Jump to content

Recommended Posts

I recently ran a Malwarebytes scan and received the following result:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/1/2016
Scan Time: 8:45 PM
Logfile: log.txt
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2016.08.02.01
Rootkit Database: v2016.05.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: PK_2

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 276278
Time Elapsed: 2 min, 13 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 1
Trojan.Agent.Trace, C:\Windows\regedit.log, Quarantined, [a2a73610396187afc5a021a8c043d729], 

Physical Sectors: 0
(No malicious items detected)


(end)

Once I quarantined the file, I ran the scan again and received the following result:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/1/2016
Scan Time: 8:56 PM
Logfile: log2.txt
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2016.08.02.01
Rootkit Database: v2016.05.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: PK_2

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 276170
Time Elapsed: 2 min, 6 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

However, I also ran Loaris Trojan Remover, and I received this message:


Trojan Remover v.2.0.9
Report file date: 8/2/2016 8:56:20 PM
Last update:      8/2/2016 8:56:20 PM

Scanning for 688887 virus strains and unwanted programs.

Licensed:         UNREGISTERED
Windows version:  Windows 10 Home x64 (version 6.3)
Username:         PK_2
Computer name:    LAPTOP-L0JQP3LB

Starting the file scan:

Standard Scan started
Scanning process...
----- HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit ---- Hijack Suspicious
    Hijack.Explorer.Userinit


Scan completed

Scan result:         1 detected items
Scan completed in:   Scan completed in 3 minute(s) 2 sec.
Files were scanned:  12441
 

However, I have ran Loaris a number of times, and this Hijack.Explorer.Userinit doesn't always appear.

Lastly, here is the result of the Farbar Recovery Scan Tool:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-07-2016
Ran by PK_2 (administrator) on LAPTOP-L0JQP3LB (02-08-2016 21:24:57)
Running from C:\Users\PK_2\Downloads
Loaded Profiles: PK_2 &  (Available Profiles: PK_2)
Platform: Windows 10 Home Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\IntelSSTAPO\ParameterService\ParameterService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Acer\Acer Configuration Manager\AWC.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16481560 2016-03-22] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9071752 2016-07-31] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-07-28] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{060f91fa-9aa3-437e-9053-08d2000c607f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7f5bd073-c010-4d4f-ae91-9afbcc25ed10}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-795815909-478188834-3845176069-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer15.msn.com/?pc=ACTE
HKU\S-1-5-21-795815909-478188834-3845176069-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
HKU\S-1-5-21-795815909-478188834-3845176069-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer15.msn.com/?pc=ACTE
HKU\S-1-5-21-795815909-478188834-3845176069-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-795815909-478188834-3845176069-1001 -> DefaultScope {0B589039-665C-4EBC-BF38-8673C6FBF9BA} URL = 
SearchScopes: HKU\S-1-5-21-795815909-478188834-3845176069-1001 -> {0B589039-665C-4EBC-BF38-8673C6FBF9BA} URL = 
SearchScopes: HKU\S-1-5-21-795815909-478188834-3845176069-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0B589039-665C-4EBC-BF38-8673C6FBF9BA} URL = 
SearchScopes: HKU\S-1-5-21-795815909-478188834-3845176069-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {0B589039-665C-4EBC-BF38-8673C6FBF9BA} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-06-06] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-06-06] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-06] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-06-06] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-07-28]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-07-28]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome: 
=======
CHR Profile: C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-16]
CHR Extension: (Google Docs) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-16]
CHR Extension: (Google Drive) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-16]
CHR Extension: (YouTube) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-16]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2016-07-29]
CHR Extension: (Google Sheets) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-16]
CHR Extension: (Google Docs Offline) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-16]
CHR Extension: (AdBlock) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-28]
CHR Extension: (Chrome Web Store Payments) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-16]
CHR Extension: (Gmail) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-16]
CHR Extension: (Chrome Media Router) - C:\Users\PK_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-01]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [326392 2015-11-27] (Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197640 2016-07-28] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2912496 2016-03-06] (Microsoft Corporation)
S3 cplspcon; C:\Windows\system32\IntelCpHDCPSvc.exe [603256 2016-03-02] (Intel Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-02-17] (NVIDIA Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [354936 2016-03-02] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [976848 2016-01-14] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2016-02-05] (Intel Corporation) [File not signed]
R2 IntelSSTSvc; C:\Windows\system32\IntelSSTAPO\ParameterService\ParameterService.exe [25928 2015-12-02] (Intel Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-02-05] (Intel Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-02-11] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-02-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-02-17] (NVIDIA Corporation)
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [440224 2016-03-10] (Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [481696 2016-03-10] (Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-06-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-07-28] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-07-28] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-07-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-07-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-07-28] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [968536 2016-07-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513496 2016-07-28] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-07-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-08-02] (AVAST Software)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-08-02] ()
R3 ETDI2C; C:\Windows\system32\DRIVERS\ETDI2C.sys [185416 2015-09-06] (ELAN Microelectronic Corp.)
R3 iaLPSS2_I2C; C:\Windows\System32\drivers\iaLPSS2_I2C.sys [185128 2015-07-20] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21408 2016-03-10] (Acer Incorporated)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-02] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [185896 2016-02-04] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-02-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S3 Qcamain10x64; C:\Windows\System32\drivers\Qcamain10x64.sys [2394288 2015-11-27] (Qualcomm Atheros, Inc.)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14752 2016-03-10] (Acer Incorporated)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [935168 2015-11-18] (Realtek                                            )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [769752 2015-12-17] (Realsil Semiconductor Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S1 epp; \??\C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-02 21:24 - 2016-08-02 21:25 - 00017391 _____ C:\Users\PK_2\Downloads\FRST.txt
2016-08-02 21:24 - 2016-08-02 21:24 - 02394112 _____ (Farbar) C:\Users\PK_2\Downloads\FRST64.exe
2016-08-02 21:24 - 2016-08-02 21:24 - 00000000 ____D C:\FRST
2016-08-02 20:14 - 2016-08-02 20:14 - 00000913 _____ C:\Users\Public\Desktop\Loaris Trojan Remover.lnk
2016-08-02 20:14 - 2016-08-02 20:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loaris Trojan Remover
2016-08-02 20:14 - 2016-08-02 20:14 - 00000000 ____D C:\Program Files\Loaris Trojan Remover
2016-08-02 20:13 - 2016-08-02 20:14 - 57619940 _____ (Loaris, Inc. ) C:\Users\PK_2\Downloads\setup-ltr-2.0.9.exe
2016-08-02 20:02 - 2016-08-02 20:03 - 00000000 ___HD C:\$SysReset
2016-08-02 19:57 - 2016-08-02 19:57 - 00000000 ____D C:\Users\PK_2\AppData\Local\CrashDumps
2016-08-02 19:55 - 2016-08-02 19:55 - 00000000 ____D C:\ProgramData\Emsisoft
2016-08-02 19:49 - 2016-08-02 19:49 - 00000000 ____D C:\Users\PK_2\Downloads\cce_2.5.242177.201_x64
2016-08-02 19:45 - 2016-08-02 19:50 - 268116968 _____ (Emsisoft Ltd. ) C:\Users\PK_2\Downloads\EmsisoftAntiMalwareSetup.exe
2016-08-02 18:58 - 2016-08-02 19:38 - 00000000 ____D C:\Program Files (x86)\Panda Security
2016-08-02 18:58 - 2016-08-02 19:32 - 00000000 ____D C:\Users\PK_2\AppData\Roaming\Panda Security
2016-08-02 18:57 - 2016-08-02 19:32 - 00000000 ____D C:\ProgramData\Panda Security
2016-08-02 18:44 - 2016-08-02 18:54 - 00000000 ____D C:\AdwCleaner
2016-08-02 18:06 - 2016-08-02 18:06 - 00000000 ____D C:\Users\PK_2\AppData\Local\ESET
2016-08-02 18:04 - 2016-08-02 18:04 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-02 18:03 - 2016-08-02 18:04 - 00119700 _____ C:\TDSSKiller.3.1.0.9_02.08.2016_18.03.16_log.txt
2016-08-02 17:43 - 2016-08-02 17:43 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-08-02 17:43 - 2016-08-02 17:43 - 00000000 _____ C:\autoexec.bat
2016-08-02 17:29 - 2016-08-02 20:56 - 00003206 _____ C:\Windows\System32\Tasks\Trojan Remover
2016-08-02 17:29 - 2016-08-02 17:29 - 00000000 ____D C:\ProgramData\Loaris
2016-08-01 21:47 - 2016-08-01 21:47 - 00000000 ___HD C:\$Windows.~WS
2016-08-01 21:33 - 2016-08-01 21:41 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-08-01 21:02 - 2016-08-01 21:02 - 00000000 ____D C:\Users\PK_2\AppData\LocalLow\Temp
2016-08-01 20:44 - 2016-08-02 20:10 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-08-01 20:44 - 2016-08-01 21:42 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-08-01 20:44 - 2016-08-01 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-01 20:44 - 2016-08-01 20:44 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-01 20:44 - 2016-08-01 20:44 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-08-01 20:44 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-08-01 20:44 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-08-01 19:56 - 2016-08-01 20:49 - 00000000 ____D C:\Program Files (x86)\Functional Ear Trainer
2016-08-01 19:56 - 2016-08-01 19:57 - 00000000 ____D C:\Users\PK_2\AppData\Roaming\be.miles.FunctionalEarTrainer
2016-08-01 15:38 - 2016-08-01 17:00 - 00000000 ____D C:\Users\PK_2\Cisco Packet Tracer 7.0
2016-08-01 15:38 - 2016-08-01 16:55 - 00000166 _____ C:\Users\PK_2\.packettracer
2016-08-01 15:38 - 2016-08-01 15:38 - 00019456 _____ C:\Users\PK_2\AppData\Local\WebpageIcons.db
2016-08-01 15:37 - 2016-08-01 15:37 - 00001079 _____ C:\Users\PK_2\Desktop\Cisco Packet Tracer.lnk
2016-08-01 15:37 - 2016-08-01 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Packet Tracer
2016-08-01 15:37 - 2016-08-01 15:37 - 00000000 ____D C:\Program Files\Cisco Packet Tracer 7.0
2016-08-01 15:36 - 2016-08-01 15:37 - 82297112 _____ (Cisco Systems, Inc. ) C:\Users\PK_2\Downloads\PacketTracer70_64bit_setup.exe
2016-07-30 16:54 - 2016-07-30 16:54 - 00058254 _____ C:\Users\PK_2\Downloads\RequestedRecord_7-29-2016.pdf
2016-07-29 09:26 - 2016-07-29 09:26 - 00000000 ____D C:\ProgramData\HP
2016-07-28 19:24 - 2016-07-28 19:24 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-07-28 19:24 - 2016-07-28 19:24 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-07-28 18:15 - 2016-07-28 18:15 - 00000000 ____D C:\Users\PK_2\AppData\LocalLow\Adobe
2016-07-28 18:13 - 2016-08-01 20:49 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-07-28 18:13 - 2016-07-28 18:13 - 00004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-07-28 18:13 - 2016-07-28 18:13 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-07-28 18:13 - 2016-07-28 18:13 - 00002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-07-28 18:12 - 2016-08-01 19:56 - 00000000 ____D C:\ProgramData\Adobe
2016-07-28 18:12 - 2016-08-01 19:55 - 00000000 ____D C:\Users\PK_2\AppData\Local\Adobe
2016-07-25 21:09 - 2016-07-25 21:09 - 00000000 ____D C:\Windows\system32\SleepStudy
2016-07-17 16:55 - 2016-07-17 16:55 - 00007605 _____ C:\Users\PK_2\AppData\Local\resmon.resmoncfg
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Public\Documents\My Videos
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Public\Documents\My Pictures
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Public\Documents\My Music
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Default\My Documents
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Default\Documents\My Videos
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Default\Documents\My Pictures
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Default\Documents\My Music
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Default User\Documents\My Videos
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Default User\Documents\My Pictures
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Users\Default User\Documents\My Music
2016-07-17 11:01 - 2016-07-17 11:01 - 00000000 _SHDL C:\Documents and Settings
2016-07-16 20:33 - 2016-07-16 20:33 - 00000000 ___RD C:\Users\PK_2\3D Objects
2016-07-16 20:29 - 2016-07-16 20:29 - 00000000 ____D C:\Users\PK_2\AppData\Local\Comms
2016-07-16 20:26 - 2016-08-02 19:22 - 00000000 ____D C:\Users\PK_2\AppData\Roaming\Accountable2You
2016-07-16 20:26 - 2016-07-16 20:26 - 00000000 ____D C:\Users\PK_2\AppData\Local\Caphyon
2016-07-16 20:25 - 2016-07-16 20:25 - 06946512 _____ (Accountable2You, LLC) C:\Users\PK_2\Downloads\Accountable2You.exe
2016-07-16 20:25 - 2016-07-16 20:25 - 00000000 ____D C:\Users\PK_2\AppData\Roaming\Accountable2You, LLC
2016-07-16 20:24 - 2016-08-01 21:13 - 00004020 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1468718694
2016-07-16 20:24 - 2016-08-01 21:13 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-07-16 20:24 - 2016-07-28 19:23 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-07-16 20:24 - 2016-07-16 20:24 - 00001082 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-07-16 20:24 - 2016-07-16 20:24 - 00000000 ____D C:\Users\PK_2\AppData\Local\CEF
2016-07-16 20:23 - 2016-08-02 07:04 - 00292704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-07-16 20:23 - 2016-07-28 19:24 - 00513496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-07-16 20:23 - 2016-07-28 19:24 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-07-16 20:23 - 2016-07-28 19:24 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-07-16 20:23 - 2016-07-28 19:24 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-07-16 20:23 - 2016-07-28 19:24 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-07-16 20:23 - 2016-07-28 19:24 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-07-16 20:23 - 2016-07-28 19:24 - 00004004 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-07-16 20:23 - 2016-07-28 19:23 - 00968536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-07-16 20:23 - 2016-07-16 20:23 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-07-16 20:23 - 2016-07-16 20:23 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-07-16 20:23 - 2016-07-16 20:23 - 00000000 ____D C:\Users\PK_2\AppData\Roaming\AVAST Software
2016-07-16 20:22 - 2016-07-16 20:24 - 00000000 ____D C:\ProgramData\AVAST Software
2016-07-16 20:22 - 2016-07-16 20:24 - 00000000 ____D C:\Program Files\AVAST Software
2016-07-16 20:22 - 2016-07-16 20:22 - 06253640 _____ (AVAST Software) C:\Users\PK_2\Downloads\avast_free_antivirus_setup_online.exe
2016-07-16 20:22 - 2016-07-06 19:39 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-07-16 20:21 - 2016-08-02 21:15 - 00000938 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-16 20:21 - 2016-08-02 19:58 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-16 20:21 - 2016-07-28 15:10 - 00003996 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-16 20:21 - 2016-07-28 15:10 - 00003764 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-16 20:21 - 2016-07-16 20:21 - 00002344 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-16 20:21 - 2016-07-16 20:21 - 00002332 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-16 20:20 - 2016-07-23 16:56 - 00000000 ____D C:\Users\PK_2\AppData\Local\Google
2016-07-16 20:20 - 2016-07-16 20:21 - 00000000 ____D C:\Windows\system32\MRT
2016-07-16 20:20 - 2016-07-16 20:21 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-16 20:20 - 2016-07-16 20:20 - 144749672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-16 20:20 - 2016-07-16 20:20 - 00000000 ____D C:\Users\PK_2\AppData\Roaming\Macromedia
2016-07-16 20:20 - 2016-07-16 20:20 - 00000000 ____D C:\Users\PK_2\AppData\Local\Deployment
2016-07-16 20:20 - 2016-07-16 20:20 - 00000000 ____D C:\Users\PK_2\AppData\Local\Apps\2.0
2016-07-16 20:20 - 2016-07-01 00:30 - 00284352 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2016-07-16 20:20 - 2016-06-30 23:49 - 07469408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-07-16 20:20 - 2016-06-30 23:49 - 00337336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-07-16 20:20 - 2016-06-30 23:35 - 01552104 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2016-07-16 20:20 - 2016-06-30 23:35 - 01299504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-07-16 20:20 - 2016-06-30 23:35 - 01092464 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-07-16 20:20 - 2016-06-30 23:35 - 00847656 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-07-16 20:20 - 2016-06-30 23:35 - 00498960 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2016-07-16 20:20 - 2016-06-30 23:34 - 03675512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-07-16 20:20 - 2016-06-30 23:34 - 01322248 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-07-16 20:20 - 2016-06-30 23:34 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-07-16 20:20 - 2016-06-30 23:33 - 04515256 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-07-16 20:20 - 2016-06-30 23:33 - 01750440 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2016-07-16 20:20 - 2016-06-30 23:33 - 00725776 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2016-07-16 20:20 - 2016-06-30 23:33 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-07-16 20:20 - 2016-06-30 23:32 - 01603224 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2016-07-16 20:20 - 2016-06-30 23:32 - 01540224 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-07-16 20:20 - 2016-06-30 23:32 - 00692136 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-07-16 20:20 - 2016-06-30 23:31 - 01848584 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-07-16 20:20 - 2016-06-30 23:31 - 00604928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-07-16 20:20 - 2016-06-30 23:25 - 02773096 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-07-16 20:20 - 2016-06-30 23:25 - 02145032 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2016-07-16 20:20 - 2016-06-30 23:25 - 01987936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-07-16 20:20 - 2016-06-30 23:25 - 00648256 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-07-16 20:20 - 2016-06-30 23:25 - 00577376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-07-16 20:20 - 2016-06-30 23:25 - 00393568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-07-16 20:20 - 2016-06-30 23:24 - 00911648 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2016-07-16 20:20 - 2016-06-30 23:21 - 02921880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-07-16 20:20 - 2016-06-30 23:21 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-07-16 20:20 - 2016-06-30 23:20 - 00388896 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2016-07-16 20:20 - 2016-06-30 23:19 - 05240960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2016-07-16 20:20 - 2016-06-30 23:11 - 01522160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-07-16 20:20 - 2016-06-30 22:57 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2016-07-16 20:20 - 2016-06-30 22:56 - 22379520 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-07-16 20:20 - 2016-06-30 22:53 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-07-16 20:20 - 2016-06-30 22:52 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-07-16 20:20 - 2016-06-30 22:52 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-07-16 20:20 - 2016-06-30 22:50 - 11545088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-07-16 20:20 - 2016-06-30 22:50 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-07-16 20:20 - 2016-06-30 22:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2016-07-16 20:20 - 2016-06-30 22:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-07-16 20:20 - 2016-06-30 22:49 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-07-16 20:20 - 2016-06-30 22:48 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-07-16 20:20 - 2016-06-30 22:48 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-07-16 20:20 - 2016-06-30 22:47 - 24610304 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-07-16 20:20 - 2016-06-30 22:47 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-07-16 20:20 - 2016-06-30 22:47 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2016-07-16 20:20 - 2016-06-30 22:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2016-07-16 20:20 - 2016-06-30 22:47 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2016-07-16 20:20 - 2016-06-30 22:47 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-07-16 20:20 - 2016-06-30 22:45 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-16 20:20 - 2016-06-30 22:44 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2016-07-16 20:20 - 2016-06-30 22:44 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2016-07-16 20:20 - 2016-06-30 22:43 - 00892416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2016-07-16 20:20 - 2016-06-30 22:43 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-16 20:20 - 2016-06-30 22:43 - 00556032 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2016-07-16 20:20 - 2016-06-30 22:42 - 14252544 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-07-16 20:20 - 2016-06-30 22:42 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2016-07-16 20:20 - 2016-06-30 22:42 - 02088960 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-07-16 20:20 - 2016-06-30 22:42 - 01434112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2016-07-16 20:20 - 2016-06-30 22:42 - 01240064 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-07-16 20:20 - 2016-06-30 22:42 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2016-07-16 20:20 - 2016-06-30 22:42 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-07-16 20:20 - 2016-06-30 22:42 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-07-16 20:20 - 2016-06-30 22:41 - 02127360 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-07-16 20:20 - 2016-06-30 22:41 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-07-16 20:20 - 2016-06-30 22:41 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-07-16 20:20 - 2016-06-30 22:41 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-07-16 20:20 - 2016-06-30 22:41 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-07-16 20:20 - 2016-06-30 22:41 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2016-07-16 20:20 - 2016-06-30 22:41 - 00605184 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-07-16 20:20 - 2016-06-30 22:41 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2016-07-16 20:20 - 2016-06-30 22:41 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-07-16 20:20 - 2016-06-30 22:41 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosHostClient.dll
2016-07-16 20:20 - 2016-06-30 22:40 - 01575936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2016-07-16 20:20 - 2016-06-30 22:40 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2016-07-16 20:20 - 2016-06-30 22:40 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-07-16 20:20 - 2016-06-30 22:40 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-07-16 20:20 - 2016-06-30 22:40 - 00496640 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-07-16 20:20 - 2016-06-30 22:39 - 13018112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-07-16 20:20 - 2016-06-30 22:39 - 01752576 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-07-16 20:20 - 2016-06-30 22:39 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-07-16 20:20 - 2016-06-30 22:39 - 01211904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2016-07-16 20:20 - 2016-06-30 22:39 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-07-16 20:20 - 2016-06-30 22:38 - 04456448 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2016-07-16 20:20 - 2016-06-30 22:38 - 01671168 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-07-16 20:20 - 2016-06-30 22:38 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2016-07-16 20:20 - 2016-06-30 22:38 - 00821760 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2016-07-16 20:20 - 2016-06-30 22:37 - 00865792 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2016-07-16 20:20 - 2016-06-30 22:37 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosStorage.dll
2016-07-16 20:20 - 2016-06-30 22:36 - 00701952 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2016-07-16 20:20 - 2016-06-30 22:36 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapsBtSvc.dll
2016-07-16 20:20 - 2016-06-30 22:34 - 03994624 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-07-16 20:20 - 2016-06-30 22:34 - 03428864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2016-07-16 20:20 - 2016-06-30 22:33 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2016-07-16 20:20 - 2016-06-30 22:32 - 02582016 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-07-16 20:20 - 2016-06-30 22:32 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-07-16 20:20 - 2016-06-30 22:31 - 19347968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-07-16 20:20 - 2016-06-30 22:31 - 01797120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-07-16 20:20 - 2016-06-30 22:31 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe
2016-07-16 20:20 - 2016-06-30 22:30 - 13385728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-07-16 20:20 - 2016-06-30 22:30 - 03585536 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-16 20:20 - 2016-06-30 22:30 - 02635776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-07-16 20:20 - 2016-06-30 22:30 - 00546816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll
2016-07-16 20:20 - 2016-06-30 22:30 - 00292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3ui.dll
2016-07-16 20:20 - 2016-06-30 22:29 - 05503488 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-07-16 20:20 - 2016-06-30 22:29 - 03589632 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-07-16 20:20 - 2016-06-30 22:29 - 03355136 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2016-07-16 20:20 - 2016-06-30 22:29 - 02609664 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-07-16 20:20 - 2016-06-30 22:29 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-07-16 20:20 - 2016-06-30 22:29 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2016-07-16 20:20 - 2016-06-30 22:29 - 00349696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2016-07-16 20:20 - 2016-06-30 22:29 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2016-07-16 20:20 - 2016-06-30 22:28 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2016-07-16 20:20 - 2016-06-30 22:28 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2016-07-16 20:20 - 2016-06-30 22:27 - 01946112 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-07-16 20:20 - 2016-06-30 22:27 - 01729024 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-07-16 20:20 - 2016-06-30 22:27 - 00846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2016-07-16 20:20 - 2016-06-30 22:27 - 00559616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2016-07-16 20:20 - 2016-06-30 22:27 - 00496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-07-16 20:20 - 2016-06-30 22:27 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-16 20:20 - 2016-06-30 22:27 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll
2016-07-16 20:20 - 2016-06-30 22:26 - 18674176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-07-16 20:20 - 2016-06-30 22:26 - 07832576 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-07-16 20:20 - 2016-06-30 22:26 - 04895232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-07-16 20:20 - 2016-06-30 22:26 - 03026944 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-07-16 20:20 - 2016-06-30 22:26 - 01755648 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2016-07-16 20:20 - 2016-06-30 22:26 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2016-07-16 20:20 - 2016-06-30 22:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2016-07-16 20:20 - 2016-06-30 22:25 - 02050048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-07-16 20:20 - 2016-06-30 22:25 - 01121792 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-07-16 20:20 - 2016-06-30 22:25 - 00784896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll
2016-07-16 20:20 - 2016-06-30 22:25 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2016-07-16 20:20 - 2016-06-30 22:25 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-07-16 20:20 - 2016-06-30 22:25 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-07-16 20:20 - 2016-06-30 22:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-07-16 20:20 - 2016-06-30 22:24 - 12586496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-07-16 20:20 - 2016-06-30 22:24 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2016-07-16 20:20 - 2016-06-30 22:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-07-16 20:20 - 2016-06-30 22:23 - 01526272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-07-16 20:20 - 2016-06-30 22:22 - 06295552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2016-07-16 20:20 - 2016-06-30 22:22 - 00639488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2016-07-16 20:20 - 2016-06-30 22:21 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2016-07-16 20:20 - 2016-06-30 22:20 - 12128256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-07-16 20:20 - 2016-06-30 22:19 - 01987072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-07-16 20:20 - 2016-06-30 22:18 - 05205504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2016-07-16 20:20 - 2016-06-30 22:18 - 03663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-07-16 20:20 - 2016-06-30 22:16 - 02771968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-07-16 20:20 - 2016-06-30 22:15 - 04413440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-07-16 20:20 - 2016-06-30 22:15 - 02217984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2016-07-16 20:20 - 2016-06-30 22:15 - 02102272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2016-07-16 20:20 - 2016-06-30 22:14 - 05660672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-07-16 20:20 - 2016-06-30 22:13 - 06740992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-07-16 20:20 - 2016-06-30 22:13 - 01249280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2016-07-16 20:20 - 2016-06-30 22:09 - 02632192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-07-16 20:20 - 2016-06-30 22:08 - 01976832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-07-16 20:20 - 2016-06-30 22:08 - 00517632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2016-07-16 20:20 - 2016-05-28 00:22 - 00428896 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2016-07-16 20:20 - 2016-05-28 00:22 - 00211296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2016-07-16 20:20 - 2016-05-28 00:09 - 00170848 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2016-07-16 20:20 - 2016-05-28 00:08 - 00693600 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-07-16 20:20 - 2016-05-28 00:08 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-07-16 20:20 - 2016-05-27 23:58 - 00379232 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-07-16 20:20 - 2016-05-27 23:57 - 02548944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-07-16 20:20 - 2016-05-27 23:57 - 01594416 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-07-16 20:20 - 2016-05-27 23:57 - 00636304 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-07-16 20:20 - 2016-05-27 23:57 - 00546456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-07-16 20:20 - 2016-05-27 23:57 - 00316256 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-07-16 20:20 - 2016-05-27 23:35 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsdport.sys
2016-07-16 20:20 - 2016-05-27 23:31 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdlrecover.exe
2016-07-16 20:20 - 2016-05-27 23:29 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-07-16 20:20 - 2016-05-27 23:28 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-07-16 20:20 - 2016-05-27 23:22 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2016-07-16 20:20 - 2016-05-27 23:21 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-07-16 20:20 - 2016-05-27 23:17 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2016-07-16 20:20 - 2016-05-27 23:17 - 00415232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2016-07-16 20:20 - 2016-05-27 23:17 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2016-07-16 20:20 - 2016-05-27 23:16 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-07-16 20:20 - 2016-05-27 23:15 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-07-16 20:20 - 2016-05-27 23:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-07-16 20:20 - 2016-05-27 23:12 - 00614400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-07-16 20:20 - 2016-05-27 23:03 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-07-16 20:20 - 2016-05-27 22:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2016-07-16 20:20 - 2016-05-05 23:03 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2016-07-16 20:20 - 2016-05-05 22:53 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2016-07-16 20:20 - 2016-05-05 22:49 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2016-07-16 20:20 - 2016-05-05 22:44 - 00582656 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2016-07-16 20:20 - 2016-05-05 22:43 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2016-07-16 20:20 - 2016-04-23 00:24 - 01819208 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-07-16 20:20 - 2016-04-23 00:13 - 00306832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2016-07-16 20:20 - 2016-04-23 00:12 - 00413536 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2016-07-16 20:20 - 2016-04-23 00:06 - 00291360 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe
2016-07-16 20:20 - 2016-04-23 00:01 - 00619296 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-07-16 20:20 - 2016-04-23 00:00 - 01399224 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-07-16 20:20 - 2016-04-23 00:00 - 00550656 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2016-07-16 20:20 - 2016-04-22 23:56 - 00534872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2016-07-16 20:20 - 2016-04-22 23:29 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ByteCodeGenerator.exe
2016-07-16 20:20 - 2016-04-22 23:28 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2016-07-16 20:20 - 2016-04-22 23:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2016-07-16 20:20 - 2016-04-22 23:26 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2016-07-16 20:20 - 2016-04-22 23:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2016-07-16 20:20 - 2016-04-22 23:24 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2016-07-16 20:20 - 2016-04-22 23:23 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2016-07-16 20:20 - 2016-04-22 23:20 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2016-07-16 20:20 - 2016-04-22 23:19 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2016-07-16 20:20 - 2016-04-22 23:18 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-07-16 20:20 - 2016-04-22 23:18 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2016-07-16 20:20 - 2016-04-22 23:17 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-07-16 20:20 - 2016-04-22 23:17 - 00337920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2016-07-16 20:20 - 2016-04-22 23:16 - 01319424 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2016-07-16 20:20 - 2016-04-22 23:15 - 00792064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-07-16 20:20 - 2016-04-22 23:14 - 00647680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-07-16 20:20 - 2016-04-01 23:13 - 00369912 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-07-16 20:20 - 2016-03-29 05:18 - 02152280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-07-16 20:20 - 2016-03-29 04:28 - 00535080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-07-16 20:20 - 2016-03-29 04:13 - 00986976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2016-07-16 20:20 - 2016-03-29 03:23 - 00069744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2016-07-16 20:20 - 2016-03-29 03:21 - 00378208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2016-07-16 20:20 - 2016-03-29 03:16 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xinputhid.sys
2016-07-16 20:20 - 2016-03-29 03:07 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2016-07-16 20:20 - 2016-03-29 03:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\oleacchooks.dll
2016-07-16 20:20 - 2016-03-29 03:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\fveskybackup.dll
2016-07-16 20:20 - 2016-03-29 02:58 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\wininetlui.dll
2016-07-16 20:20 - 2016-03-29 02:58 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-07-16 20:20 - 2016-03-29 02:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
2016-07-16 20:20 - 2016-03-29 02:53 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\FontProvider.dll
2016-07-16 20:20 - 2016-03-29 02:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
2016-07-16 20:20 - 2016-03-29 02:46 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2016-07-16 20:20 - 2016-03-29 02:44 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\DAFWSD.dll
2016-07-16 20:20 - 2016-03-29 02:35 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2016-07-16 20:20 - 2016-03-29 02:30 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-07-16 20:20 - 2016-03-29 02:20 - 00948736 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll
2016-07-16 20:20 - 2016-03-29 02:11 - 00881664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2016-07-16 20:20 - 2016-03-29 02:09 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2016-07-16 20:20 - 2016-03-29 02:08 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2016-07-16 20:20 - 2016-03-29 02:06 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2016-07-16 20:20 - 2016-03-29 02:05 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2016-07-16 20:20 - 2016-03-29 02:00 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-07-16 20:20 - 2016-03-29 01:59 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2016-07-16 20:20 - 2016-03-29 01:42 - 01410560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2016-07-16 20:20 - 2016-03-29 01:40 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2016-07-16 20:20 - 2016-03-29 01:36 - 00649728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2016-07-16 20:20 - 2016-03-29 01:32 - 00854528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2016-07-16 20:20 - 2016-03-29 01:28 - 01944576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2016-07-16 20:20 - 2016-03-29 01:27 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2016-07-16 20:20 - 2016-03-29 01:27 - 00133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2016-07-16 20:20 - 2016-03-29 01:27 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputLocaleManager.dll
2016-07-16 20:20 - 2016-03-29 01:05 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-07-16 20:20 - 2016-03-29 01:04 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2016-07-16 20:20 - 2016-03-29 00:36 - 02722816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-07-16 20:20 - 2016-03-29 00:26 - 00958976 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2016-07-16 20:20 - 2016-03-29 00:25 - 00712704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2016-07-16 20:20 - 2016-02-24 03:58 - 00794888 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-07-16 20:20 - 2016-02-24 03:39 - 00141560 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2016-07-16 20:20 - 2016-02-24 02:39 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTypeHelperUtil.dll
2016-07-16 20:20 - 2016-02-24 02:39 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\ExtrasXmlParser.dll
2016-07-16 20:20 - 2016-02-24 02:38 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2016-07-16 20:20 - 2016-02-24 02:37 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\UserDataLanguageUtil.dll
2016-07-16 20:20 - 2016-02-24 02:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenanceClient.dll
2016-07-16 20:20 - 2016-02-24 02:28 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\POSyncServices.dll
2016-07-16 20:20 - 2016-02-24 02:23 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-07-16 20:20 - 2016-02-24 02:23 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\UserDataPlatformHelperUtil.dll
2016-07-16 20:20 - 2016-02-24 02:20 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2016-07-16 20:20 - 2016-02-24 02:14 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll
2016-07-16 20:20 - 2016-02-24 02:13 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2016-07-16 20:20 - 2016-02-24 02:12 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\cemapi.dll
2016-07-16 20:20 - 2016-02-24 02:12 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2016-07-16 20:20 - 2016-02-24 02:09 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2016-07-16 20:20 - 2016-02-24 02:07 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2016-07-16 20:20 - 2016-02-24 02:02 - 00161280 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll
2016-07-16 20:20 - 2016-02-24 02:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2016-07-16 20:20 - 2016-02-24 01:55 - 00790528 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2016-07-16 20:20 - 2016-02-24 01:54 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2016-07-16 20:20 - 2016-02-24 01:49 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2016-07-16 20:20 - 2016-02-24 01:46 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2016-07-16 20:20 - 2016-02-24 01:44 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2016-07-16 20:20 - 2016-02-24 01:40 - 01224704 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2016-07-16 20:20 - 2016-02-24 01:39 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
2016-07-16 20:20 - 2016-02-24 01:34 - 00938496 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2016-07-16 20:20 - 2016-02-24 01:21 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll
2016-07-16 20:20 - 2016-02-24 01:18 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2016-07-16 20:20 - 2016-02-24 01:17 - 00369664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2016-07-16 20:20 - 2016-02-24 01:09 - 00228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2016-07-16 20:20 - 2016-02-24 00:22 - 00163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwbase.dll
2016-07-16 20:19 - 2016-07-16 20:19 - 00000000 ____H C:\Users\PK_2\Documents\Default.rdp
2016-07-16 20:19 - 2016-07-01 00:30 - 01505984 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-07-16 20:19 - 2016-07-01 00:30 - 01223872 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-07-16 20:19 - 2016-07-01 00:30 - 00587456 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-07-16 20:19 - 2016-07-01 00:30 - 00559808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-07-16 20:19 - 2016-07-01 00:30 - 00310464 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-07-16 20:19 - 2016-07-01 00:30 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-07-16 20:19 - 2016-07-01 00:30 - 00050368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-07-16 20:19 - 2016-06-30 23:50 - 00037232 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2016-07-16 20:19 - 2016-06-30 23:49 - 01997328 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-07-16 20:19 - 2016-06-30 23:49 - 01317640 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-07-16 20:19 - 2016-06-30 23:49 - 01141504 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-07-16 20:19 - 2016-06-30 23:49 - 01030416 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-07-16 20:19 - 2016-06-30 23:49 - 00874968 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-07-16 20:19 - 2016-06-30 23:49 - 00277856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2016-07-16 20:19 - 2016-06-30 23:48 - 02656408 _____ C:\Windows\system32\CoreUIComponents.dll
2016-07-16 20:19 - 2016-06-30 23:48 - 01238584 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2016-07-16 20:19 - 2016-06-30 23:45 - 01613664 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-07-16 20:19 - 2016-06-30 23:43 - 03449168 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2016-07-16 20:19 - 2016-06-30 23:43 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-07-16 20:19 - 2016-06-30 23:39 - 01557776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-07-16 20:19 - 2016-06-30 23:38 - 01862008 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2016-07-16 20:19 - 2016-06-30 23:38 - 01083656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2016-07-16 20:19 - 2016-06-30 23:38 - 00256192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2016-07-16 20:19 - 2016-06-30 23:38 - 00032552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2016-07-16 20:19 - 2016-06-30 23:35 - 01554152 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-07-16 20:19 - 2016-06-30 23:35 - 00586208 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-07-16 20:19 - 2016-06-30 23:35 - 00331616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-07-16 20:19 - 2016-06-30 23:35 - 00035656 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-07-16 20:19 - 2016-06-30 23:33 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-07-16 20:19 - 2016-06-30 23:33 - 00730352 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2016-07-16 20:19 - 2016-06-30 23:33 - 00566104 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-07-16 20:19 - 2016-06-30 23:33 - 00374008 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-07-16 20:19 - 2016-06-30 23:32 - 06605544 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-07-16 20:19 - 2016-06-30 23:32 - 06536256 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2016-07-16 20:19 - 2016-06-30 23:32 - 01128104 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2016-07-16 20:19 - 2016-06-30 23:32 - 01040800 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2016-07-16 20:19 - 2016-06-30 23:32 - 00625000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2016-07-16 20:19 - 2016-06-30 23:32 - 00106928 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2016-07-16 20:19 - 2016-06-30 23:32 - 00078040 _____ (Microsoft Corporation) C:\Windows\system32\Clipc.dll
2016-07-16 20:19 - 2016-06-30 23:31 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-07-16 20:19 - 2016-06-30 23:24 - 01776768 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-07-16 20:19 - 2016-06-30 23:23 - 01349640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2016-07-16 20:19 - 2016-06-30 23:23 - 01118208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-07-16 20:19 - 2016-06-30 23:23 - 00925576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-07-16 20:19 - 2016-06-30 23:23 - 00709176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-07-16 20:19 - 2016-06-30 23:23 - 00511320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-07-16 20:19 - 2016-06-30 23:23 - 00451936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-07-16 20:19 - 2016-06-30 23:23 - 00032040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-07-16 20:19 - 2016-06-30 23:21 - 28851224 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsRaw.dll
2016-07-16 20:19 - 2016-06-30 23:21 - 02403168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-07-16 20:19 - 2016-06-30 23:21 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-07-16 20:19 - 2016-06-30 23:21 - 00376536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2016-07-16 20:19 - 2016-06-30 23:20 - 21123320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-07-16 20:19 - 2016-06-30 23:20 - 00503600 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2016-07-16 20:19 - 2016-06-30 23:20 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-07-16 20:19 - 2016-06-30 23:20 - 00254656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-07-16 20:19 - 2016-06-30 23:19 - 04074160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-07-16 20:19 - 2016-06-30 23:19 - 01355336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2016-07-16 20:19 - 2016-06-30 23:19 - 00836760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2016-07-16 20:19 - 2016-06-30 23:19 - 00569752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2016-07-16 20:19 - 2016-06-30 23:18 - 00064584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Clipc.dll
2016-07-16 20:19 - 2016-06-30 23:17 - 01536600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-07-16 20:19 - 2016-06-30 23:12 - 02186864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-07-16 20:19 - 2016-06-30 23:12 - 01866104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2016-07-16 20:19 - 2016-06-30 23:11 - 00521152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-07-16 20:19 - 2016-06-30 23:10 - 00675064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2016-07-16 20:19 - 2016-06-30 23:07 - 28083144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsRaw.dll
2016-07-16 20:19 - 2016-06-30 23:03 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll
2016-07-16 20:19 - 2016-06-30 23:03 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-07-16 20:19 - 2016-06-30 23:00 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-07-16 20:19 - 2016-06-30 22:59 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll
2016-07-16 20:19 - 2016-06-30 22:58 - 00824320 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2016-07-16 20:19 - 2016-06-30 22:58 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2016-07-16 20:19 - 2016-06-30 22:57 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\cdpreference.exe
2016-07-16 20:19 - 2016-06-30 22:56 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-07-16 20:19 - 2016-06-30 22:56 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2016-07-16 20:19 - 2016-06-30 22:55 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2016-07-16 20:19 - 2016-06-30 22:55 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\LegacyNetUX.dll
2016-07-16 20:19 - 2016-06-30 22:55 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll
2016-07-16 20:19 - 2016-06-30 22:55 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\IconCodecService.dll
2016-07-16 20:19 - 2016-06-30 22:54 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll
2016-07-16 20:19 - 2016-06-30 22:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll
2016-07-16 20:19 - 2016-06-30 22:54 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\eappprxy.dll
2016-07-16 20:19 - 2016-06-30 22:53 - 01567744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-07-16 20:19 - 2016-06-30 22:53 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2016-07-16 20:19 - 2016-06-30 22:53 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-07-16 20:19 - 2016-06-30 22:53 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-07-16 20:19 - 2016-06-30 22:52 - 16985088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-07-16 20:19 - 2016-06-30 22:52 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-07-16 20:19 - 2016-06-30 22:52 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll
2016-07-16 20:19 - 2016-06-30 22:52 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2016-07-16 20:19 - 2016-06-30 22:52 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2016-07-16 20:19 - 2016-06-30 22:52 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-07-16 20:19 - 2016-06-30 22:52 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2016-07-16 20:19 - 2016-06-30 22:51 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll
2016-07-16 20:19 - 2016-06-30 22:51 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll
2016-07-16 20:19 - 2016-06-30 22:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-07-16 20:19 - 2016-06-30 22:50 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-07-16 20:19 - 2016-06-30 22:50 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-07-16 20:19 - 2016-06-30 22:50 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2016-07-16 20:19 - 2016-06-30 22:50 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\SimCfg.dll
2016-07-16 20:19 - 2016-06-30 22:50 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2016-07-16 20:19 - 2016-06-30 22:50 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll
2016-07-16 20:19 - 2016-06-30 22:50 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2016-07-16 20:19 - 2016-06-30 22:50 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\FingerprintEnrollment.dll
2016-07-16 20:19 - 2016-06-30 22:49 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Maps.dll
2016-07-16 20:19 - 2016-06-30 22:49 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\LegacyNetUXHost.exe
2016-07-16 20:19 - 2016-06-30 22:49 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2016-07-16 20:19 - 2016-06-30 22:48 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-07-16 20:19 - 2016-06-30 22:48 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2016-07-16 20:19 - 2016-06-30 22:48 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2016-07-16 20:19 - 2016-06-30 22:48 - 00373248 _____ (Microsoft Corporation) C:\Windows\system32\WmpDui.dll
2016-07-16 20:19 - 2016-06-30 22:48 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2016-07-16 20:19 - 2016-06-30 22:48 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2016-07-16 20:19 - 2016-06-30 22:48 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2016-07-16 20:19 - 2016-06-30 22:48 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-07-16 20:19 - 2016-06-30 22:48 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\SimAuth.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00450048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe
2016-07-16 20:19 - 2016-06-30 22:47 - 00394752 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00394240 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\dmdskmgr.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-07-16 20:19 - 2016-06-30 22:47 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2016-07-16 20:19 - 2016-06-30 22:46 - 00714240 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00565760 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00510464 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00475648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack_win.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\APHostService.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\credprovs.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2016-07-16 20:19 - 2016-06-30 22:46 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00387072 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\edputil.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2016-07-16 20:19 - 2016-06-30 22:45 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2016-07-16 20:19 - 2016-06-30 22:45 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 07977472 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 01814528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 00484352 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 00448000 _____ (Microsoft Corporation) C:\Windows\system32\winipcfile.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 00364032 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2016-07-16 20:19 - 2016-06-30 22:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 01056256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00992256 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00947200 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00674304 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00589824 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00529408 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\WLanConn.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00352256 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2016-07-16 20:19 - 2016-06-30 22:43 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-07-16 20:19 - 2016-06-30 22:43 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 02012672 _____ (Microsoft Corporation) C:\Windows\system32\winmsipc.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 01716736 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00965632 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00651776 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00480768 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2016-07-16 20:19 - 2016-06-30 22:42 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2016-07-16 20:19 - 2016-06-30 22:41 - 01847808 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2016-07-16 20:19 - 2016-06-30 22:41 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationFrame.dll
2016-07-16 20:19 - 2016-06-30 22:41 - 01037824 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2016-07-16 20:19 - 2016-06-30 22:41 - 01001472 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-07-16 20:19 - 2016-06-30 22:41 - 00954368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-07-16 20:19 - 2016-06-30 22:41 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-07-16 20:19 - 2016-06-30 22:41 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2016-07-16 20:19 - 2016-06-30 22:41 - 00817152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Search.dll
2016-07-16 20:19 - 2016-06-30 22:41 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2016-07-16 20:19 - 2016-06-30 22:41 - 00572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2016-07-16 20:19 - 2016-06-30 22:41 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2016-07-16 20:19 - 2016-06-30 22:41 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-07-16 20:19 - 2016-06-30 22:40 - 02731008 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-07-16 20:19 - 2016-06-30 22:40 - 02103296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2016-07-16 20:19 - 2016-06-30 22:40 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll
2016-07-16 20:19 - 2016-06-30 22:40 - 01902592 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-07-16 20:19 - 2016-06-30 22:40 - 00938496 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-07-16 20:19 - 2016-06-30 22:40 - 00896512 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2016-07-16 20:19 - 2016-06-30 22:40 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2016-07-16 20:19 - 2016-06-30 22:40 - 00673280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-07-16 20:19 - 2016-06-30 22:40 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2016-07-16 20:19 - 2016-06-30 22:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2016-07-16 20:19 - 2016-06-30 22:39 - 01872896 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2016-07-16 20:19 - 2016-06-30 22:39 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2016-07-16 20:19 - 2016-06-30 22:39 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2016-07-16 20:19 - 2016-06-30 22:39 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe
2016-07-16 20:19 - 2016-06-30 22:38 - 06312448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2016-07-16 20:19 - 2016-06-30 22:38 - 01443840 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2016-07-16 20:19 - 2016-06-30 22:38 - 01291776 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2016-07-16 20:19 - 2016-06-30 22:38 - 00961536 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2016-07-16 20:19 - 2016-06-30 22:38 - 00549888 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2016-07-16 20:19 - 2016-06-30 22:38 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IconCodecService.dll
2016-07-16 20:19 - 2016-06-30 22:37 - 01073152 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2016-07-16 20:19 - 2016-06-30 22:37 - 01051648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2016-07-16 20:19 - 2016-06-30 22:37 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2016-07-16 20:19 - 2016-06-30 22:37 - 00584704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2016-07-16 20:19 - 2016-06-30 22:37 - 00055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappprxy.dll
2016-07-16 20:19 - 2016-06-30 22:36 - 03415040 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2016-07-16 20:19 - 2016-06-30 22:36 - 02445312 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-07-16 20:19 - 2016-06-30 22:36 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc.dll
2016-07-16 20:19 - 2016-06-30 22:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2016-07-16 20:19 - 2016-06-30 22:36 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2016-07-16 20:19 - 2016-06-30 22:35 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2016-07-16 20:19 - 2016-06-30 22:34 - 09919488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-07-16 20:19 - 2016-06-30 22:34 - 04170240 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2016-07-16 20:19 - 2016-06-30 22:34 - 00838144 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2016-07-16 20:19 - 2016-06-30 22:34 - 00636928 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2016-07-16 20:19 - 2016-06-30 22:34 - 00205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oemlicense.dll
2016-07-16 20:19 - 2016-06-30 22:34 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppCapture.dll
2016-07-16 20:19 - 2016-06-30 22:34 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-07-16 20:19 - 2016-06-30 22:33 - 07200256 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-07-16 20:19 - 2016-06-30 22:33 - 06973952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-07-16 20:19 - 2016-06-30 22:33 - 06675968 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2016-07-16 20:19 - 2016-06-30 22:33 - 02285568 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2016-07-16 20:19 - 2016-06-30 22:33 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-07-16 20:19 - 2016-06-30 22:32 - 02800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2016-07-16 20:19 - 2016-06-30 22:32 - 02563584 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2016-07-16 20:19 - 2016-06-30 22:32 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2016-07-16 20:19 - 2016-06-30 22:32 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimCfg.dll
2016-07-16 20:19 - 2016-06-30 22:32 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2016-07-16 20:19 - 2016-06-30 22:32 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2016-07-16 20:19 - 2016-06-30 22:31 - 01385472 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2016-07-16 20:19 - 2016-06-30 22:31 - 00994816 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2016-07-16 20:19 - 2016-06-30 22:31 - 00900608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-16 20:19 - 2016-06-30 22:31 - 00882688 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-07-16 20:19 - 2016-06-30 22:31 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2016-07-16 20:19 - 2016-06-30 22:31 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WmpDui.dll
2016-07-16 20:19 - 2016-06-30 22:31 - 00260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2016-07-16 20:19 - 2016-06-30 22:31 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2016-07-16 20:19 - 2016-06-30 22:31 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2016-07-16 20:19 - 2016-06-30 22:31 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimAuth.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 02902528 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 02066432 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 00849920 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2016-07-16 20:19 - 2016-06-30 22:30 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 00248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 00217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmdskmgr.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 00190464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2016-07-16 20:19 - 2016-06-30 22:30 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommon.dll
2016-07-16 20:19 - 2016-06-30 22:29 - 05123072 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2016-07-16 20:19 - 2016-06-30 22:29 - 04646912 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2016-07-16 20:19 - 2016-06-30 22:29 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-07-16 20:19 - 2016-06-30 22:29 - 00569856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-07-16 20:19 - 2016-06-30 22:29 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2016-07-16 20:19 - 2016-06-30 22:29 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-07-16 20:19 - 2016-06-30 22:29 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-07-16 20:19 - 2016-06-30 22:29 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovs.dll
2016-07-16 20:19 - 2016-06-30 22:29 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 03577344 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 03046400 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 02912256 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 00578048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 00347648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 00283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edputil.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-07-16 20:19 - 2016-06-30 22:28 - 00119296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 07533568 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 04827136 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 02444800 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 00519168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcfile.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 00284160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 00282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-07-16 20:19 - 2016-06-30 22:27 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2016-07-16 20:19 - 2016-06-30 22:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 02597888 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 01445888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 01063936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00585216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00502272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WLanConn.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00348672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2016-07-16 20:19 - 2016-06-30 22:26 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 04775424 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 02745856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 01508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmsipc.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 01228800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 01117184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 01097216 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 00984576 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 00738816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2016-07-16 20:19 - 2016-06-30 22:25 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 00645632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Search.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 00502784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 00477184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2016-07-16 20:19 - 2016-06-30 22:25 - 00240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2016-07-16 20:19 - 2016-06-30 22:24 - 04404736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2016-07-16 20:19 - 2016-06-30 22:24 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-07-16 20:19 - 2016-06-30 22:24 - 01588224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-07-16 20:19 - 2016-06-30 22:24 - 01497088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2016-07-16 20:19 - 2016-06-30 22:24 - 01487872 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll
2016-07-16 20:19 - 2016-06-30 22:24 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-07-16 20:19 - 2016-06-30 22:24 - 01448960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-07-16 20:19 - 2016-06-30 22:24 - 00673280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2016-07-16 20:19 - 2016-06-30 22:24 - 00468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2016-07-16 20:19 - 2016-06-30 22:24 - 00434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 03695104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 03301376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 02578432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 01036288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 00805888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 00764928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 00760320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2016-07-16 20:19 - 2016-06-30 22:23 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 00460800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-07-16 20:19 - 2016-06-30 22:23 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licensingdiag.exe
2016-07-16 20:19 - 2016-06-30 22:23 - 00184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2016-07-16 20:19 - 2016-06-30 22:22 - 03053568 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-07-16 20:19 - 2016-06-30 22:22 - 00965120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2016-07-16 20:19 - 2016-06-30 22:21 - 04078080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2016-07-16 20:19 - 2016-06-30 22:21 - 01087488 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-07-16 20:19 - 2016-06-30 22:21 - 00980480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcsecproc.dll
2016-07-16 20:19 - 2016-06-30 22:21 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2016-07-16 20:19 - 2016-06-30 22:20 - 03555840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2016-07-16 20:19 - 2016-06-30 22:20 - 02798080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2016-07-16 20:19 - 2016-06-30 22:20 - 00777728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2016-07-16 20:19 - 2016-06-30 22:19 - 06471168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2016-07-16 20:19 - 2016-06-30 22:19 - 01582080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-07-16 20:19 - 2016-06-30 22:19 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2016-07-16 20:19 - 2016-06-30 22:19 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2016-07-16 20:19 - 2016-06-30 22:19 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-07-16 20:19 - 2016-06-30 22:18 - 01448960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2016-07-16 20:19 - 2016-06-30 22:18 - 00683008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-07-16 20:19 - 2016-06-30 22:17 - 05323776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-07-16 20:19 - 2016-06-30 22:17 - 02155008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-07-16 20:19 - 2016-06-30 22:16 - 02062336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-07-16 20:19 - 2016-06-30 22:16 - 01984000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-07-16 20:19 - 2016-06-30 22:15 - 03459584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2016-07-16 20:19 - 2016-06-30 22:15 - 02679808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2016-07-16 20:19 - 2016-06-30 22:15 - 02604032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2016-07-16 20:19 - 2016-06-30 22:15 - 02501632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-07-16 20:19 - 2016-06-30 22:15 - 01799680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-07-16 20:19 - 2016-06-30 22:15 - 01626112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-07-16 20:19 - 2016-06-30 22:15 - 00574976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2016-07-16 20:19 - 2016-06-30 22:15 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2016-07-16 20:19 - 2016-06-30 22:14 - 04759040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-07-16 20:19 - 2016-06-30 22:14 - 02680320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2016-07-16 20:19 - 2016-06-30 22:14 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-07-16 20:19 - 2016-06-30 22:14 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-07-16 20:19 - 2016-06-30 22:13 - 02849792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2016-07-16 20:19 - 2016-06-30 22:13 - 02519552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2016-07-16 20:19 - 2016-06-30 22:13 - 02000896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-07-16 20:19 - 2016-06-30 22:13 - 00835072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2016-07-16 20:19 - 2016-06-30 22:12 - 02179584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-07-16 20:19 - 2016-06-30 22:12 - 00339456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-07-16 20:19 - 2016-06-30 22:11 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2016-07-16 20:19 - 2016-06-30 22:08 - 00879616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2016-07-16 20:19 - 2016-06-30 22:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2016-07-16 20:19 - 2016-06-28 06:20 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-07-16 20:19 - 2016-05-28 00:25 - 04268880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2016-07-16 20:19 - 2016-05-28 00:23 - 00388384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-07-16 20:19 - 2016-05-28 00:23 - 00312160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-07-16 20:19 - 2016-05-28 00:22 - 04387680 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2016-07-16 20:19 - 2016-05-28 00:22 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-07-16 20:19 - 2016-05-28 00:20 - 00430312 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-07-16 20:19 - 2016-05-28 00:18 - 00357216 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-07-16 20:19 - 2016-05-28 00:09 - 00501600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-07-16 20:19 - 2016-05-28 00:09 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-07-16 20:19 - 2016-05-28 00:08 - 00258912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufx01000.sys
2016-07-16 20:19 - 2016-05-28 00:04 - 00431296 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-07-16 20:19 - 2016-05-28 00:04 - 00360480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-07-16 20:19 - 2016-05-28 00:04 - 00111064 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2016-07-16 20:19 - 2016-05-28 00:04 - 00097096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2016-07-16 20:19 - 2016-05-28 00:03 - 00131248 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-07-16 20:19 - 2016-05-27 23:57 - 02195632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-07-16 20:19 - 2016-05-27 23:57 - 01372312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-07-16 20:19 - 2016-05-27 23:35 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2016-07-16 20:19 - 2016-05-27 23:29 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2016-07-16 20:19 - 2016-05-27 23:29 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2016-07-16 20:19 - 2016-05-27 23:28 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-07-16 20:19 - 2016-05-27 23:26 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-07-16 20:19 - 2016-05-27 23:26 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-07-16 20:19 - 2016-05-27 23:26 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2016-07-16 20:19 - 2016-05-27 23:25 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-07-16 20:19 - 2016-05-27 23:24 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ndu.sys
2016-07-16 20:19 - 2016-05-27 23:24 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-07-16 20:19 - 2016-05-27 23:24 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-07-16 20:19 - 2016-05-27 23:24 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-07-16 20:19 - 2016-05-27 23:23 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-07-16 20:19 - 2016-05-27 23:23 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2016-07-16 20:19 - 2016-05-27 23:22 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-07-16 20:19 - 2016-05-27 23:22 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2016-07-16 20:19 - 2016-05-27 23:22 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-07-16 20:19 - 2016-05-27 23:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-07-16 20:19 - 2016-05-27 23:21 - 00239104 _____ (Microsoft Corporation) C:\Windows\system32\BrokerLib.dll
2016-07-16 20:19 - 2016-05-27 23:21 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2016-07-16 20:19 - 2016-05-27 23:20 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2016-07-16 20:19 - 2016-05-27 23:20 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-07-16 20:19 - 2016-05-27 23:20 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-07-16 20:19 - 2016-05-27 23:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\GnssAdapter.dll
2016-07-16 20:19 - 2016-05-27 23:20 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Privacy.dll
2016-07-16 20:19 - 2016-05-27 23:20 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-07-16 20:19 - 2016-05-27 23:19 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-07-16 20:19 - 2016-05-27 23:19 - 00355840 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2016-07-16 20:19 - 2016-05-27 23:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2016-07-16 20:19 - 2016-05-27 23:18 - 00610816 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-07-16 20:19 - 2016-05-27 23:18 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2016-07-16 20:19 - 2016-05-27 23:18 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-07-16 20:19 - 2016-05-27 23:18 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2016-07-16 20:19 - 2016-05-27 23:18 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-07-16 20:19 - 2016-05-27 23:17 - 00963072 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-07-16 20:19 - 2016-05-27 23:17 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2016-07-16 20:19 - 2016-05-27 23:17 - 00278016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2016-07-16 20:19 - 2016-05-27 23:16 - 00690176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-07-16 20:19 - 2016-05-27 23:16 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-07-16 20:19 - 2016-05-27 23:16 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2016-07-16 20:19 - 2016-05-27 23:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-07-16 20:19 - 2016-05-27 23:16 - 00291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-07-16 20:19 - 2016-05-27 23:16 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-07-16 20:19 - 2016-05-27 23:15 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-07-16 20:19 - 2016-05-27 23:15 - 00293888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2016-07-16 20:19 - 2016-05-27 23:15 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-07-16 20:19 - 2016-05-27 23:14 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-07-16 20:19 - 2016-05-27 23:14 - 00200192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2016-07-16 20:19 - 2016-05-27 23:13 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2016-07-16 20:19 - 2016-05-27 23:13 - 00467456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2016-07-16 20:19 - 2016-05-27 23:12 - 00521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-07-16 20:19 - 2016-05-27 23:11 - 00890368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2016-07-16 20:19 - 2016-05-27 23:11 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2016-07-16 20:19 - 2016-05-27 23:06 - 01339904 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-07-16 20:19 - 2016-05-27 23:04 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\SyncController.dll
2016-07-16 20:19 - 2016-05-27 23:04 - 00450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncController.dll
2016-07-16 20:19 - 2016-05-27 23:03 - 01185280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationFramework.dll
2016-07-16 20:19 - 2016-05-27 23:03 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2016-07-16 20:19 - 2016-05-27 23:02 - 01534464 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2016-07-16 20:19 - 2016-05-27 23:02 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2016-07-16 20:19 - 2016-05-27 23:01 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2016-07-16 20:19 - 2016-05-27 23:00 - 01707520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-07-16 20:19 - 2016-05-27 23:00 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2016-07-16 20:19 - 2016-05-27 23:00 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2016-07-16 20:19 - 2016-05-27 23:00 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2016-07-16 20:19 - 2016-05-27 22:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2016-07-16 20:19 - 2016-05-27 22:58 - 01996288 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-07-16 20:19 - 2016-05-05 23:53 - 00095072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdport.sys
2016-07-16 20:19 - 2016-05-05 23:05 - 00241664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2016-07-16 20:19 - 2016-04-23 00:28 - 01542816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-07-16 20:19 - 2016-04-23 00:26 - 00707608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-07-16 20:19 - 2016-04-23 00:24 - 00754664 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2016-07-16 20:19 - 2016-04-23 00:24 - 00638816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-07-16 20:19 - 2016-04-23 00:24 - 00335712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2016-07-16 20:19 - 2016-04-23 00:24 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-07-16 20:19 - 2016-04-23 00:22 - 01161120 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-07-16 20:19 - 2016-04-23 00:11 - 00390496 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2016-07-16 20:19 - 2016-04-23 00:11 - 00131424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufxsynopsys.sys
2016-07-16 20:19 - 2016-04-23 00:07 - 00204048 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2016-07-16 20:19 - 2016-04-23 00:07 - 00183904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2016-07-16 20:19 - 2016-04-23 00:02 - 00188256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2016-07-16 20:19 - 2016-04-23 00:01 - 00513368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-07-16 20:19 - 2016-04-23 00:01 - 00217440 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2016-07-16 20:19 - 2016-04-23 00:00 - 01337240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-07-16 20:19 - 2016-04-23 00:00 - 00453472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2016-07-16 20:19 - 2016-04-23 00:00 - 00058208 _____ (Microsoft Corporation) C:\Windows\system32\dwminit.dll
2016-07-16 20:19 - 2016-04-22 23:34 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2016-07-16 20:19 - 2016-04-22 23:34 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\hmkd.dll
2016-07-16 20:19 - 2016-04-22 23:34 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-07-16 20:19 - 2016-04-22 23:33 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2016-07-16 20:19 - 2016-04-22 23:33 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmCx.sys
2016-07-16 20:19 - 2016-04-22 23:33 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\ByteCodeGenerator.exe
2016-07-16 20:19 - 2016-04-22 23:32 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\wificonnapi.dll
2016-07-16 20:19 - 2016-04-22 23:32 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-07-16 20:19 - 2016-04-22 23:29 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2016-07-16 20:19 - 2016-04-22 23:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filecrypt.sys
2016-07-16 20:19 - 2016-04-22 23:29 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2016-07-16 20:19 - 2016-04-22 23:29 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hmkd.dll
2016-07-16 20:19 - 2016-04-22 23:29 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-07-16 20:19 - 2016-04-22 23:28 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2016-07-16 20:19 - 2016-04-22 23:28 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2016-07-16 20:19 - 2016-04-22 23:28 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2016-07-16 20:19 - 2016-04-22 23:25 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll
2016-07-16 20:19 - 2016-04-22 23:25 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2016-07-16 20:19 - 2016-04-22 23:25 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2016-07-16 20:19 - 2016-04-22 23:24 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2016-07-16 20:19 - 2016-04-22 23:24 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEDataLayerHelpers.dll
2016-07-16 20:19 - 2016-04-22 23:23 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\BrowserSettingSync.dll
2016-07-16 20:19 - 2016-04-22 23:21 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-07-16 20:19 - 2016-04-22 23:20 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2016-07-16 20:19 - 2016-04-22 23:20 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-07-16 20:19 - 2016-04-22 23:19 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-07-16 20:19 - 2016-04-22 23:19 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BrowserSettingSync.dll
2016-07-16 20:19 - 2016-04-22 23:18 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-07-16 20:19 - 2016-04-22 23:18 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2016-07-16 20:19 - 2016-04-22 23:17 - 00388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-07-16 20:19 - 2016-04-22 23:16 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-07-16 20:19 - 2016-04-22 23:14 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2016-07-16 20:19 - 2016-04-22 23:14 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2016-07-16 20:19 - 2016-04-22 23:14 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-07-16 20:19 - 2016-04-22 23:13 - 00705536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-07-16 20:19 - 2016-04-22 23:13 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-07-16 20:19 - 2016-04-22 23:03 - 02193408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2016-07-16 20:19 - 2016-04-22 22:45 - 00461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2016-07-16 20:19 - 2016-04-22 21:10 - 00002186 _____ C:\Windows\system32\AppxProvisioning.xml
2016-07-16 20:19 - 2016-04-18 17:30 - 00002186 _____ C:\Windows\SysWOW64\AppxProvisioning.xml
2016-07-16 20:19 - 2016-04-01 23:10 - 00770640 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2016-07-16 20:19 - 2016-04-01 22:25 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\NotificationObjFactory.dll
2016-07-16 20:19 - 2016-04-01 22:25 - 00239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NotificationObjFactory.dll
2016-07-16 20:19 - 2016-03-29 05:15 - 00100232 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2016-07-16 20:19 - 2016-03-29 05:11 - 00686976 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-07-16 20:19 - 2016-03-29 05:05 - 01152864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-07-16 20:19 - 2016-03-29 05:02 - 00989536 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2016-07-16 20:19 - 2016-03-29 05:02 - 00334736 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2016-07-16 20:19 - 2016-03-29 04:56 - 01297752 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2016-07-16 20:19 - 2016-03-29 04:25 - 00058400 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2016-07-16 20:19 - 2016-03-29 04:19 - 00296488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2016-07-16 20:19 - 2016-03-29 04:18 - 00185184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2016-07-16 20:19 - 2016-03-29 04:11 - 00074424 _____ (Microsoft Corporation) C:\Windows\system32\easinvoker.exe
2016-07-16 20:19 - 2016-03-29 04:10 - 00110584 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
2016-07-16 20:19 - 2016-03-29 04:09 - 00078040 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
2016-07-16 20:19 - 2016-03-29 04:08 - 00358752 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-07-16 20:19 - 2016-03-29 04:08 - 00261376 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
2016-07-16 20:19 - 2016-03-29 04:07 - 00081144 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2016-07-16 20:19 - 2016-03-29 03:41 - 00051128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll
2016-07-16 20:19 - 2016-03-29 03:26 - 01089888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-07-16 20:19 - 2016-03-29 03:26 - 00073872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srvcli.dll
2016-07-16 20:19 - 2016-03-29 03:25 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkscli.dll
2016-07-16 20:19 - 2016-03-29 03:24 - 00294752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-07-16 20:19 - 2016-03-29 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.V2.dll
2016-07-16 20:19 - 2016-03-29 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2016-07-16 20:19 - 2016-03-29 03:07 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\dmenterprisediagnostics.dll
2016-07-16 20:19 - 2016-03-29 03:00 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\NetCfgNotifyObjectHost.exe
2016-07-16 20:19 - 2016-03-29 02:59 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe
2016-07-16 20:19 - 2016-03-29 02:57 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-07-16 20:19 - 2016-03-29 02:57 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2016-07-16 20:19 - 2016-03-29 02:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys
2016-07-16 20:19 - 2016-03-29 02:54 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-07-16 20:19 - 2016-03-29 02:51 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2016-07-16 20:19 - 2016-03-29 02:51 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2016-07-16 20:19 - 2016-03-29 02:50 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll
2016-07-16 20:19 - 2016-03-29 02:50 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2016-07-16 20:19 - 2016-03-29 02:50 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\OnDemandConnRouteHelper.dll
2016-07-16 20:19 - 2016-03-29 02:50 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2016-07-16 20:19 - 2016-03-29 02:49 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthLEEnum.sys
2016-07-16 20:19 - 2016-03-29 02:48 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2016-07-16 20:19 - 2016-03-29 02:36 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2016-07-16 20:19 - 2016-03-29 02:35 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\credprovhost.dll
2016-07-16 20:19 - 2016-03-29 02:34 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-07-16 20:19 - 2016-03-29 02:34 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2016-07-16 20:19 - 2016-03-29 02:30 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-07-16 20:19 - 2016-03-29 02:27 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-07-16 20:19 - 2016-03-29 02:23 - 00694784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2016-07-16 20:19 - 2016-03-29 02:22 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\AccountsRt.dll
2016-07-16 20:19 - 2016-03-29 02:20 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2016-07-16 20:19 - 2016-03-29 02:20 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.V2.dll
2016-07-16 20:19 - 2016-03-29 02:20 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll
2016-07-16 20:19 - 2016-03-29 02:19 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacchooks.dll
2016-07-16 20:19 - 2016-03-29 02:18 - 00676352 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2016-07-16 20:19 - 2016-03-29 02:12 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininetlui.dll
2016-07-16 20:19 - 2016-03-29 02:12 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-07-16 20:19 - 2016-03-29 02:11 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-07-16 20:19 - 2016-03-29 02:11 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2016-07-16 20:19 - 2016-03-29 02:09 - 01239552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-07-16 20:19 - 2016-03-29 02:08 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-07-16 20:19 - 2016-03-29 02:05 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll
2016-07-16 20:19 - 2016-03-29 02:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2016-07-16 20:19 - 2016-03-29 02:03 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-07-16 20:19 - 2016-03-29 02:02 - 02624512 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2016-07-16 20:19 - 2016-03-29 02:00 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2016-07-16 20:19 - 2016-03-29 02:00 - 00235008 _____ C:\Windows\system32\MTF.dll
2016-07-16 20:19 - 2016-03-29 02:00 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2016-07-16 20:19 - 2016-03-29 01:59 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-07-16 20:19 - 2016-03-29 01:59 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2016-07-16 20:19 - 2016-03-29 01:53 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2016-07-16 20:19 - 2016-03-29 01:53 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovhost.dll
2016-07-16 20:19 - 2016-03-29 01:52 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2016-07-16 20:19 - 2016-03-29 01:49 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2016-07-16 20:19 - 2016-03-29 01:43 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AccountsRt.dll
2016-07-16 20:19 - 2016-03-29 01:41 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2016-07-16 20:19 - 2016-03-29 01:39 - 00564224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2016-07-16 20:19 - 2016-03-29 01:36 - 03351040 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-07-16 20:19 - 2016-03-29 01:34 - 00682496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2016-07-16 20:19 - 2016-03-29 01:32 - 00638464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2016-07-16 20:19 - 2016-03-29 01:30 - 01139712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2016-07-16 20:19 - 2016-03-29 01:29 - 00256000 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2016-07-16 20:19 - 2016-03-29 01:27 - 00162816 _____ C:\Windows\SysWOW64\MTF.dll
2016-07-16 20:19 - 2016-03-29 01:17 - 00765952 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-07-16 20:19 - 2016-03-29 01:14 - 01072128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2016-07-16 20:19 - 2016-03-29 01:13 - 00592384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2016-07-16 20:19 - 2016-03-29 01:10 - 03671040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-07-16 20:19 - 2016-03-29 01:05 - 00361472 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2016-07-16 20:19 - 2016-03-29 00:45 - 03078144 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-07-16 20:19 - 2016-03-29 00:45 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2016-07-16 20:19 - 2016-03-29 00:43 - 00521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2016-07-16 20:19 - 2016-03-29 00:35 - 00821248 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2016-07-16 20:19 - 2016-03-29 00:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2016-07-16 20:19 - 2016-03-29 00:27 - 00794112 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2016-07-16 20:19 - 2016-03-29 00:26 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-07-16 20:19 - 2016-03-29 00:25 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-07-16 20:19 - 2016-03-29 00:21 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-07-16 20:19 - 2016-02-24 03:54 - 00127840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-07-16 20:19 - 2016-02-24 03:19 - 00670928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-07-16 20:19 - 2016-02-24 03:11 - 00258280 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2016-07-16 20:19 - 2016-02-24 03:09 - 00640472 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2016-07-16 20:19 - 2016-02-24 03:09 - 00147808 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2016-07-16 20:19 - 2016-02-24 02:35 - 00220064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll
2016-07-16 20:19 - 2016-02-24 02:33 - 00538736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2016-07-16 20:19 - 2016-02-24 02:33 - 00141664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2016-07-16 20:19 - 2016-02-24 02:30 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2016-07-16 20:19 - 2016-02-24 02:22 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll
2016-07-16 20:19 - 2016-02-24 02:19 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2016-07-16 20:19 - 2016-02-24 02:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-07-16 20:19 - 2016-02-24 02:10 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wpninprc.dll
2016-07-16 20:19 - 2016-02-24 02:09 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll
2016-07-16 20:19 - 2016-02-24 02:01 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2016-07-16 20:19 - 2016-02-24 02:00 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2016-07-16 20:19 - 2016-02-24 01:59 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2016-07-16 20:19 - 2016-02-24 01:58 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\scapi.dll
2016-07-16 20:19 - 2016-02-24 01:55 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExtrasXmlParser.dll
2016-07-16 20:19 - 2016-02-24 01:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2016-07-16 20:19 - 2016-02-24 01:54 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2016-07-16 20:19 - 2016-02-24 01:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTypeHelperUtil.dll
2016-07-16 20:19 - 2016-02-24 01:53 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2016-07-16 20:19 - 2016-02-24 01:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataLanguageUtil.dll
2016-07-16 20:19 - 2016-02-24 01:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PimIndexMaintenanceClient.dll
2016-07-16 20:19 - 2016-02-24 01:44 - 00915456 _____ (Microsoft Corporation) C:\Windows\system32\configurationclient.dll
2016-07-16 20:19 - 2016-02-24 01:44 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\POSyncServices.dll
2016-07-16 20:19 - 2016-02-24 01:40 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-07-16 20:19 - 2016-02-24 01:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataPlatformHelperUtil.dll
2016-07-16 20:19 - 2016-02-24 01:38 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2016-07-16 20:19 - 2016-02-24 01:32 - 00223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2016-07-16 20:19 - 2016-02-24 01:32 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentActivation.dll
2016-07-16 20:19 - 2016-02-24 01:31 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cemapi.dll
2016-07-16 20:19 - 2016-02-24 01:31 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2016-07-16 20:19 - 2016-02-24 01:28 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2016-07-16 20:19 - 2016-02-24 01:28 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2016-07-16 20:19 - 2016-02-24 01:25 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2016-07-16 20:19 - 2016-02-24 01:23 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll
2016-07-16 20:19 - 2016-02-24 01:22 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2016-07-16 20:19 - 2016-02-24 01:21 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2016-07-16 20:19 - 2016-02-24 01:18 - 00575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2016-07-16 20:19 - 2016-02-24 01:18 - 00184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2016-07-16 20:19 - 2016-02-24 01:16 - 00394752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2016-07-16 20:19 - 2016-02-24 01:13 - 00540160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2016-07-16 20:19 - 2016-02-24 01:09 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2016-07-16 20:19 - 2016-02-24 01:07 - 00949248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2016-07-16 20:19 - 2016-02-24 01:03 - 00769536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2016-07-16 20:19 - 2016-02-24 00:43 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\fwbase.dll
2016-07-16 20:19 - 2016-02-08 23:25 - 00304752 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2016-07-16 20:15 - 2016-07-16 20:15 - 00000000 ____D C:\Users\PK_2\AppData\Local\MicrosoftEdge
2016-07-16 20:14 - 2016-07-16 20:14 - 00000000 ____D C:\Users\PK_2\AppData\Local\NVIDIA Corporation
2016-07-16 20:14 - 2016-07-16 20:14 - 00000000 ____D C:\Users\PK_2\AppData\Local\CareCenter
2016-07-16 20:13 - 2016-07-16 20:13 - 00002360 _____ C:\Users\PK_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-07-16 20:13 - 2016-07-16 20:13 - 00001329 _____ C:\Users\PK_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HD Audio Manager.lnk
2016-07-16 20:13 - 2016-07-16 20:13 - 00000000 ___RD C:\Users\PK_2\OneDrive
2016-07-16 20:13 - 2016-07-16 20:13 - 00000000 ____D C:\Users\PK_2\AppData\Local\NVIDIA
2016-07-16 20:13 - 2016-07-16 20:13 - 00000000 ____D C:\Users\PK_2\AppData\Local\ActiveSync
2016-07-16 20:11 - 2016-08-02 19:58 - 00000000 __SHD C:\Users\PK_2\IntelGraphicsProfiles
2016-07-16 20:11 - 2016-08-01 19:55 - 00000000 ____D C:\Users\PK_2\AppData\Roaming\Adobe
2016-07-16 20:11 - 2016-08-01 15:38 - 00000000 ____D C:\Users\PK_2
2016-07-16 20:11 - 2016-07-19 13:02 - 00000000 ____D C:\Users\PK_2\AppData\Local\Packages
2016-07-16 20:11 - 2016-07-16 20:11 - 00003570 _____ C:\Windows\System32\Tasks\ACM Ignition
2016-07-16 20:11 - 2016-07-16 20:11 - 00000020 ___SH C:\Users\PK_2\ntuser.ini
2016-07-16 20:11 - 2016-07-16 20:11 - 00000000 _SHDL C:\Users\PK_2\My Documents
2016-07-16 20:11 - 2016-07-16 20:11 - 00000000 _SHDL C:\Users\PK_2\Documents\My Videos
2016-07-16 20:11 - 2016-07-16 20:11 - 00000000 _SHDL C:\Users\PK_2\Documents\My Pictures
2016-07-16 20:11 - 2016-07-16 20:11 - 00000000 _SHDL C:\Users\PK_2\Documents\My Music
2016-07-16 20:11 - 2016-07-16 20:11 - 00000000 ____D C:\Users\PK_2\AppData\Local\VirtualStore
2016-07-16 20:11 - 2016-07-16 20:11 - 00000000 ____D C:\Users\PK_2\AppData\Local\TileDataLayer
2016-07-16 20:11 - 2016-07-16 20:11 - 00000000 ____D C:\Users\PK_2\AppData\Local\Publishers
2016-07-16 20:10 - 2016-08-02 19:58 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-07-16 20:10 - 2016-07-16 20:10 - 00000000 ____D C:\Windows\oem

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-02 20:11 - 2016-03-30 02:57 - 00879220 _____ C:\Windows\system32\PerfStringBackup.INI
2016-08-02 20:11 - 2015-10-30 02:21 - 00000000 ____D C:\Windows\INF
2016-08-02 19:58 - 2016-02-13 08:14 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-02 19:58 - 2015-10-30 01:28 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-08-02 19:38 - 2016-02-13 08:11 - 00332240 _____ C:\Windows\system32\FNTCACHE.DAT
2016-08-02 19:28 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\system32\NDF
2016-08-02 18:43 - 2016-03-30 03:48 - 00000000 ____D C:\Windows\Panther
2016-08-01 21:49 - 2016-06-06 18:54 - 00019607 _____ C:\Windows\diagwrn.xml
2016-08-01 21:49 - 2016-06-06 18:54 - 00017745 _____ C:\Windows\diagerr.xml
2016-08-01 09:24 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\rescache
2016-07-31 07:12 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\AppReadiness
2016-07-30 06:27 - 2015-10-30 02:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-25 18:57 - 2015-10-30 02:11 - 00000000 ____D C:\Windows\CbsTemp
2016-07-23 16:04 - 2016-03-30 03:46 - 00003060 _____ C:\Windows\System32\Tasks\ACCBackgroundApplication
2016-07-23 16:04 - 2016-03-30 03:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2016-07-19 13:01 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\appcompat
2016-07-17 16:42 - 2016-06-06 17:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-07-17 16:34 - 2016-02-13 08:20 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-07-17 16:31 - 2016-02-13 08:03 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ___RD C:\Windows\PrintDialog
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ___RD C:\Windows\DevicesFlow
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\system32\oobe
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\system32\appraiser
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\Provisioning
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\bcastdvr
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Program Files\Windows Defender
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-07-17 16:31 - 2015-10-30 02:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-07-17 11:01 - 2016-06-06 18:52 - 00002074 _____ C:\Windows\System32\Tasks\FUBTrackingByPLD
2016-07-17 11:01 - 2016-06-06 18:43 - 00002256 _____ C:\Windows\System32\Tasks\Power Button
2016-07-17 11:01 - 2016-06-06 18:43 - 00002180 _____ C:\Windows\System32\Tasks\Quick Access
2016-07-17 11:01 - 2016-06-06 18:16 - 00003118 _____ C:\Windows\System32\Tasks\Intel PTT EK Recertification
2016-07-17 11:01 - 2016-03-30 03:46 - 00003852 _____ C:\Windows\System32\Tasks\ACCAgent
2016-07-16 20:27 - 2016-03-30 03:46 - 00000000 ____D C:\ProgramData\Acer
2016-07-16 20:14 - 2016-03-30 03:46 - 00000000 ____D C:\ProgramData\OEM
2016-07-16 20:11 - 2016-03-30 03:47 - 00000000 ___HD C:\OEM
2016-07-16 20:11 - 2015-10-30 02:24 - 00000000 ____D C:\Windows\system32\WinBioDatabase

==================== Files in the root of some directories =======

2016-07-17 16:55 - 2016-07-17 16:55 - 0007605 _____ () C:\Users\PK_2\AppData\Local\resmon.resmoncfg
2016-08-01 15:38 - 2016-08-01 15:38 - 0019456 _____ () C:\Users\PK_2\AppData\Local\WebpageIcons.db
2016-06-06 18:22 - 2016-06-06 18:22 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\PK_2\AppData\Local\Temp\{CADECDD9-DF22-460B-AF4C-FD956B5EE171}.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-30 18:31

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-07-2016
Ran by PK_2 (2016-08-02 21:25:29)
Running from C:\Users\PK_2\Downloads
Windows 10 Home Version 1511 (X64) (2016-07-17 01:10:48)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-795815909-478188834-3845176069-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-795815909-478188834-3845176069-503 - Limited - Disabled)
Guest (S-1-5-21-795815909-478188834-3845176069-501 - Limited - Disabled)
PK_2 (S-1-5-21-795815909-478188834-3845176069-1001 - Administrator - Enabled) => C:\Users\PK_2

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3023 - Acer Incorporated)
Acer Configuration Manager (HKLM\...\{9A75E3DC-7F6E-47BD-8971-53CF527B96D6}) (Version: 1.00.3001 - Acer Incorporated)
Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3003 - Acer Incorporated)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.017.20050 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.2.2276 - AVAST Software)
Cisco Packet Tracer 7.0 64Bit (HKLM\...\Cisco Packet Tracer 7.0 64Bit_is1) (Version:  - Cisco Systems, Inc.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5917.02 - CyberLink Corp.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3013 - Acer Incorporated)
ELAN HIDI2C Filter Driver X64 13.6.4.1_WHQL (HKLM\...\Elantech) (Version: 13.6.4.1 - ELAN Microelectronic Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel(R) Chipset Device Software (x32 Version: 10.1.1.13 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.2.1183 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4390 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.1.1030 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1519.7 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{CCBE9F01-C2C3-469C-A508-2E23A7495E91}) (Version: 1.0.0.609 - Intel Corporation)
Loaris Trojan Remover 2.0.9 (HKLM\...\{29988DC6-9C4A-49B2-AC86-5C380B29ADB9}_is1) (Version: 2.0.9 - Loaris, Inc.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.6001.1070 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
NVIDIA GeForce Experience 2.10.2.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.10.2.40 - NVIDIA Corporation)
NVIDIA Graphics Driver 362.03 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 362.03 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6001.1070 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6001.1070 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6001.1070 - Microsoft Corporation) Hidden
Qualcomm Atheros 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{3241744A-BA36-41F0-B4AA-EF3946D00632}) (Version: 11.0.0.10198 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.21287 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7773 - Realtek Semiconductor Corp.)
SafeZone Stable 1.51.2220.47 (x32 Version: 1.51.2220.47 - Avast Software) Hidden
SHIELD Streaming (Version: 5.1.0270 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.10.2.40 - NVIDIA Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-795815909-478188834-3845176069-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\PK_2\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-795815909-478188834-3845176069-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\PK_2\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0B751C94-BDAE-4F2A-8755-EF881DF00AED} - System32\Tasks\Trojan Remover => C:\Program Files\Loaris Trojan Remover\ltr.exe [2016-08-01] (Loaris Inc.)
Task: {181F054F-6A72-4906-BF72-D024247B763E} - System32\Tasks\ACM Ignition => C:\Program Files\Acer\Acer Configuration Manager\AWC.exe [2016-02-15] ()
Task: {373194EC-8702-4EAC-B886-3BD6201FFEA0} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-03-06] (Microsoft Corporation)
Task: {4DC41AB0-79D2-4859-9C4C-F441EF408477} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {4F4160B1-9ACF-4E85-897C-693C1C72D56B} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2016-03-10] (Acer Incorporated)
Task: {5CB1DFA7-3FC8-4BAB-84B4-7AB1FA33557D} - System32\Tasks\SafeZone scheduled Autoupdate 1468718694 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-07-25] (Avast Software)
Task: {64B149BC-6F58-495F-BEAC-E1B805C6B313} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-16] (Google Inc.)
Task: {6514B297-837F-487A-AC4F-1E80937F2997} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2016-03-10] (Acer Incorporated)
Task: {73F8A45B-C1C2-496B-ABE1-76551C85CE0E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-03-06] (Microsoft Corporation)
Task: {A933B5C3-963B-4E7F-BB30-858620A163C1} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2016-01-20] ()
Task: {B274FC7C-BF77-4A23-82B2-5E4BBA6966D6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-03-06] (Microsoft Corporation)
Task: {CEA3EBC1-28D2-40D5-B9C8-D4E2611F5A1E} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [2016-01-20] ()
Task: {DE31C76D-72C1-424F-B089-B3D5A254B209} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-01-14] (Intel(R) Corporation)
Task: {EB7FD908-BF90-4BA3-82BF-63151C5D92B7} - System32\Tasks\FUBTrackingByPLD => C:\OEM\Preload\FubTracking\FubTracking.exe [2015-05-14] ()
Task: {F4274A6D-48E7-492A-A879-ABC548AF00ED} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-07-28] (AVAST Software)
Task: {F9451C1D-1E77-471E-B3F3-7EC469891694} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-16] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 02:18 - 2015-10-30 02:18 - 00185856 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-06-06 18:34 - 2016-02-25 22:04 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-27 12:32 - 2016-07-27 12:32 - 04566016 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Devices\4f2f65ce5dff18cbe602b6465e746258\Windows.Devices.ni.dll
2016-07-27 12:32 - 2016-07-27 12:32 - 00497664 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\0c168de19f2576f13020da2bdb2a6d56\Windows.Foundation.ni.dll
2015-12-02 19:37 - 2015-12-02 19:37 - 05570064 _____ () C:\Windows\system32\IntelSSTAPO\ParameterService\libxml2-2.dll
2016-06-06 17:48 - 2016-03-06 13:34 - 00171712 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2016-06-06 18:34 - 2016-02-17 01:56 - 01416064 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-06-06 18:34 - 2016-02-17 01:56 - 00299392 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-06-06 18:34 - 2016-02-17 01:56 - 03613056 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-07-16 20:19 - 2016-06-30 23:48 - 02656408 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-07-16 20:19 - 2016-06-30 23:48 - 02656408 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-07-16 20:13 - 2016-07-16 20:13 - 00959168 _____ () C:\Users\PK_2\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-06-06 17:48 - 2016-06-06 17:48 - 08911040 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2016-02-13 07:54 - 2016-02-13 07:54 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-16 20:20 - 2016-06-30 22:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-20 13:50 - 2016-01-20 13:50 - 04644256 _____ () C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
2016-02-15 15:56 - 2016-02-15 15:56 - 00422304 _____ () C:\Program Files\Acer\Acer Configuration Manager\AWC.exe
2016-07-16 20:19 - 2016-06-30 22:27 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-16 20:19 - 2016-06-30 22:21 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-16 20:19 - 2016-06-30 22:22 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-16 20:19 - 2016-06-30 22:24 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-07-17 16:57 - 2016-07-17 16:57 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-07-16 20:21 - 2016-06-23 08:26 - 02336584 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.106\libglesv2.dll
2016-07-16 20:21 - 2016-06-23 08:25 - 00107336 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.106\libegl.dll
2016-07-28 19:24 - 2016-07-28 19:24 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-08-02 15:21 - 2016-08-02 15:21 - 03002880 _____ () C:\Program Files\AVAST Software\Avast\defs\16080201\algo.dll
2016-07-28 19:24 - 2016-07-28 19:24 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-06-06 18:34 - 2016-02-17 02:02 - 00020352 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-07-16 20:13 - 2016-07-16 20:13 - 00679624 _____ () C:\Users\PK_2\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-07-16 20:23 - 2016-07-16 20:23 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-02-11 19:47 - 2016-02-11 19:47 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-07-17 16:57 - 2016-07-17 16:57 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-07-17 16:57 - 2016-07-17 16:57 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 02:24 - 2015-10-30 02:21 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-795815909-478188834-3845176069-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\signature\signature01.jpg
HKU\S-1-5-21-795815909-478188834-3845176069-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\signature\signature01.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{7F4FB032-D241-40E0-8EDE-E9BC70999A52}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{3EF23E83-F6F4-4F80-A7B9-473EEF970469}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{56922C5C-E20E-4871-BACF-9CABEDC40460}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{A78C0C77-5A2F-41F2-B2A5-5F58ECF76245}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe

==================== Restore Points =========================

16-07-2016 20:09:57 Windows Modules Installer
25-07-2016 18:57:18 Windows Modules Installer
01-08-2016 20:48:58 Removed Functional Ear Trainer

==================== Faulty Device Manager Devices =============

Name: Qualcomm Atheros QCA9377 Wireless Network Adapter
Description: Qualcomm Atheros QCA9377 Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: Qcamain10x64
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/02/2016 08:17:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (08/02/2016 08:17:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (08/02/2016 08:07:57 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (08/02/2016 07:57:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: a2guard.exe, version: 11.10.0.6563, time stamp: 0x5797c7e7
Faulting module name: ntdll.dll, version: 10.0.10586.306, time stamp: 0x571af2eb
Exception code: 0xc000070a
Fault offset: 0x00000000000f5639
Faulting process id: 0xe80
Faulting application start time: 0xa2guard.exe0
Faulting application path: a2guard.exe1
Faulting module path: a2guard.exe2
Report Id: a2guard.exe3
Faulting package full name: a2guard.exe4
Faulting package-relative application ID: a2guard.exe5

Error: (08/02/2016 05:53:55 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-L0JQP3LB)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (08/01/2016 08:49:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (08/01/2016 08:44:18 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (07/31/2016 07:15:08 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (07/29/2016 09:02:01 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (07/27/2016 09:50:03 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8


System errors:
=============
Error: (08/02/2016 08:19:56 PM) (Source: VDS Basic Provider) (EventID: 5) (User: )
Description: Cannot zero sectors on disk \\?\PhysicalDrive1. Error code: 5@0101000F

Error: (08/02/2016 07:58:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_398d2 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 07:58:18 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/02/2016 07:38:08 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {7006698D-2974-4091-A424-85DD0B909E23}

Error: (08/02/2016 07:38:08 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {7006698D-2974-4091-A424-85DD0B909E23}

Error: (08/02/2016 07:38:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_4f411 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 07:38:07 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/02/2016 07:19:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_47dca service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 07:19:30 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/02/2016 07:17:52 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-L0JQP3LB)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}LAPTOP-L0JQP3LBPK_2S-1-5-21-795815909-478188834-3845176069-1001LocalHost (Using LRPC)Microsoft.Windows.FeatureOnDemand.InsiderHub_10.0.10586.0_neutral_neutral_cw5n1h2txyewyS-1-15-2-4016783169-893401051-2237370320-274899566-412088533-2398988950-2155762795


CodeIntegrity:
===================================
  Date: 2016-07-27 13:45:17.834
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-25 18:58:16.002
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-17 16:32:32.128
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-16 20:32:37.152
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-16 20:25:25.816
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-16 20:14:05.390
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-16 20:11:17.419
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Percentage of memory in use: 43%
Total physical RAM: 8065.9 MB
Available physical RAM: 4550.43 MB
Total Virtual: 9345.9 MB
Available Virtual: 5992.45 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.87 GB) (Free:210.85 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: DAF77464)

Partition: GPT.

==================== End of Addition.txt ============================

Link to post
Share on other sites

Yes it's safe but you should empty those every now and then,.

If you have a lot of them, it can prevent being able to add more.

Please open Malwarebytes.
 
Open Malwarebytes (MBAM) > History > Quarantine > Delete All
Open Malwarebytes (MBAM) > History > Application Logs > Delete All

Link to post
Share on other sites

Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.