 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2017-03-01 16:07:17 ----A---- C:\Windows\SYSWOW64\Windows.UI.Cred.dll
2017-03-01 16:07:17 ----A---- C:\Windows\SYSWOW64\UserDataTimeUtil.dll
2017-03-01 16:07:17 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2017-03-01 16:07:17 ----A---- C:\Windows\SYSWOW64\Phoneutil.dll
2017-03-01 16:07:17 ----A---- C:\Windows\SYSWOW64\InstallAgentUserBroker.exe
2017-03-01 16:07:17 ----A---- C:\Windows\SYSWOW64\EmailApis.dll
2017-03-01 16:07:17 ----A---- C:\Windows\SYSWOW64\credprovs.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\wmpshell.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\Windows.Networking.HostName.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\powercfg.exe
2017-03-01 16:07:17 ----A---- C:\Windows\system32\migisol.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\mfps.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\MCRecvSrc.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\iscsiwmi.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\dialserver.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\BootMenuUX.dll
2017-03-01 16:07:17 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2017-03-01 16:07:16 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2017-03-01 16:07:16 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2017-03-01 16:07:16 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Picker.dll
2017-03-01 16:07:16 ----A---- C:\Windows\SYSWOW64\Windows.Devices.LowLevel.dll
2017-03-01 16:07:16 ----A---- C:\Windows\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-01 16:07:16 ----A---- C:\Windows\SYSWOW64\InstallAgent.exe
2017-03-01 16:07:16 ----A---- C:\Windows\SYSWOW64\ChatApis.dll
2017-03-01 16:07:16 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2017-03-01 16:07:16 ----A---- C:\Windows\system32\wmpdxm.dll
2017-03-01 16:07:16 ----A---- C:\Windows\system32\sppnp.dll
2017-03-01 16:07:16 ----A---- C:\Windows\system32\ReAgentc.exe
2017-03-01 16:07:16 ----A---- C:\Windows\system32\mfsrcsnk.dll
2017-03-01 16:07:16 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2017-03-01 16:07:16 ----A---- C:\Windows\system32\devenum.dll
2017-03-01 16:07:16 ----A---- C:\Windows\system32\ActionCenter.dll
2017-03-01 16:07:15 ----A---- C:\Windows\SYSWOW64\Windows.UI.CredDialogController.dll
2017-03-01 16:07:15 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2017-03-01 16:07:15 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2017-03-01 16:07:15 ----A---- C:\Windows\system32\kdhvcom.dll
2017-03-01 16:07:15 ----A---- C:\Windows\system32\drivers\hvservice.sys
2017-03-01 16:07:14 ----A---- C:\Windows\SYSWOW64\Windows.UI.Core.TextInput.dll
2017-03-01 16:07:14 ----A---- C:\Windows\SYSWOW64\UserDataAccountApis.dll
2017-03-01 16:07:14 ----A---- C:\Windows\SYSWOW64\pwrshplugin.dll
2017-03-01 16:07:14 ----A---- C:\Windows\system32\wlanapi.dll
2017-03-01 16:07:14 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2017-03-01 16:07:14 ----A---- C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-01 16:07:14 ----A---- C:\Windows\system32\rdpencom.dll
2017-03-01 16:07:14 ----A---- C:\Windows\system32\cmintegrator.dll
2017-03-01 16:07:14 ----A---- C:\Windows\splwow64.exe
2017-03-01 16:07:13 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-01 16:07:13 ----A---- C:\Windows\SYSWOW64\msdtcuiu.dll
2017-03-01 16:07:13 ----A---- C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-01 16:07:13 ----A---- C:\Windows\system32\pwrshplugin.dll
2017-03-01 16:07:13 ----A---- C:\Windows\system32\fhcpl.dll
2017-03-01 16:07:13 ----A---- C:\Windows\system32\encapi.dll
2017-03-01 16:07:13 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2017-03-01 16:07:11 ----A---- C:\Windows\SYSWOW64\WordBreakers.dll
2017-03-01 16:07:11 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2017-03-01 16:07:11 ----A---- C:\Windows\SYSWOW64\PlayToReceiver.dll
2017-03-01 16:07:11 ----A---- C:\Windows\SYSWOW64\LockAppBroker.dll
2017-03-01 16:07:11 ----A---- C:\Windows\SYSWOW64\InputLocaleManager.dll
2017-03-01 16:07:11 ----A---- C:\Windows\SYSWOW64\EditBufferTestHook.dll
2017-03-01 16:07:11 ----A---- C:\Windows\SYSWOW64\DisplayManager.dll
2017-03-01 16:07:11 ----A---- C:\Windows\SYSWOW64\ContactApis.dll
2017-03-01 16:07:11 ----A---- C:\Windows\SYSWOW64\AppointmentApis.dll
2017-03-01 16:07:11 ----A---- C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2017-03-01 16:07:11 ----A---- C:\Windows\system32\Windows.Cortana.Desktop.dll
2017-03-01 16:07:11 ----A---- C:\Windows\system32\AboveLockAppHost.dll
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\Windows.UI.BioFeedback.dll
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\Windows.Media.Ocr.dll
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\chartv.dll
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2017-03-01 16:07:10 ----A---- C:\Windows\SYSWOW64\AppointmentActivation.dll
2017-03-01 16:07:10 ----A---- C:\Windows\system32\resutils.dll
2017-03-01 16:07:10 ----A---- C:\Windows\system32\netshell.dll
2017-03-01 16:07:10 ----A---- C:\Windows\system32\chartv.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\Windows.Energy.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\VCardParser.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\UserDataTypeHelperUtil.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\UserDataPlatformHelperUtil.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\UserDataLanguageUtil.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\UserDataAccessRes.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\POSyncServices.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\NmaDirect.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\MosResource.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\MosHostClient.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\ExtrasXmlParser.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\ExSMime.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\ContactActivation.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\BingOnlineServices.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\AddressParser.dll
2017-03-01 16:07:09 ----A---- C:\Windows\SYSWOW64\AboveLockAppHost.dll
2017-03-01 16:07:09 ----A---- C:\Windows\system32\wwanprotdim.dll
2017-03-01 16:07:09 ----A---- C:\Windows\system32\wlansec.dll
2017-03-01 16:07:09 ----A---- C:\Windows\system32\OnDemandConnRouteHelper.dll
2017-03-01 16:07:09 ----A---- C:\Windows\system32\netplwiz.dll
2017-03-01 16:07:09 ----A---- C:\Windows\system32\drivers\hidparse.sys
2017-03-01 16:07:09 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2017-03-01 16:07:09 ----A---- C:\Windows\system32\drivers\bthenum.sys
2017-03-01 16:07:08 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2017-03-01 16:07:08 ----A---- C:\Windows\SYSWOW64\PhoneutilRes.dll
2017-03-01 16:07:08 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2017-03-01 16:07:08 ----A---- C:\Windows\SYSWOW64\Microsoft-Windows-MosTrace.dll
2017-03-01 16:07:08 ----A---- C:\Windows\SYSWOW64\Microsoft-Windows-MosHost.dll
2017-03-01 16:07:08 ----A---- C:\Windows\SYSWOW64\Microsoft-Windows-MapControls.dll
2017-03-01 16:07:08 ----A---- C:\Windows\SYSWOW64\MapControlStringsRes.dll
2017-03-01 16:07:08 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2017-03-01 16:07:08 ----A---- C:\Windows\SYSWOW64\deviceassociation.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\wlansvcpal.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\wlanmsm.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\wlanhlp.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\wifiprofilessettinghandler.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\WiFiConfigSP.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\wfdprov.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\tcpipcfg.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\spwmp.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\odbcconf.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\netiougc.exe
2017-03-01 16:07:08 ----A---- C:\Windows\system32\dxmasf.dll
2017-03-01 16:07:08 ----A---- C:\Windows\system32\drivers\hidusb.sys
2017-03-01 16:07:07 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2017-03-01 16:07:07 ----A---- C:\Windows\SYSWOW64\DscCoreConfProv.dll
2017-03-01 16:07:07 ----A---- C:\Windows\system32\wmploc.DLL
2017-03-01 16:07:07 ----A---- C:\Windows\system32\DscCoreConfProv.dll
2017-03-01 16:07:06 ----A---- C:\Windows\system32\sppsvc.exe
2017-03-01 16:07:05 ----A---- C:\Windows\system32\sppobjs.dll
2017-03-01 16:07:05 ----A---- C:\Windows\system32\shell32.dll
2017-03-01 16:07:04 ----A---- C:\Windows\system32\storagewmi.dll
2017-03-01 16:07:04 ----A---- C:\Windows\system32\spaceman.exe
2017-03-01 16:07:04 ----A---- C:\Windows\system32\mispace.dll
2017-03-01 16:07:04 ----A---- C:\Windows\system32\dbgeng.dll
2017-03-01 16:07:03 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2017-03-01 16:07:03 ----A---- C:\Windows\SYSWOW64\combase.dll
2017-03-01 16:07:03 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2017-03-01 16:07:03 ----A---- C:\Windows\system32\esent.dll
2017-03-01 16:07:03 ----A---- C:\Windows\system32\drivers\ClipSp.sys
2017-03-01 16:07:03 ----A---- C:\Windows\system32\combase.dll
2017-03-01 16:07:02 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-03-01 16:07:02 ----A---- C:\Windows\system32\WsmSvc.dll
2017-03-01 16:07:02 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-03-01 16:07:02 ----A---- C:\Windows\system32\msxml6.dll
2017-03-01 16:07:02 ----A---- C:\Windows\system32\msi.dll
2017-03-01 16:07:02 ----A---- C:\Windows\system32\CertEnroll.dll
2017-03-01 16:07:01 ----A---- C:\Windows\system32\wevtsvc.dll
2017-03-01 16:07:01 ----A---- C:\Windows\system32\qmgr.dll
2017-03-01 16:07:01 ----A---- C:\Windows\system32\MSVidCtl.dll
2017-03-01 16:07:01 ----A---- C:\Windows\system32\diagtrack.dll
2017-03-01 16:07:00 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2017-03-01 16:07:00 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-03-01 16:07:00 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-03-01 16:07:00 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2017-03-01 16:07:00 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-03-01 16:07:00 ----A---- C:\Windows\system32\winhttp.dll
2017-03-01 16:07:00 ----A---- C:\Windows\system32\UIAutomationCore.dll
2017-03-01 16:07:00 ----A---- C:\Windows\system32\KernelBase.dll
2017-03-01 16:07:00 ----A---- C:\Windows\system32\bisrv.dll
2017-03-01 16:06:59 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2017-03-01 16:06:59 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-03-01 16:06:59 ----A---- C:\Windows\system32\xpsrchvw.exe
2017-03-01 16:06:59 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2017-03-01 16:06:59 ----A---- C:\Windows\system32\fveapi.dll
2017-03-01 16:06:59 ----A---- C:\Windows\system32\drivers\fvevol.sys
2017-03-01 16:06:59 ----A---- C:\Windows\system32\crypt32.dll
2017-03-01 16:06:59 ----A---- C:\Windows\system32\bcastdvr.exe
2017-03-01 16:06:58 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2017-03-01 16:06:58 ----A---- C:\Windows\SYSWOW64\NetSetupEngine.dll
2017-03-01 16:06:58 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2017-03-01 16:06:58 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2017-03-01 16:06:58 ----A---- C:\Windows\system32\wuaueng.dll
2017-03-01 16:06:58 ----A---- C:\Windows\system32\sppwinob.dll
2017-03-01 16:06:58 ----A---- C:\Windows\system32\NetSetupShim.dll
2017-03-01 16:06:58 ----A---- C:\Windows\system32\ncsi.dll
2017-03-01 16:06:58 ----A---- C:\Windows\system32\GamePanel.exe
2017-03-01 16:06:58 ----A---- C:\Windows\system32\FrameServer.dll
2017-03-01 16:06:58 ----A---- C:\Windows\system32\FlightSettings.dll
2017-03-01 16:06:58 ----A---- C:\Windows\system32\drvstore.dll
2017-03-01 16:06:57 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2017-03-01 16:06:57 ----A---- C:\Windows\SYSWOW64\rasapi32.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\wpx.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\wevtapi.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\uReFS.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\ubpm.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\NetSetupEngine.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\msv1_0.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\lsasrv.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\gpsvc.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\FSClient.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\facecredentialprovider.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\drivers\cng.sys
2017-03-01 16:06:57 ----A---- C:\Windows\system32\dnsapi.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\DeviceCensus.exe
2017-03-01 16:06:57 ----A---- C:\Windows\system32\ci.dll
2017-03-01 16:06:57 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2017-03-01 16:06:56 ----A---- C:\Windows\SYSWOW64\wsecedit.dll
2017-03-01 16:06:56 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2017-03-01 16:06:56 ----A---- C:\Windows\SYSWOW64\webio.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\wwanconn.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\wsecedit.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\wintrust.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\webio.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\schannel.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\SettingsHandlers_WorkAccess.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\PsmServiceExtHost.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\nltest.exe
2017-03-01 16:06:56 ----A---- C:\Windows\system32\NetSetupSvc.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\mprapi.dll
2017-03-01 16:06:56 ----A---- C:\Windows\system32\EditionUpgradeManagerObj.dll
2017-03-01 16:06:55 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2017-03-01 16:06:55 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-03-01 16:06:55 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Perception.dll
2017-03-01 16:06:55 ----A---- C:\Windows\system32\wuapi.dll
2017-03-01 16:06:55 ----A---- C:\Windows\system32\wer.dll
2017-03-01 16:06:55 ----A---- C:\Windows\system32\mfsensorgroup.dll
2017-03-01 16:06:55 ----A---- C:\Windows\system32\fveapibase.dll
2017-03-01 16:06:54 ----A---- C:\Windows\SYSWOW64\ddraw.dll
2017-03-01 16:06:54 ----A---- C:\Windows\system32\wkssvc.dll
2017-03-01 16:06:54 ----A---- C:\Windows\system32\w32time.dll
2017-03-01 16:06:54 ----A---- C:\Windows\system32\SndVolSSO.dll
2017-03-01 16:06:54 ----A---- C:\Windows\system32\samsrv.dll
2017-03-01 16:06:54 ----A---- C:\Windows\system32\nlasvc.dll
2017-03-01 16:06:54 ----A---- C:\Windows\system32\microsoft-windows-system-events.dll
2017-03-01 16:06:54 ----A---- C:\Windows\system32\drivers\xboxgip.sys
2017-03-01 16:06:54 ----A---- C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2017-03-01 16:06:53 ----A---- C:\Windows\SYSWOW64\wlancfg.dll
2017-03-01 16:06:53 ----A---- C:\Windows\SYSWOW64\pdh.dll
2017-03-01 16:06:53 ----A---- C:\Windows\SYSWOW64\offlinesam.dll
2017-03-01 16:06:53 ----A---- C:\Windows\SYSWOW64\dmenrollengine.dll
2017-03-01 16:06:53 ----A---- C:\Windows\SYSWOW64\d3d8.dll
2017-03-01 16:06:53 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\winlogon.exe
2017-03-01 16:06:53 ----A---- C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\sppcext.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\setupugc.exe
2017-03-01 16:06:53 ----A---- C:\Windows\system32\SettingSync.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\profsvc.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\offlinesam.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\kerberos.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\ImplatSetup.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\drivers\wof.sys
2017-03-01 16:06:53 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2017-03-01 16:06:53 ----A---- C:\Windows\system32\drivers\storport.sys
2017-03-01 16:06:53 ----A---- C:\Windows\system32\drivers\fastfat.sys
2017-03-01 16:06:53 ----A---- C:\Windows\system32\drivers\crashdmp.sys
2017-03-01 16:06:53 ----A---- C:\Windows\system32\dhcpcore6.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\dab.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\CPFilters.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\biwinrt.dll
2017-03-01 16:06:53 ----A---- C:\Windows\system32\bcrypt.dll
2017-03-01 16:06:52 ----A---- C:\Windows\SYSWOW64\powercfg.exe
2017-03-01 16:06:52 ----A---- C:\Windows\SYSWOW64\policymanager.dll
2017-03-01 16:06:52 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-03-01 16:06:52 ----A---- C:\Windows\SYSWOW64\aclui.dll
2017-03-01 16:06:52 ----A---- C:\Windows\system32\WinTypes.dll
2017-03-01 16:06:52 ----A---- C:\Windows\system32\weretw.dll
2017-03-01 16:06:52 ----A---- C:\Windows\system32\sbe.dll
2017-03-01 16:06:52 ----A---- C:\Windows\system32\RDXService.dll
2017-03-01 16:06:52 ----A---- C:\Windows\system32\qedit.dll
2017-03-01 16:06:52 ----A---- C:\Windows\system32\dpapisrv.dll
2017-03-01 16:06:52 ----A---- C:\Windows\system32\DeviceReactivation.dll
2017-03-01 16:06:52 ----A---- C:\Windows\system32\cmifw.dll
2017-03-01 16:06:52 ----A---- C:\Windows\system32\CloudStorageWizard.exe
2017-03-01 16:06:52 ----A---- C:\Windows\system32\bcdedit.exe
2017-03-01 16:06:51 ----A---- C:\Windows\SYSWOW64\NetSetupApi.dll
2017-03-01 16:06:51 ----A---- C:\Windows\SYSWOW64\MSVP9DEC.dll
2017-03-01 16:06:51 ----A---- C:\Windows\system32\wow64.dll
2017-03-01 16:06:51 ----A---- C:\Windows\system32\Windows.Media.MediaControl.dll
2017-03-01 16:06:51 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-01 16:06:51 ----A---- C:\Windows\system32\updatepolicy.dll
2017-03-01 16:06:51 ----A---- C:\Windows\system32\NetSetupApi.dll
2017-03-01 16:06:51 ----A---- C:\Windows\system32\drivers\pdc.sys
2017-03-01 16:06:51 ----A---- C:\Windows\system32\adsmsext.dll
2017-03-01 16:06:49 ----A---- C:\Windows\SYSWOW64\pidgenx.dll
2017-03-01 16:06:49 ----A---- C:\Windows\SYSWOW64\offreg.dll
2017-03-01 16:06:49 ----A---- C:\Windows\SYSWOW64\CloudExperienceHostUser.dll
2017-03-01 16:06:49 ----A---- C:\Windows\SYSWOW64\CloudExperienceHostCommon.dll
2017-03-01 16:06:49 ----A---- C:\Windows\system32\wuauclt.exe
2017-03-01 16:06:49 ----A---- C:\Windows\system32\tsmf.dll
2017-03-01 16:06:49 ----A---- C:\Windows\system32\pidgenx.dll
2017-03-01 16:06:49 ----A---- C:\Windows\system32\GenValObj.exe
2017-03-01 16:06:49 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-03-01 16:06:48 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2017-03-01 16:06:48 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-03-01 16:06:48 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-03-01 16:06:48 ----A---- C:\Windows\SYSWOW64\Windows.Devices.PointOfService.dll
2017-03-01 16:06:48 ----A---- C:\Windows\SYSWOW64\updatepolicy.dll
2017-03-01 16:06:48 ----A---- C:\Windows\system32\wuuhext.dll
2017-03-01 16:06:48 ----A---- C:\Windows\system32\WinSCard.dll
2017-03-01 16:06:48 ----A---- C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-03-01 16:06:48 ----A---- C:\Windows\system32\usermgr.dll
2017-03-01 16:06:48 ----A---- C:\Windows\system32\umpoext.dll
2017-03-01 16:06:48 ----A---- C:\Windows\system32\drivers\xinputhid.sys
2017-03-01 16:06:48 ----A---- C:\Windows\system32\CryptoWinRT.dll
2017-03-01 16:06:48 ----A---- C:\Windows\system32\BitLockerDeviceEncryption.exe
2017-03-01 16:06:47 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2017-03-01 16:06:47 ----A---- C:\Windows\SYSWOW64\wincorlib.dll
2017-03-01 16:06:47 ----A---- C:\Windows\SYSWOW64\RTMediaFrame.dll
2017-03-01 16:06:47 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2017-03-01 16:06:47 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2017-03-01 16:06:47 ----A---- C:\Windows\SYSWOW64\CryptoWinRT.dll
2017-03-01 16:06:47 ----A---- C:\Windows\system32\wincorlib.dll
2017-03-01 16:06:47 ----A---- C:\Windows\system32\TSpkg.dll
2017-03-01 16:06:47 ----A---- C:\Windows\system32\efsext.dll
2017-03-01 16:06:47 ----A---- C:\Windows\system32\cryptui.dll
2017-03-01 16:06:46 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2017-03-01 16:06:46 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-03-01 16:06:46 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2017-03-01 16:06:46 ----A---- C:\Windows\system32\NetCfgNotifyObjectHost.exe
2017-03-01 16:06:46 ----A---- C:\Windows\system32\BcastDVRHelper.dll
2017-03-01 16:06:46 ----A---- C:\Windows\system32\AppCapture.dll
2017-03-01 16:06:45 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.dll
2017-03-01 16:06:45 ----A---- C:\Windows\SYSWOW64\UserMgrProxy.dll
2017-03-01 16:06:45 ----A---- C:\Windows\system32\wwanmm.dll
2017-03-01 16:06:45 ----A---- C:\Windows\system32\wups.dll
2017-03-01 16:06:45 ----A---- C:\Windows\system32\Windows.Media.Ocr.dll
2017-03-01 16:06:45 ----A---- C:\Windows\system32\UserMgrProxy.dll
2017-03-01 16:06:45 ----A---- C:\Windows\system32\ntshrui.dll
2017-03-01 16:06:45 ----A---- C:\Windows\system32\ListSvc.dll
2017-03-01 16:06:45 ----A---- C:\Windows\system32\EditionUpgradeHelper.dll
2017-03-01 16:06:45 ----A---- C:\Windows\system32\certprop.dll
2017-03-01 16:06:44 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2017-03-01 16:06:44 ----A---- C:\Windows\SYSWOW64\WinRtTracing.dll
2017-03-01 16:06:44 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-03-01 16:06:44 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2017-03-01 16:06:44 ----A---- C:\Windows\SYSWOW64\netshell.dll
2017-03-01 16:06:44 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2017-03-01 16:06:44 ----A---- C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-03-01 16:06:44 ----A---- C:\Windows\system32\Windows.StateRepositoryClient.dll
2017-03-01 16:06:44 ----A---- C:\Windows\system32\Windows.StateRepositoryBroker.dll
2017-03-01 16:06:44 ----A---- C:\Windows\system32\SettingSyncPolicy.dll
2017-03-01 16:06:44 ----A---- C:\Windows\system32\ScDeviceEnum.dll
2017-03-01 16:06:44 ----A---- C:\Windows\system32\esentutl.exe
2017-03-01 16:06:44 ----A---- C:\Windows\system32\EncDec.dll
2017-03-01 16:06:43 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2017-03-01 16:06:43 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2017-03-01 16:06:43 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2017-03-01 16:06:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-03-01 16:06:43 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-03-01 16:06:43 ----A---- C:\Windows\SYSWOW64\offlinelsa.dll
2017-03-01 16:06:43 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2017-03-01 16:06:43 ----A---- C:\Windows\SYSWOW64\container.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\wups2.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\UIRibbonRes.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\tzres.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\storagewmi_passthru.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\sppc.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\smphost.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\slcext.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\slc.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\samlib.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\offlinelsa.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\msxml6r.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\delegatorprovider.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\DbgModel.dll
2017-03-01 16:06:43 ----A---- C:\Windows\system32\C_IS2022.DLL
2017-03-01 16:06:43 ----A---- C:\Windows\system32\c_GSM7.DLL
2017-03-01 16:06:43 ----A---- C:\Windows\system32\C_G18030.DLL
2017-03-01 16:06:42 ----A---- C:\Windows\system32\mshtml.dll
2017-03-01 16:06:39 ----A---- C:\Windows\system32\edgehtml.dll
2017-03-01 16:06:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-03-01 16:06:38 ----A---- C:\Windows\system32\jscript9.dll
2017-03-01 16:06:37 ----A---- C:\Windows\system32\twinui.dll
2017-03-01 16:06:36 ----A---- C:\Windows\SYSWOW64\MSVPXENC.dll
2017-03-01 16:06:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-03-01 16:06:36 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2017-03-01 16:06:35 ----A---- C:\Windows\system32\wininet.dll
2017-03-01 16:06:35 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2017-03-01 16:06:35 ----A---- C:\Windows\system32\MSAudDecMFT.dll
2017-03-01 16:06:34 ----A---- C:\Windows\SYSWOW64\msi.dll
2017-03-01 16:06:34 ----A---- C:\Windows\system32\wlidsvc.dll
2017-03-01 16:06:34 ----A---- C:\Windows\explorer.exe
2017-03-01 16:06:33 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2017-03-01 16:06:33 ----A---- C:\Windows\system32\Chakra.dll
2017-03-01 16:06:32 ----A---- C:\Windows\SYSWOW64\twinui.dll
2017-03-01 16:06:32 ----A---- C:\Windows\SYSWOW64\explorer.exe
2017-03-01 16:06:32 ----A---- C:\Windows\SYSWOW64\esent.dll
2017-03-01 16:06:32 ----A---- C:\Windows\system32\msftedit.dll
2017-03-01 16:06:31 ----A---- C:\Windows\SYSWOW64\wsp_fs.dll
2017-03-01 16:06:31 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2017-03-01 16:06:31 ----A---- C:\Windows\system32\SharedStartModel.dll
2017-03-01 16:06:30 ----A---- C:\Windows\system32\urlmon.dll
2017-03-01 16:06:30 ----A---- C:\Windows\system32\ResetEngine.dll
2017-03-01 16:06:30 ----A---- C:\Windows\system32\iertutil.dll
2017-03-01 16:06:30 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-03-01 16:06:29 ----A---- C:\Windows\SYSWOW64\wsp_health.dll
2017-03-01 16:06:29 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll

2017-03-01 16:06:29 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-03-01 16:06:29 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2017-03-01 16:06:29 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2017-03-01 16:06:29 ----A---- C:\Windows\system32\hevcdecoder.dll
2017-03-01 16:06:29 ----A---- C:\Windows\system32\DWrite.dll
2017-03-01 16:06:29 ----A---- C:\Windows\system32\drivers\ntfs.sys
2017-03-01 16:06:28 ----A---- C:\Windows\SYSWOW64\MSAJApi.dll
2017-03-01 16:06:28 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2017-03-01 16:06:28 ----A---- C:\Windows\system32\twinapi.appcore.dll
2017-03-01 16:06:28 ----A---- C:\Windows\system32\MrmCoreR.dll
2017-03-01 16:06:28 ----A---- C:\Windows\system32\DeviceFlows.DataModel.dll
2017-03-01 16:06:28 ----A---- C:\Windows\system32\AzureSettingSyncProvider.dll
2017-03-01 16:06:27 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2017-03-01 16:06:27 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2017-03-01 16:06:27 ----A---- C:\Windows\system32\wpnprv.dll
2017-03-01 16:06:27 ----A---- C:\Windows\system32\rpcrt4.dll
2017-03-01 16:06:27 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-03-01 16:06:26 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2017-03-01 16:06:26 ----A---- C:\Windows\SYSWOW64\wsp_sr.dll
2017-03-01 16:06:26 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2017-03-01 16:06:26 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-03-01 16:06:26 ----A---- C:\Windows\SYSWOW64\mf.dll
2017-03-01 16:06:26 ----A---- C:\Windows\system32\ntdll.dll
2017-03-01 16:06:26 ----A---- C:\Windows\system32\CredProvDataModel.dll
2017-03-01 16:06:26 ----A---- C:\Windows\system32\CoreMessaging.dll
2017-03-01 16:06:26 ----A---- C:\Windows\system32\AppxPackaging.dll
2017-03-01 16:06:25 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2017-03-01 16:06:25 ----A---- C:\Windows\system32\vbscript.dll
2017-03-01 16:06:25 ----A---- C:\Windows\system32\dsregcmd.exe
2017-03-01 16:06:25 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2017-03-01 16:06:25 ----A---- C:\Windows\system32\aadtb.dll
2017-03-01 16:06:24 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2017-03-01 16:06:24 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2017-03-01 16:06:24 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-03-01 16:06:24 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2017-03-01 16:06:24 ----A---- C:\Windows\system32\WlanMediaManager.dll
2017-03-01 16:06:24 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2017-03-01 16:06:24 ----A---- C:\Windows\system32\win32kbase.sys
2017-03-01 16:06:24 ----A---- C:\Windows\system32\gameux.dll
2017-03-01 16:06:24 ----A---- C:\Windows\system32\bdesvc.dll
2017-03-01 16:06:23 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2017-03-01 16:06:23 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2017-03-01 16:06:23 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2017-03-01 16:06:23 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2017-03-01 16:06:23 ----A---- C:\Windows\system32\PhoneService.dll
2017-03-01 16:06:23 ----A---- C:\Windows\system32\drivers\rdbss.sys
2017-03-01 16:06:23 ----A---- C:\Windows\system32\drivers\ndis.sys
2017-03-01 16:06:23 ----A---- C:\Windows\system32\drivers\afd.sys
2017-03-01 16:06:22 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2017-03-01 16:06:22 ----A---- C:\Windows\system32\rdpcorets.dll
2017-03-01 16:06:22 ----A---- C:\Windows\system32\rasmans.dll
2017-03-01 16:06:22 ----A---- C:\Windows\system32\PhoneProviders.dll
2017-03-01 16:06:21 ----A---- C:\Windows\SYSWOW64\wevtapi.dll
2017-03-01 16:06:21 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2017-03-01 16:06:21 ----A---- C:\Windows\SYSWOW64\gameux.dll
2017-03-01 16:06:21 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2017-03-01 16:06:21 ----A---- C:\Windows\system32\ws2_32.dll
2017-03-01 16:06:21 ----A---- C:\Windows\system32\winmde.dll
2017-03-01 16:06:21 ----A---- C:\Windows\system32\SyncCenter.dll
2017-03-01 16:06:21 ----A---- C:\Windows\system32\pcasvc.dll
2017-03-01 16:06:21 ----A---- C:\Windows\system32\ieproxy.dll
2017-03-01 16:06:20 ----A---- C:\Windows\system32\Windows.Media.Speech.dll
2017-03-01 16:06:20 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-03-01 16:06:20 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-03-01 16:06:20 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-03-01 16:06:19 ----A---- C:\Windows\SYSWOW64\winmde.dll
2017-03-01 16:06:19 ----A---- C:\Windows\system32\Windows.Devices.Perception.dll
2017-03-01 16:06:18 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-01 16:06:18 ----A---- C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-01 16:06:18 ----A---- C:\Windows\system32\vpnike.dll
2017-03-01 16:06:18 ----A---- C:\Windows\system32\SettingsHandlers_Flights.dll
2017-03-01 16:06:18 ----A---- C:\Windows\system32\rascustom.dll
2017-03-01 16:06:18 ----A---- C:\Windows\system32\rasapi32.dll
2017-03-01 16:06:18 ----A---- C:\Windows\system32\manage-bde.exe
2017-03-01 16:06:18 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-03-01 16:06:18 ----A---- C:\Windows\system32\BthRadioMedia.dll
2017-03-01 16:06:18 ----A---- C:\Windows\system32\BluetoothApis.dll
2017-03-01 16:06:18 ----A---- C:\Windows\system32\aadcloudap.dll
2017-03-01 16:06:17 ----A---- C:\Windows\SYSWOW64\RTWorkQ.dll
2017-03-01 16:06:17 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2017-03-01 16:06:17 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2017-03-01 16:06:17 ----A---- C:\Windows\SYSWOW64\BluetoothApis.dll
2017-03-01 16:06:17 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\updatehandlers.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\twinui.appcore.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\sspicli.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\RMapi.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\reseteng.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\NPSM.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\ieapfltr.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\hgcpl.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\enterprisecsps.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\drivers\partmgr.sys
2017-03-01 16:06:17 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2017-03-01 16:06:17 ----A---- C:\Windows\system32\DeviceEnroller.exe
2017-03-01 16:06:17 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\DataExchange.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\dafpos.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\dafBth.dll
2017-03-01 16:06:17 ----A---- C:\Windows\system32\cdd.dll
2017-03-01 16:06:16 ----A---- C:\Windows\SYSWOW64\Windows.Web.dll
2017-03-01 16:06:16 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2017-03-01 16:06:16 ----A---- C:\Windows\SYSWOW64\remoteaudioendpoint.dll
2017-03-01 16:06:16 ----A---- C:\Windows\SYSWOW64\migisol.dll
2017-03-01 16:06:16 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2017-03-01 16:06:16 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-03-01 16:06:16 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-03-01 16:06:16 ----A---- C:\Windows\SYSWOW64\cmifw.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\zipfldr.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\WMPDMC.exe
2017-03-01 16:06:16 ----A---- C:\Windows\system32\Windows.Storage.ApplicationData.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\Windows.Devices.PointOfService.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\VPNv2CSP.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\usocore.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\themecpl.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\sud.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\StorSvc.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\NetworkDesktopSettings.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\MSVP9DEC.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\lsass.exe
2017-03-01 16:06:16 ----A---- C:\Windows\system32\HttpsDataSource.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\fontext.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\eappcfg.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-03-01 16:06:16 ----A---- C:\Windows\system32\dmenrollengine.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\dmcertinst.exe
2017-03-01 16:06:16 ----A---- C:\Windows\system32\Display.dll
2017-03-01 16:06:16 ----A---- C:\Windows\system32\csrsrv.dll
2017-03-01 16:06:15 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2017-03-01 16:06:15 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2017-03-01 16:06:15 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-03-01 16:06:15 ----A---- C:\Windows\SYSWOW64\sud.dll
2017-03-01 16:06:15 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\WpAXHolder.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\UserDeviceRegistration.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\systemreset.exe
2017-03-01 16:06:15 ----A---- C:\Windows\system32\SettingsHandlers_StorageSense.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\sendmail.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\rdpudd.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\policymanager.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\offreg.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\gdi32.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\fveui.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\eapp3hst.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\autoplay.dll
2017-03-01 16:06:15 ----A---- C:\Windows\system32\apprepsync.dll
2017-03-01 16:06:14 ----A---- C:\Windows\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-03-01 16:06:14 ----A---- C:\Windows\SYSWOW64\sendmail.dll
2017-03-01 16:06:14 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2017-03-01 16:06:14 ----A---- C:\Windows\SYSWOW64\AzureSettingSyncProvider.dll
2017-03-01 16:06:14 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2017-03-01 16:06:14 ----A---- C:\Windows\system32\SysResetErr.exe
2017-03-01 16:06:14 ----A---- C:\Windows\system32\SensorDataService.exe
2017-03-01 16:06:14 ----A---- C:\Windows\system32\drivers\capimg.sys
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Scanners.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Midi.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\PlayToDevice.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\indexeddbserver.dll
2017-03-01 16:06:13 ----A---- C:\Windows\SYSWOW64\dialclient.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\Windows.Energy.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\Windows.Devices.Usb.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\taskbarcpl.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\stobject.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\RTMediaFrame.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\OneBackupHandler.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\mshtmled.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\ipnathlp.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\indexeddbserver.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\iepeers.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\fvenotify.exe
2017-03-01 16:06:13 ----A---- C:\Windows\system32\Family.SyncEngine.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\DisplayManager.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\DevicePairing.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\bdeui.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\apprepapi.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\ActivationManager.dll
2017-03-01 16:06:13 ----A---- C:\Windows\system32\AccountsRt.dll
2017-03-01 16:06:12 ----A---- C:\Windows\SYSWOW64\WwaApi.dll
2017-03-01 16:06:12 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryClient.dll
2017-03-01 16:06:12 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2017-03-01 16:06:12 ----A---- C:\Windows\SYSWOW64\SyncSettings.dll
2017-03-01 16:06:12 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-03-01 16:06:12 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2017-03-01 16:06:12 ----A---- C:\Windows\SYSWOW64\Chakradiag.dll
2017-03-01 16:06:12 ----A---- C:\Windows\SYSWOW64\fontext.dll
2017-03-01 16:06:12 ----A---- C:\Windows\SYSWOW64\CloudBackupSettings.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\mspaint.exe
2017-03-01 16:06:12 ----A---- C:\Windows\system32\mdmregistration.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\LaunchWinApp.exe
2017-03-01 16:06:12 ----A---- C:\Windows\system32\IdCtrls.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\EDPCleanup.exe
2017-03-01 16:06:12 ----A---- C:\Windows\system32\easwrt.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\eapphost.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\EAMProgressHandler.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\dxtrans.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\dsreg.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\DeviceCenter.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\deviceaccess.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\credprovhost.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\bootux.dll
2017-03-01 16:06:12 ----A---- C:\Windows\system32\AuthBroker.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\Windows.Networking.HostName.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\stobject.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\mspaint.exe
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\LaunchWinApp.exe
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\Chakrathunk.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\findnetprinters.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\ConfigureExpandedStorage.dll
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\C_IS2022.DLL
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\c_GSM7.DLL
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\C_G18030.DLL
2017-03-01 16:06:11 ----A---- C:\Windows\SYSWOW64\AuthExt.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\Windows.System.UserDeviceAssociation.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\Windows.Devices.Printers.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\tzautoupdate.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\StructuredQuery.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\ReportingCSP.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\PhoneServiceRes.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\NgcCtnrGidsHandler.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\MDEServer.exe
2017-03-01 16:06:11 ----A---- C:\Windows\system32\jsproxy.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\jscript9diag.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\imapi2.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\Chakrathunk.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\Chakradiag.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\Family.Client.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\Family.Authentication.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\eappprxy.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\eappgnui.dll
2017-03-01 16:06:11 ----A---- C:\Windows\system32\appinfo.dll
2017-03-01 16:06:08 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-01 16:06:08 ----A---- C:\Windows\SYSWOW64\sppc.dll
2017-03-01 16:06:08 ----A---- C:\Windows\SYSWOW64\slc.dll
2017-03-01 16:06:08 ----A---- C:\Windows\system32\Windows.Media.Speech.UXRes.dll
2017-03-01 16:06:08 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-03-01 16:06:08 ----A---- C:\Windows\system32\StorageUsage.dll
2017-03-01 16:06:08 ----A---- C:\Windows\system32\ResetEngine.exe
2017-03-01 16:06:06 ----A---- C:\Windows\system32\windows.storage.dll
2017-03-01 16:06:05 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2017-03-01 16:06:04 ----A---- C:\Windows\system32\ieframe.dll
2017-03-01 16:06:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-03-01 16:06:02 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2017-03-01 16:06:02 ----A---- C:\Windows\SYSWOW64\LicenseManagerApi.dll
2017-03-01 16:06:02 ----A---- C:\Windows\system32\ClipUp.exe
2017-03-01 16:06:02 ----A---- C:\Windows\system32\cdp.dll
2017-03-01 16:06:01 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2017-03-01 16:06:01 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2017-03-01 16:06:01 ----A---- C:\Windows\system32\LocationFramework.dll
2017-03-01 16:06:01 ----A---- C:\Windows\system32\LicenseManager.dll
2017-03-01 16:06:01 ----A---- C:\Windows\system32\DolbyDecMFT.dll
2017-03-01 16:05:59 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-03-01 16:05:59 ----A---- C:\Windows\system32\wpncore.dll
2017-03-01 16:05:59 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-03-01 16:05:59 ----A---- C:\Windows\system32\actxprxy.dll
2017-03-01 16:05:58 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2017-03-01 16:05:58 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2017-03-01 16:05:58 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2017-03-01 16:05:58 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2017-03-01 16:05:58 ----A---- C:\Windows\system32\Windows.Globalization.dll
2017-03-01 16:05:58 ----A---- C:\Windows\system32\win32kfull.sys
2017-03-01 16:05:58 ----A---- C:\Windows\system32\d3d9.dll
2017-03-01 16:05:57 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2017-03-01 16:05:57 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2017-03-01 16:05:57 ----A---- C:\Windows\system32\wifinetworkmanager.dll
2017-03-01 16:05:57 ----A---- C:\Windows\system32\msdtctm.dll
2017-03-01 16:05:57 ----A---- C:\Windows\system32\modernexecserver.dll
2017-03-01 16:05:56 ----A---- C:\Windows\system32\smartscreen.exe
2017-03-01 16:05:56 ----A---- C:\Windows\system32\msctf.dll
2017-03-01 16:05:55 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2017-03-01 16:05:55 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2017-03-01 16:05:55 ----A---- C:\Windows\system32\XblAuthManager.dll
2017-03-01 16:05:55 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2017-03-01 16:05:55 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2017-03-01 16:05:55 ----A---- C:\Windows\system32\mf.dll
2017-03-01 16:05:55 ----A---- C:\Windows\system32\dosvc.dll
2017-03-01 16:05:55 ----A---- C:\Windows\system32\comsvcs.dll
2017-03-01 16:05:54 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2017-03-01 16:05:54 ----A---- C:\Windows\system32\WWAHost.exe
2017-03-01 16:05:54 ----A---- C:\Windows\system32\WpcRefreshTask.dll
2017-03-01 16:05:54 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2017-03-01 16:05:54 ----A---- C:\Windows\system32\ShareHost.dll
2017-03-01 16:05:54 ----A---- C:\Windows\system32\GdiPlus.dll
2017-03-01 16:05:53 ----A---- C:\Windows\SYSWOW64\RemoteNaturalLanguage.dll
2017-03-01 16:05:53 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-03-01 16:05:53 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-03-01 16:05:53 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2017-03-01 16:05:53 ----A---- C:\Windows\SYSWOW64\bcastdvr.exe
2017-03-01 16:05:53 ----A---- C:\Windows\system32\Windows.Media.Playback.MediaPlayer.dll
2017-03-01 16:05:53 ----A---- C:\Windows\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2017-03-01 16:05:53 ----A---- C:\Windows\system32\Windows.Media.BackgroundMediaPlayback.dll
2017-03-01 16:05:53 ----A---- C:\Windows\system32\ngcsvc.dll
2017-03-01 16:05:53 ----A---- C:\Windows\system32\inetcomm.dll
2017-03-01 16:05:53 ----A---- C:\Windows\system32\gdi32full.dll
2017-03-01 16:05:53 ----A---- C:\Windows\system32\comdlg32.dll
2017-03-01 16:05:52 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2017-03-01 16:05:52 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2017-03-01 16:05:52 ----A---- C:\Windows\SYSWOW64\MiracastReceiver.dll
2017-03-01 16:05:52 ----A---- C:\Windows\system32\wmpmde.dll
2017-03-01 16:05:52 ----A---- C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2017-03-01 16:05:52 ----A---- C:\Windows\system32\ole32.dll
2017-03-01 16:05:52 ----A---- C:\Windows\system32\msfeeds.dll
2017-03-01 16:05:52 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2017-03-01 16:05:52 ----A---- C:\Windows\system32\drivers\clfs.sys
2017-03-01 16:05:52 ----A---- C:\Windows\system32\cdpsvc.dll
2017-03-01 16:05:52 ----A---- C:\Windows\system32\AUDIOKSE.dll
2017-03-01 16:05:51 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2017-03-01 16:05:51 ----A---- C:\Windows\SYSWOW64\msdtcprx.dll
2017-03-01 16:05:51 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2017-03-01 16:05:51 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2017-03-01 16:05:51 ----A---- C:\Windows\system32\ngccredprov.dll
2017-03-01 16:05:51 ----A---- C:\Windows\system32\lsm.dll
2017-03-01 16:05:51 ----A---- C:\Windows\system32\fontdrvhost.exe
2017-03-01 16:05:51 ----A---- C:\Windows\system32\daxexec.dll
2017-03-01 16:05:50 ----A---- C:\Windows\SYSWOW64\mfmkvsrcsnk.dll
2017-03-01 16:05:50 ----A---- C:\Windows\system32\tdh.dll
2017-03-01 16:05:50 ----A---- C:\Windows\system32\audiosrv.dll
2017-03-01 16:05:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-03-01 16:05:49 ----A---- C:\Windows\SYSWOW64\LogonController.dll
2017-03-01 16:05:49 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2017-03-01 16:05:49 ----A---- C:\Windows\system32\wpnapps.dll
2017-03-01 16:05:49 ----A---- C:\Windows\system32\TokenBroker.dll
2017-03-01 16:05:49 ----A---- C:\Windows\system32\SpaceControl.dll
2017-03-01 16:05:49 ----A---- C:\Windows\system32\SessEnv.dll
2017-03-01 16:05:49 ----A---- C:\Windows\system32\cdpusersvc.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\user32.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\tdh.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\ngccredprov.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\NetworkCollectionAgent.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\mfksproxy.dll
2017-03-01 16:05:48 ----A---- C:\Windows\SYSWOW64\authui.dll
2017-03-01 16:05:48 ----A---- C:\Windows\system32\Windows.Internal.Bluetooth.dll
2017-03-01 16:05:48 ----A---- C:\Windows\system32\twinapi.dll
2017-03-01 16:05:48 ----A---- C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-01 16:05:48 ----A---- C:\Windows\system32\NgcCtnr.dll
2017-03-01 16:05:48 ----A---- C:\Windows\system32\NetworkCollectionAgent.dll
2017-03-01 16:05:48 ----A---- C:\Windows\system32\authui.dll
2017-03-01 16:05:47 ----A---- C:\Windows\SYSWOW64\WpcWebFilter.dll
2017-03-01 16:05:47 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-03-01 16:05:47 ----A---- C:\Windows\SYSWOW64\Windows.Media.Editing.dll
2017-03-01 16:05:47 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2017-03-01 16:05:47 ----A---- C:\Windows\SYSWOW64\mfaudiocnv.dll
2017-03-01 16:05:47 ----A---- C:\Windows\SYSWOW64\GamePanel.exe
2017-03-01 16:05:47 ----A---- C:\Windows\system32\WpcWebFilter.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\Windows.Devices.WiFi.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\wc_storage.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\wbiosrvc.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\user32.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\SRHInproc.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\SettingSyncHost.exe
2017-03-01 16:05:47 ----A---- C:\Windows\system32\SettingSyncCore.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\msdtcprx.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\AudioSes.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\atmfd.dll
2017-03-01 16:05:47 ----A---- C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2017-03-01 16:05:46 ----A---- C:\Windows\SYSWOW64\Windows.UI.Input.Inking.dll
2017-03-01 16:05:46 ----A---- C:\Windows\SYSWOW64\TempSignedLicenseExchangeTask.dll
2017-03-01 16:05:46 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2017-03-01 16:05:46 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2017-03-01 16:05:46 ----A---- C:\Windows\SYSWOW64\cryptngc.dll
2017-03-01 16:05:46 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-03-01 16:05:46 ----A---- C:\Windows\system32\Windows.UI.Input.Inking.dll
2017-03-01 16:05:46 ----A---- C:\Windows\system32\WinBioDataModel.dll
2017-03-01 16:05:46 ----A---- C:\Windows\system32\twinui.pcshell.dll
2017-03-01 16:05:46 ----A---- C:\Windows\system32\StoreAgent.dll
2017-03-01 16:05:46 ----A---- C:\Windows\system32\mbsmsapi.dll
2017-03-01 16:05:46 ----A---- C:\Windows\system32\Geolocation.dll
2017-03-01 16:05:46 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2017-03-01 16:05:46 ----A---- C:\Windows\system32\ClipboardServer.dll
2017-03-01 16:05:46 ----A---- C:\Windows\system32\aclui.dll
2017-03-01 16:05:45 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-03-01 16:05:45 ----A---- C:\Windows\SYSWOW64\TokenBroker.dll
2017-03-01 16:05:45 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2017-03-01 16:05:45 ----A---- C:\Windows\SYSWOW64\devenum.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\WpcTok.exe
2017-03-01 16:05:45 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-03-01 16:05:45 ----A---- C:\Windows\system32\skci.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\RTWorkQ.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\remoteaudioendpoint.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\RDXTaskFactory.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\pdh.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\NfcRadioMedia.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\MusNotification.exe
2017-03-01 16:05:45 ----A---- C:\Windows\system32\mprddm.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\MDMAppInstaller.exe
2017-03-01 16:05:45 ----A---- C:\Windows\system32\LsaIso.exe
2017-03-01 16:05:45 ----A---- C:\Windows\system32\InstallAgentUserBroker.exe
2017-03-01 16:05:45 ----A---- C:\Windows\system32\input.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\GlobCollationHost.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\dwmapi.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\drivers\wcifs.sys
2017-03-01 16:05:45 ----A---- C:\Windows\system32\drivers\iorate.sys
2017-03-01 16:05:45 ----A---- C:\Windows\system32\domgmt.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\DMRServer.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\das.dll
2017-03-01 16:05:45 ----A---- C:\Windows\system32\cloudAP.dll
2017-03-01 16:05:44 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2017-03-01 16:05:44 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2017-03-01 16:05:44 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2017-03-01 16:05:44 ----A---- C:\Windows\SYSWOW64\MCRecvSrc.dll
2017-03-01 16:05:44 ----A---- C:\Windows\SYSWOW64\evr.dll
2017-03-01 16:05:44 ----A---- C:\Windows\SYSWOW64\dtdump.exe
2017-03-01 16:05:44 ----A---- C:\Windows\SYSWOW64\CloudStorageWizard.exe
2017-03-01 16:05:44 ----A---- C:\Windows\SYSWOW64\BackgroundMediaPolicy.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\wpninprc.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\winsrv.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\Windows.UI.CredDialogController.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\Windows.UI.BioFeedback.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\Windows.Devices.Picker.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\win32k.sys
2017-03-01 16:05:44 ----A---- C:\Windows\system32\WebcamUi.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\TpmTasks.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\SearchFolder.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\ProvSysprep.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\OneDriveSettingSyncProvider.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\lpremove.exe
2017-03-01 16:05:44 ----A---- C:\Windows\system32\LicenseManagerSvc.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\InstallAgent.exe
2017-03-01 16:05:44 ----A---- C:\Windows\system32\BackgroundMediaPolicy.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\AudioEng.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\asycfilt.dll
2017-03-01 16:05:44 ----A---- C:\Windows\system32\AppContracts.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\Windows.Media.Audio.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SmartCards.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\mfps.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\encapi.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\efsext.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\dsreg.dll
2017-03-01 16:05:43 ----A---- C:\Windows\SYSWOW64\BcastDVRHelper.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\Windows.Media.Import.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\Windows.Gaming.Input.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\Windows.Devices.Radios.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\Windows.Devices.Midi.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\Windows.Devices.LowLevel.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\win32u.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\wifitask.exe
2017-03-01 16:05:43 ----A---- C:\Windows\system32\SRH.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\mfpmp.exe
2017-03-01 16:05:43 ----A---- C:\Windows\system32\iedkcs32.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\ie4uinit.exe
2017-03-01 16:05:43 ----A---- C:\Windows\system32\ErrorDetailsUpdate.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\ErrorDetails.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\efswrt.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\drivers\winhvr.sys
2017-03-01 16:05:43 ----A---- C:\Windows\system32\cryptngc.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\CloudExperienceHostUser.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\CloudExperienceHostCommon.dll
2017-03-01 16:05:43 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2017-03-01 16:05:42 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2017-03-01 16:05:42 ----A---- C:\Windows\SYSWOW64\xolehlp.dll
2017-03-01 16:05:42 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SerialCommunication.dll
2017-03-01 16:05:42 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-03-01 16:05:42 ----A---- C:\Windows\SYSWOW64\UserDeviceRegistration.Ngc.dll
2017-03-01 16:05:42 ----A---- C:\Windows\SYSWOW64\UserDeviceRegistration.dll
2017-03-01 16:05:42 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2017-03-01 16:05:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-03-01 16:05:42 ----A---- C:\Windows\SYSWOW64\AppCapture.dll
2017-03-01 16:05:42 ----A---- C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2017-03-01 16:05:42 ----A---- C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-01 16:05:42 ----A---- C:\Windows\system32\Windows.Media.Devices.dll
2017-03-01 16:05:42 ----A---- C:\Windows\system32\Windows.Devices.Scanners.dll
2017-03-01 16:05:42 ----A---- C:\Windows\system32\Windows.ApplicationModel.dll
2017-03-01 16:05:42 ----A---- C:\Windows\system32\SyncSettings.dll
2017-03-01 16:05:42 ----A---- C:\Windows\system32\PrintWSDAHost.dll
2017-03-01 16:05:42 ----A---- C:\Windows\system32\msinfo32.exe
2017-03-01 16:05:42 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2017-03-01 16:05:42 ----A---- C:\Windows\system32\CloudBackupSettings.dll
2017-03-01 16:05:41 ----A---- C:\Windows\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2017-03-01 16:05:41 ----A---- C:\Windows\SYSWOW64\sppcext.dll
2017-03-01 16:05:41 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-03-01 16:05:41 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-03-01 16:05:41 ----A---- C:\Windows\SYSWOW64\esentutl.exe
2017-03-01 16:05:41 ----A---- C:\Windows\SYSWOW64\credprovslegacy.dll
2017-03-01 16:05:41 ----A---- C:\Windows\SYSWOW64\AuthBroker.dll
2017-03-01 16:05:41 ----A---- C:\Windows\system32\wificonnapi.dll
2017-03-01 16:05:41 ----A---- C:\Windows\system32\RjvMDMConfig.dll
2017-03-01 16:05:41 ----A---- C:\Windows\system32\PlayToReceiver.dll
2017-03-01 16:05:41 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2017-03-01 16:05:41 ----A---- C:\Windows\system32\iesetup.dll
2017-03-01 16:05:41 ----A---- C:\Windows\system32\iernonce.dll
2017-03-01 16:05:41 ----A---- C:\Windows\system32\fhsettingsprovider.dll
2017-03-01 16:05:41 ----A---- C:\Windows\system32\fhcfg.dll
2017-03-01 16:05:41 ----A---- C:\Windows\system32\ffbroker.dll
2017-03-01 16:05:40 ----A---- C:\Windows\SYSWOW64\slcext.dll
2017-03-01 16:05:40 ----A---- C:\Windows\SYSWOW64\SettingSyncPolicy.dll
2017-03-01 16:05:40 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2017-03-01 16:05:40 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2017-03-01 16:05:40 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-03-01 16:05:40 ----A---- C:\Windows\system32\WinBioDataModelOOBE.exe
2017-03-01 16:05:40 ----A---- C:\Windows\system32\deviceassociation.dll
2017-03-01 16:05:40 ----A---- C:\Windows\system32\dasHost.exe
2017-03-01 16:05:40 ----A---- C:\Windows\system32\container.dll
2017-03-01 16:05:40 ----A---- C:\Windows\system32\atmlib.dll
2017-03-01 16:05:39 ----A---- C:\Windows\system32\MSVPXENC.dll
2017-03-01 16:05:38 ----A---- C:\Windows\system32\BingMaps.dll
2017-03-01 16:05:37 ----A---- C:\Windows\system32\mos.dll
2017-03-01 16:05:36 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2017-03-01 16:05:34 ----A---- C:\Windows\SYSWOW64\cdp.dll
2017-03-01 16:05:34 ----A---- C:\Windows\system32\mssrch.dll
2017-03-01 16:05:33 ----A---- C:\Windows\SYSWOW64\mispace.dll
2017-03-01 16:05:33 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-03-01 16:05:32 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-03-01 16:05:32 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2017-03-01 16:05:32 ----A---- C:\Windows\system32\MapRouter.dll
2017-03-01 16:05:31 ----A---- C:\Windows\system32\MapGeocoder.dll
2017-03-01 16:05:30 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2017-03-01 16:05:30 ----A---- C:\Windows\system32\tquery.dll
2017-03-01 16:05:30 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-03-01 16:05:30 ----A---- C:\Windows\system32\drivers\http.sys
2017-03-01 16:05:30 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2017-03-01 16:05:29 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2017-03-01 16:05:29 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2017-03-01 16:05:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-03-01 16:05:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-03-01 16:05:28 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-03-01 16:05:27 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2017-03-01 16:05:27 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2017-03-01 16:05:27 ----A---- C:\Windows\system32\MSAJApi.dll
2017-03-01 16:05:26 ----A---- C:\Windows\system32\MapsStore.dll
2017-03-01 16:05:25 ----A---- C:\Windows\SYSWOW64\win32kfull.sys
2017-03-01 16:05:25 ----A---- C:\Windows\system32\winload.exe
2017-03-01 16:05:25 ----A---- C:\Windows\system32\RemoteNaturalLanguage.dll
2017-03-01 16:05:25 ----A---- C:\Windows\system32\oleaut32.dll
2017-03-01 16:05:24 ----A---- C:\Windows\SYSWOW64\ShareHost.dll
2017-03-01 16:05:24 ----A---- C:\Windows\SYSWOW64\DeviceFlows.DataModel.dll
2017-03-01 16:05:24 ----A---- C:\Windows\SYSWOW64\CredProvDataModel.dll
2017-03-01 16:05:24 ----A---- C:\Windows\system32\winresume.exe
2017-03-01 16:05:24 ----A---- C:\Windows\system32\JpMapControl.dll
2017-03-01 16:05:24 ----A---- C:\Windows\system32\energy.dll
2017-03-01 16:05:24 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-03-01 16:05:24 ----A---- C:\Windows\system32\drivers\spaceport.sys
2017-03-01 16:05:24 ----A---- C:\Windows\system32\drivers\MegaSas2i.sys
2017-03-01 16:05:24 ----A---- C:\Windows\system32\ContactApis.dll
2017-03-01 16:05:23 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-03-01 16:05:23 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2017-03-01 16:05:23 ----A---- C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2017-03-01 16:05:23 ----A---- C:\Windows\system32\SearchIndexer.exe
2017-03-01 16:05:23 ----A---- C:\Windows\system32\NMAA.dll
2017-03-01 16:05:22 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2017-03-01 16:05:22 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2017-03-01 16:05:22 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2017-03-01 16:05:22 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2017-03-01 16:05:22 ----A---- C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2017-03-01 16:05:22 ----A---- C:\Windows\system32\pnidui.dll
2017-03-01 16:05:22 ----A---- C:\Windows\system32\PlayToManager.dll
2017-03-01 16:05:22 ----A---- C:\Windows\system32\MFPlay.dll
2017-03-01 16:05:22 ----A---- C:\Windows\system32\MapControlCore.dll
2017-03-01 16:05:22 ----A---- C:\Windows\system32\LogonController.dll
2017-03-01 16:05:21 ----A---- C:\Windows\SYSWOW64\daxexec.dll
2017-03-01 16:05:21 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2017-03-01 16:05:21 ----A---- C:\Windows\system32\vmrdvcore.dll
2017-03-01 16:05:21 ----A---- C:\Windows\system32\usbmon.dll
2017-03-01 16:05:21 ----A---- C:\Windows\system32\NotificationController.dll
2017-03-01 16:05:21 ----A---- C:\Windows\system32\MapConfiguration.dll
2017-03-01 16:05:21 ----A---- C:\Windows\system32\InputService.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\uReFS.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\OneDriveSettingSyncProvider.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\FSClient.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\D3D12.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2017-03-01 16:05:20 ----A---- C:\Windows\SYSWOW64\AppContracts.dll
2017-03-01 16:05:20 ----A---- C:\Windows\system32\wscsvc.dll
2017-03-01 16:05:20 ----A---- C:\Windows\system32\UIAnimation.dll
2017-03-01 16:05:20 ----A---- C:\Windows\system32\provops.dll
2017-03-01 16:05:20 ----A---- C:\Windows\system32\moshostcore.dll
2017-03-01 16:05:20 ----A---- C:\Windows\system32\drivers\stornvme.sys
2017-03-01 16:05:20 ----A---- C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-03-01 16:05:19 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.dll
2017-03-01 16:05:19 ----A---- C:\Windows\SYSWOW64\Windows.Devices.WiFi.dll
2017-03-01 16:05:19 ----A---- C:\Windows\SYSWOW64\TpmCoreProvisioning.dll
2017-03-01 16:05:19 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-03-01 16:05:19 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2017-03-01 16:05:19 ----A---- C:\Windows\SYSWOW64\NPSM.dll
2017-03-01 16:05:19 ----A---- C:\Windows\SYSWOW64\mfsensorgroup.dll
2017-03-01 16:05:19 ----A---- C:\Windows\SYSWOW64\ClipboardServer.dll
2017-03-01 16:05:19 ----A---- C:\Windows\SYSWOW64\ActivationManager.dll
2017-03-01 16:05:19 ----A---- C:\Windows\system32\Windows.UI.dll
2017-03-01 16:05:19 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2017-03-01 16:05:19 ----A---- C:\Windows\system32\Windows.AccountsControl.dll
2017-03-01 16:05:19 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2017-03-01 16:05:19 ----A---- C:\Windows\system32\MapsBtSvc.dll
2017-03-01 16:05:19 ----A---- C:\Windows\system32\fvewiz.dll
2017-03-01 16:05:19 ----A---- C:\Windows\system32\drivers\storahci.sys
2017-03-01 16:05:19 ----A---- C:\Windows\system32\drivers\pci.sys
2017-03-01 16:05:19 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-03-01 16:05:19 ----A---- C:\Windows\system32\drivers\ahcache.sys
2017-03-01 16:05:19 ----A---- C:\Windows\system32\ddraw.dll
2017-03-01 16:05:18 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2017-03-01 16:05:18 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Usb.dll
2017-03-01 16:05:18 ----A---- C:\Windows\SYSWOW64\Windows.AccountsControl.dll
2017-03-01 16:05:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-03-01 16:05:18 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2017-03-01 16:05:18 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2017-03-01 16:05:18 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2017-03-01 16:05:18 ----A---- C:\Windows\SYSWOW64\aadtb.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\TpmCoreProvisioning.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\SensorsApi.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\Phoneutil.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\NetworkUXBroker.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\MosStorage.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\moshost.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\icsvcext.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\ChatApis.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\hal.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\EmailApis.dll
2017-03-01 16:05:18 ----A---- C:\Windows\system32\drivers\srv.sys
2017-03-01 16:05:18 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-03-01 16:05:18 ----A---- C:\Windows\system32\AppointmentApis.dll
2017-03-01 16:05:17 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2017-03-01 16:05:17 ----A---- C:\Windows\SYSWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-03-01 16:05:17 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-03-01 16:05:17 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2017-03-01 16:05:17 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2017-03-01 16:05:17 ----A---- C:\Windows\SYSWOW64\iscsiwmi.dll
2017-03-01 16:05:17 ----A---- C:\Windows\SYSWOW64\efswrt.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\wscapi.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\Windows.Devices.AllJoyn.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\UserDataTimeUtil.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\TextInputFramework.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\securekernel.exe
2017-03-01 16:05:17 ----A---- C:\Windows\system32\SearchFilterHost.exe
2017-03-01 16:05:17 ----A---- C:\Windows\system32\provengine.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\evr.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\drivers\vpci.sys
2017-03-01 16:05:17 ----A---- C:\Windows\system32\drivers\tm.sys
2017-03-01 16:05:17 ----A---- C:\Windows\system32\drivers\cmimcext.sys
2017-03-01 16:05:17 ----A---- C:\Windows\system32\ConsoleLogon.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\CloudExperienceHostBroker.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\CloudExperienceHost.dll
2017-03-01 16:05:17 ----A---- C:\Windows\system32\bdeunlock.exe
2017-03-01 16:05:17 ----A---- C:\Windows\system32\AudioSrvPolicyManager.dll
2017-03-01 16:05:16 ----A---- C:\Windows\SYSWOW64\wininetlui.dll
2017-03-01 16:05:16 ----A---- C:\Windows\SYSWOW64\Windows.Media.Import.dll
2017-03-01 16:05:16 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2017-03-01 16:05:16 ----A---- C:\Windows\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-01 16:05:16 ----A---- C:\Windows\SYSWOW64\win32u.dll
2017-03-01 16:05:16 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-03-01 16:05:16 ----A---- C:\Windows\system32\wininetlui.dll
2017-03-01 16:05:16 ----A---- C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2017-03-01 16:05:16 ----A---- C:\Windows\system32\RelPost.exe
2017-03-01 16:05:16 ----A---- C:\Windows\system32\mssprxy.dll
2017-03-01 16:05:16 ----A---- C:\Windows\system32\InputLocaleManager.dll
2017-03-01 16:05:16 ----A---- C:\Windows\system32\drivers\bthpan.sys
2017-03-01 16:05:16 ----A---- C:\Windows\system32\dialclient.dll
2017-03-01 16:05:16 ----A---- C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-03-01 16:05:15 ----A---- C:\Windows\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-03-01 16:05:15 ----A---- C:\Windows\SYSWOW64\win32k.sys
2017-03-01 16:05:15 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2017-03-01 16:05:15 ----A---- C:\Windows\SYSWOW64\Geolocation.dll
2017-03-01 16:05:15 ----A---- C:\Windows\SYSWOW64\ErrorDetailsUpdate.dll
2017-03-01 16:05:15 ----A---- C:\Windows\SYSWOW64\ErrorDetails.dll
2017-03-01 16:05:15 ----A---- C:\Windows\SYSWOW64\dlnashext.dll
2017-03-01 16:05:15 ----A---- C:\Windows\SYSWOW64\credprovhost.dll
2017-03-01 16:05:15 ----A---- C:\Windows\system32\wscinterop.dll
2017-03-01 16:05:15 ----A---- C:\Windows\system32\WordBreakers.dll
2017-03-01 16:05:15 ----A---- C:\Windows\system32\Windows.UI.Core.TextInput.dll
2017-03-01 16:05:15 ----A---- C:\Windows\system32\Windows.Perception.Stub.dll
2017-03-01 16:05:15 ----A---- C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-03-01 16:05:15 ----A---- C:\Windows\system32\PlayToDevice.dll
2017-03-01 16:05:15 ----A---- C:\Windows\system32\msdtcuiu.dll
2017-03-01 16:05:15 ----A---- C:\Windows\system32\fvecpl.dll
2017-03-01 16:05:15 ----A---- C:\Windows\system32\EditBufferTestHook.dll
2017-03-01 16:05:14 ----A---- C:\Windows\SYSWOW64\wscinterop.dll
2017-03-01 16:05:14 ----A---- C:\Windows\SYSWOW64\Windows.Perception.Stub.dll
2017-03-01 16:05:14 ----A---- C:\Windows\SYSWOW64\Windows.Gaming.Input.dll
2017-03-01 16:05:14 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Radios.dll
2017-03-01 16:05:14 ----A---- C:\Windows\SYSWOW64\NetCfgNotifyObjectHost.exe
2017-03-01 16:05:14 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2017-03-01 16:05:14 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2017-03-01 16:05:14 ----A---- C:\Windows\system32\XamlTileRender.dll
2017-03-01 16:05:14 ----A---- C:\Windows\system32\shutdownux.dll
2017-03-01 16:05:14 ----A---- C:\Windows\system32\shdocvw.dll
2017-03-01 16:05:14 ----A---- C:\Windows\system32\rshx32.dll
2017-03-01 16:05:14 ----A---- C:\Windows\system32\puiobj.dll
2017-03-01 16:05:14 ----A---- C:\Windows\system32\ProvPluginEng.dll
2017-03-01 16:05:14 ----A---- C:\Windows\system32\KnobsCore.dll
2017-03-01 16:05:14 ----A---- C:\Windows\system32\drivers\modem.sys
2017-03-01 16:05:14 ----A---- C:\Windows\system32\dlnashext.dll
2017-03-01 16:05:14 ----A---- C:\Windows\system32\CbtBackgroundManagerPolicy.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\storagewmi_passthru.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\smphost.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\resutils.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\eappprxy.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\delegatorprovider.dll
2017-03-01 16:05:13 ----A---- C:\Windows\SYSWOW64\DbgModel.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\VCardParser.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\UserDataTypeHelperUtil.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\UserDataPlatformHelperUtil.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\UserDataLanguageUtil.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\UserDataAccessRes.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\provtool.exe
2017-03-01 16:05:13 ----A---- C:\Windows\system32\provisioningcsp.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\provhandlers.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\provdatastore.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\POSyncServices.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\PimIndexMaintenance.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\PhoneutilRes.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\NmaDirect.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\NFCProvisioningPlugin.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\nativemap.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\MosResource.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\MosHostClient.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\Microsoft-Windows-MosTrace.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\Microsoft-Windows-MosHost.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\Microsoft-Windows-MapControls.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\mapsupdatetask.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\mapstoasttask.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\MapsCSP.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\MapsBtSvcProxy.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\MapControlStringsRes.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\KnobsCsp.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\ExtrasXmlParser.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\ExSMime.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-03-01 16:05:13 ----A---- C:\Windows\system32\credprovslegacy.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\ContactActivation.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\BingOnlineServices.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\BarcodeProvisioningPlugin.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\AppXApplicabilityBlob.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\AppointmentActivation.dll
2017-03-01 16:05:13 ----A---- C:\Windows\system32\AddressParser.dll
2017-03-01 16:05:12 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.UXRes.dll
2017-03-01 16:00:12 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2017-03-01 16:00:12 ----A---- C:\Windows\system32\poqexec.exe
2017-03-01 15:53:19 ----AD---- C:\Program Files\ATI Technologies
2017-03-01 15:52:16 ----AD---- C:\Program Files (x86)\ATI Technologies
2017-03-01 15:50:40 ----D---- C:\ProgramData\Package Cache
2017-03-01 15:49:33 ----D---- C:\Program Files (x86)\HP
2017-03-01 15:49:27 ----A---- C:\Windows\system32\drivers\amdkmpfd.sys
2017-03-01 15:49:22 ----D---- C:\AMD
2017-03-01 15:49:14 ----D---- C:\Program Files\Common Files\ATI Technologies
2017-03-01 15:48:58 ----D---- C:\Program Files\AMD
2017-03-01 15:43:40 ----D---- C:\Program Files (x86)\Intel
2017-03-01 15:43:35 ----D---- C:\Intel
2017-03-01 15:43:24 ----D---- C:\Program Files\Intel
2017-03-01 15:42:24 ----N---- C:\Windows\system32\MpSigStub.exe
2017-03-01 15:42:16 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2017-03-01 15:42:07 ----D---- C:\Program Files\Synaptics
2017-03-01 15:39:24 ----D---- C:\Windows\SYSWOW64\sda
2017-03-01 13:11:36 ----D---- C:\ProgramData\Microsoft OneDrive
2017-03-01 13:09:50 ----D---- C:\Users\Lukas Fiala\AppData\Roaming\Adobe
2017-03-01 13:09:35 ----SD---- C:\Users\Lukas Fiala\AppData\Roaming\Microsoft
2017-03-01 13:07:17 ----D---- C:\Windows\SoftwareDistribution
2017-03-01 13:05:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-03-01 13:03:44 ----A---- C:\Windows\SYSWOW64\PrintConfig.dll
2017-03-01 13:01:27 ----SHD---- C:\ProgramData\Šablony
2017-03-01 13:01:27 ----SHD---- C:\ProgramData\Nabídka Start
2017-03-01 13:01:26 ----SHD---- C:\ProgramData\Plocha
2017-03-01 13:01:26 ----SHD---- C:\ProgramData\Dokumenty
2017-03-01 13:01:26 ----SHD---- C:\ProgramData\Data aplikací
2017-03-01 13:01:26 ----SHD---- C:\Documents and Settings
2017-03-01 13:01:20 ----SHD---- C:\Recovery
2017-03-01 13:00:47 ----ASH---- C:\hiberfil.sys
2017-03-01 12:57:00 ----D---- C:\ProgramData\USOShared
2017-03-01 12:56:35 ----HD---- C:\Program Files\Uninstall Information
2017-03-01 12:56:32 ----AS---- C:\Windows\bootstat.dat
2017-03-01 12:55:55 ----D---- C:\Windows\Prefetch
2017-03-01 12:55:34 ----D---- C:\Windows\system32\SleepStudy
2017-03-01 12:55:34 ----D---- C:\Windows\ServiceProfiles
2017-03-01 12:55:32 ----SD---- C:\Windows\system32\Microsoft
2017-03-01 12:55:23 ----A---- C:\Windows\system32\FNTCACHE.DAT
2017-03-01 12:55:18 ----ASH---- C:\swapfile.sys
2017-03-01 12:55:18 ----ASH---- C:\pagefile.sys
2017-03-01 12:52:52 ----SHD---- C:\System Volume Information
2017-03-01 12:52:08 ----D---- C:\Windows\Panther

====== List of files/folders modified in the last 1 month ======

2017-03-21 13:28:37 ----RD---- C:\Program Files
2017-03-21 13:22:50 ----D---- C:\Windows\Temp
2017-03-21 13:10:44 ----D---- C:\Windows\AppReadiness
2017-03-21 13:05:39 ----D---- C:\Windows\system32\catroot2
2017-03-21 13:02:54 ----D---- C:\Windows\WinSxS
2017-03-21 12:52:23 ----D---- C:\Windows\system32\config
2017-03-21 12:52:21 ----D---- C:\Windows\CbsTemp
2017-03-21 12:44:18 ----D---- C:\Windows\System32
2017-03-21 12:42:29 ----D---- C:\Windows\system32\sru
2017-03-21 01:43:38 ----D---- C:\Windows\LiveKernelReports
2017-03-21 01:42:12 ----HD---- C:\ProgramData
2017-03-21 01:40:10 ----D---- C:\Windows\system32\drivers
2017-03-21 01:39:00 ----D---- C:\Windows
2017-03-21 00:44:18 ----SHD---- C:\Windows\Installer
2017-03-21 00:44:09 ----D---- C:\Windows\INF
2017-03-21 00:44:08 ----D---- C:\Windows\system32\DriverStore
2017-03-21 00:27:45 ----HD---- C:\Windows\ELAMBKUP
2017-03-21 00:21:35 ----D---- C:\Windows\system32\Tasks
2017-03-21 00:21:29 ----RSD---- C:\Windows\Fonts
2017-03-21 00:21:17 ----RD---- C:\Program Files (x86)
2017-03-20 23:04:54 ----D---- C:\Program Files (x86)\Common Files
2017-03-20 23:00:21 ----D---- C:\Program Files\Common Files
2017-03-20 21:08:35 ----RD---- C:\Windows\Microsoft.NET
2017-03-18 21:46:01 ----RSD---- C:\Windows\assembly
2017-03-17 21:27:27 ----D---- C:\Windows\SysWOW64
2017-03-17 20:59:28 ----AD---- C:\Program Files\Common Files\microsoft shared
2017-03-17 20:54:42 ----D---- C:\Program Files (x86)\Microsoft.NET
2017-03-17 11:47:07 ----D---- C:\Windows\Tasks
2017-03-08 23:35:47 ----D---- C:\Windows\system32\LogFiles
2017-03-08 17:38:59 ----D---- C:\Windows\system32\drivers\etc
2017-03-05 20:37:43 ----D---- C:\Windows\rescache
2017-03-05 20:34:31 ----D---- C:\Windows\Logs
2017-03-04 10:18:23 ----D---- C:\Windows\system32\drivers\UMDF
2017-03-03 14:13:58 ----SD---- C:\ProgramData\Microsoft
2017-03-03 14:04:50 ----D---- C:\Windows\SYSWOW64\MUI
2017-03-03 14:04:50 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-03-03 14:04:50 ----D---- C:\Windows\system32\MUI
2017-03-03 14:04:50 ----D---- C:\Windows\system32\cs-CZ
2017-03-03 13:55:38 ----HD---- C:\Program Files\WindowsApps
2017-03-03 13:46:09 ----A---- C:\Windows\win.ini
2017-03-03 13:46:06 ----D---- C:\Program Files\Common Files\System
2017-03-03 13:41:50 ----D---- C:\Windows\appcompat
2017-03-02 00:48:22 ----D---- C:\Windows\system32\NDF
2017-03-01 17:52:39 ----D---- C:\Windows\system32\WDI
2017-03-01 17:51:41 ----SHD---- C:\$Recycle.Bin
2017-03-01 17:48:33 ----D---- C:\Windows\system32\CatRoot
2017-03-01 17:45:02 ----D---- C:\Windows\SYSWOW64\wbem
2017-03-01 17:45:02 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2017-03-01 17:45:02 ----D---- C:\Windows\SYSWOW64\setup
2017-03-01 17:45:01 ----D---- C:\Windows\SYSWOW64\oobe
2017-03-01 17:45:01 ----D---- C:\Windows\SYSWOW64\migration
2017-03-01 17:44:55 ----SD---- C:\Windows\SYSWOW64\F12
2017-03-01 17:44:55 ----D---- C:\Windows\SYSWOW64\en-US
2017-03-01 17:44:54 ----D---- C:\Windows\SYSWOW64\Dism
2017-03-01 17:43:34 ----D---- C:\Windows\system32\zh-TW
2017-03-01 17:43:34 ----D---- C:\Windows\system32\zh-HK
2017-03-01 17:43:34 ----D---- C:\Windows\system32\zh-CN
2017-03-01 17:43:32 ----D---- C:\Windows\system32\WinBioPlugIns
2017-03-01 17:43:32 ----D---- C:\Windows\system32\wbem
2017-03-01 17:43:31 ----D---- C:\Windows\system32\uk-UA
2017-03-01 17:43:31 ----D---- C:\Windows\system32\tr-TR
2017-03-01 17:43:30 ----D---- C:\Windows\system32\th-TH
2017-03-01 17:43:30 ----D---- C:\Windows\system32\Sysprep
2017-03-01 17:43:30 ----D---- C:\Windows\system32\sv-SE
2017-03-01 17:43:30 ----D---- C:\Windows\system32\sr-Latn-CS
2017-03-01 17:43:27 ----D---- C:\Windows\system32\sl-SI
2017-03-01 17:43:27 ----D---- C:\Windows\system32\sk-SK
2017-03-01 17:43:27 ----D---- C:\Windows\system32\setup
2017-03-01 17:43:27 ----D---- C:\Windows\system32\ru-RU
2017-03-01 17:43:27 ----D---- C:\Windows\system32\ro-RO
2017-03-01 17:43:27 ----D---- C:\Windows\system32\pt-PT
2017-03-01 17:43:26 ----D---- C:\Windows\system32\pt-BR
2017-03-01 17:43:26 ----D---- C:\Windows\system32\pl-PL
2017-03-01 17:43:26 ----D---- C:\Windows\system32\oobe
2017-03-01 17:43:25 ----D---- C:\Windows\system32\nl-NL
2017-03-01 17:43:25 ----D---- C:\Windows\system32\nb-NO
2017-03-01 17:43:25 ----D---- C:\Windows\system32\migwiz
2017-03-01 17:43:24 ----D---- C:\Windows\system32\migration
2017-03-01 17:43:23 ----D---- C:\Windows\system32\lv-LV
2017-03-01 17:43:23 ----D---- C:\Windows\system32\lt-LT
2017-03-01 17:43:23 ----D---- C:\Windows\system32\ko-KR
2017-03-01 17:43:23 ----D---- C:\Windows\system32\ja-jp
2017-03-01 17:43:23 ----D---- C:\Windows\system32\it-IT
2017-03-01 17:43:17 ----D---- C:\Windows\system32\hu-HU
2017-03-01 17:43:16 ----SD---- C:\Windows\system32\F12
2017-03-01 17:43:16 ----D---- C:\Windows\system32\hr-HR
2017-03-01 17:43:16 ----D---- C:\Windows\system32\he-IL
2017-03-01 17:43:16 ----D---- C:\Windows\system32\fr-FR
2017-03-01 17:43:16 ----D---- C:\Windows\system32\fr-CA
2017-03-01 17:43:16 ----D---- C:\Windows\system32\fi-FI
2017-03-01 17:43:15 ----SD---- C:\Windows\system32\dsc
2017-03-01 17:43:15 ----D---- C:\Windows\system32\et-EE
2017-03-01 17:43:15 ----D---- C:\Windows\system32\es-MX
2017-03-01 17:43:15 ----D---- C:\Windows\system32\es-ES
2017-03-01 17:43:15 ----D---- C:\Windows\system32\en-US
2017-03-01 17:43:15 ----D---- C:\Windows\system32\en-GB
2017-03-01 17:43:15 ----D---- C:\Windows\system32\el-GR
2017-03-01 17:43:15 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-03-01 17:43:13 ----D---- C:\Windows\system32\Dism
2017-03-01 17:43:12 ----SD---- C:\Windows\system32\DiagSvcs
2017-03-01 17:43:12 ----D---- C:\Windows\system32\de-DE
2017-03-01 17:43:12 ----D---- C:\Windows\system32\da-DK
2017-03-01 17:43:10 ----D---- C:\Windows\system32\Boot
2017-03-01 17:43:10 ----D---- C:\Windows\system32\bg-BG
2017-03-01 17:43:10 ----D---- C:\Windows\system32\ar-SA
2017-03-01 17:43:10 ----D---- C:\Windows\system32\appraiser
2017-03-01 17:41:51 ----D---- C:\Windows\ShellExperiences
2017-03-01 17:41:50 ----D---- C:\Windows\servicing
2017-03-01 17:41:48 ----RD---- C:\Windows\ImmersiveControlPanel
2017-03-01 17:41:48 ----D---- C:\Windows\Provisioning
2017-03-01 17:41:33 ----D---- C:\Windows\bcastdvr
2017-03-01 17:41:32 ----D---- C:\Windows\AppPatch
2017-03-01 17:41:30 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-03-01 17:41:29 ----D---- C:\Program Files (x86)\Windows Media Player
2017-03-01 17:41:29 ----D---- C:\Program Files (x86)\Windows Mail
2017-03-01 17:41:29 ----D---- C:\Program Files (x86)\Windows Defender
2017-03-01 17:41:29 ----D---- C:\Program Files (x86)\Internet Explorer
2017-03-01 17:41:27 ----D---- C:\Program Files\Windows Photo Viewer
2017-03-01 17:41:27 ----D---- C:\Program Files\Windows Media Player
2017-03-01 17:41:26 ----RD---- C:\Program Files\Windows Defender
2017-03-01 17:41:26 ----D---- C:\Program Files\Windows Mail
2017-03-01 17:41:26 ----D---- C:\Program Files\Internet Explorer
2017-03-01 16:20:05 ----D---- C:\Windows\debug
2017-03-01 15:49:55 ----D---- C:\Windows\system32\restore
2017-03-01 13:11:43 ----D---- C:\Windows\system32\CodeIntegrity
2017-03-01 13:09:37 ----D---- C:\Windows\system32\WinBioDatabase
2017-03-01 13:09:34 ----RD---- C:\Users
2017-03-01 13:03:47 ----D---- C:\Windows\system32\FxsTmp
2017-03-01 13:02:46 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2017-03-01 13:01:27 ----D---- C:\Program Files\Windows NT
2017-03-01 12:59:35 ----D---- C:\Windows\system32\Recovery
2017-03-01 12:57:14 ----RD---- C:\Windows\PrintDialog
2017-03-01 12:57:13 ----RD---- C:\Windows\MiracastView
2017-03-01 12:57:00 ----D---- C:\ProgramData\USOPrivate

File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 amdkmpfd;@oem11.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2015-12-16 82664]
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2017-03-20 189768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2017-03-20 334600]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2017-03-20 48528]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-03-20 75704]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-03-20 337592]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\Windows\system32\drivers\iorate.sys [2016-11-02 48992]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2017-03-20 309272]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-03-20 32088]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-03-20 100640]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-03-20 993608]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-03-20 548928]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-03-20 126600]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-03-20 162528]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\Windows\System32\drivers\registry.sys [2016-07-16 70144]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-12-16 21648880]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-12-16 674288]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2016-08-20 114176]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2016-09-15 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2016-10-05 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\drivers\BTHUSB.sys [2016-08-20 84992]
R3 iwdbus;@oem9.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 netr28x;@netr28x.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\System32\drivers\netr28x.sys [2016-07-16 2504192]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\System32\drivers\rfcomm.sys [2016-07-16 183808]
R3 RSP2STOR;@oem3.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2015-06-29 310528]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\Windows\System32\drivers\rt640x64.sys [2016-07-16 589824]
R3 rtbth;@oem2.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys [2015-06-03 1219200]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2016-04-28 52904]
R3 SynTP;@oem4.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2016-04-28 622784]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\Windows\System32\drivers\scmbus.sys [2016-07-16 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-03-20 38296]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\drivers\BTHport.sys [2016-11-11 967168]
S3 dg_ssudbus;@oem16.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\Windows\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\Windows\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;@oem8.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 irda;IrDA; C:\Windows\system32\drivers\irda.sys [2016-07-16 120320]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\Windows\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 ssudmdm;@oem17.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S4 RsFx0310;RsFx0310 Driver; C:\Windows\system32\DRIVERS\RsFx0310.sys [2015-04-20 249024]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-12-16 255472]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-03-20 262736]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CDPUserSvc_1756fe;CDPUserSvc_1756fe; C:\Windows\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ewserver;SOLIDWORKS Electrical Collaborative Server; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe [2016-04-05 179248]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2016-05-03 337888]
R2 MSSQL$TEW_SQLEXPRESS;SQL Server (TEW_SQLEXPRESS); C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2015-04-20 372416]
R2 OneSyncSvc_1756fe;Hostitel synchronizace_1756fe; C:\Windows\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 RemoteSolverDispatcher;Remote Solver for Flow Simulation 2016; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [2016-04-05 239536]
R2 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2014-02-21 270016]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2015-04-20 134336]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-04-28 253960]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-03-17 10883824]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-03-20 7147320]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-27 317400]
S3 CoordinatorServiceHost;DTSInterops; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [2016-04-06 80792]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2017-03-17 1484080]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2017-03-17 1074480]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MessagingService_1756fe;Služba zasílání zpráv_1756fe; C:\Windows\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PimIndexMaintenanceSvc_1756fe;Data kontaktů_1756fe; C:\Windows\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2017-03-17 79360]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
S4 SQLAgent$TEW_SQLEXPRESS;SQL Server Agent (TEW_SQLEXPRESS); C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2015-04-20 613056]

-----------------EOF-----------------

Zdravím, rád pomůžu ale nejdříve musíme pořešit ten nelegální produkt od Microsoftu, tak že ?

Takhle jsem to bohužel dostal od kamaráda

regen píše:Takhle jsem to bohužel dostal od kamaráda

OK tak že, nelegální Office odinstaluj a pak mi sem dej aktuální log z Rsit.