YeaDesktop

Zpráva

Mave · #1 Příspěvek od **Mave** » 18 črc 2017 14:38

Ahoj.

Prosím o pomoc při odstranění viru(?) YeaDesktop.

Děkuji.

Log z RSIT
---------

info.txt logfile of random's system information tool 1.16 2017-07-18 15:19:57

====== MBR ======

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

====== Uninstall list ======

1.0.0.1 [20170718]-->"C:\Program Files (x86)\YeaDesktop\unins000.exe"
Adobe Acrobat Reader DC - Czech [20170714]-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AC0F074E4100}
Adobe Flash Player 26 NPAPI [2017/07/12 09:49:51]-->C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_26_0_0_137_Plugin.exe -maintain plugin
Adobe Refresh Manager [20170617]-->MsiExec.exe /I{AC76BA86-0804-1033-1959-001824225037}
Adobe Shockwave Player 12.2 [20161007]-->MsiExec.exe /X{315BE77E-D725-477D-9C71-63F78844363C}
AMD Install Manager [2016/10/18 12:41:46]-->"C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe" /UNINSTALL /IGNORE_UPGRADE /ON_REBOOT_MESSAGE:NO
AMD Install Manager [20161018]-->msiexec /q/x{80595353-6197-2EB6-F14C-C1F4AC093311} REBOOT=ReallySuppress
AVG [20170718]-->MsiExec.exe /I{434FBA38-0562-4F98-9436-4B45C0C0EF0B}
AVG PC TuneUp [2017/06/30 02:31:34]-->C:\Program Files (x86)\AVG\AVG PC TuneUp\..\Setup\avgsetupx.exe /mode=offline /uninstall=tu /tu.show_installation_page=1
AVG Protection [2017/07/17 06:13:18]-->C:\Program Files (x86)\AVG\Setup\avgsetupx.exe /mode=offline /uninstall=bav
AVG Web TuneUp [2017/06/16 17:26:54]-->C:\Program Files (x86)\AVG Web TuneUp\UNINSTALL.exe /PROMPT /UNINSTALL
BS.Player FREE [2016/09/28 12:48:54]-->"C:\Program Files (x86)\Webteh\BSPlayer\uninstall.exe"
CCleaner [2016/10/09 22:24:18]-->"C:\Program Files\CCleaner\uninst.exe"
CDBurnerXP [20170218]-->"C:\Program Files (x86)\CDBurnerXP\unins000.exe"
Facebook Gameroom 1.4.6373.26636 [20170716]-->MsiExec.exe /I{62E64CE0-AA1E-4F83-BC24-86D9AD6A1C30}
FMW 1 [20170704]-->MsiExec.exe /I{8DF0D8D9-0C24-47EB-9738-376DD2705133}
FormatFactory 4.0.0.0 [2017/02/01 16:53:44]-->C:\Program Files (x86)\FormatFactory\uninst.exe
Google Chrome [20160907]-->"C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\Installer\setup.exe" --uninstall --system-level --verbose-logging
Google Update Helper [20160907]-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Update Helper [20170430]-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Intel® RealSense™ SDK 2014 Runtime (x64): Core [20161030]-->MsiExec.exe /X{37D41A97-6B02-4C30-8753-85107BE1D674}
Lenovo EasyCamera [2016/09/08 20:55:31]-->"C:\Program Files (x86)\USB Camera\vm331Rmv.exe" vm331Rmv.ini
LibreOffice 5.2.3.3 [20170101]-->MsiExec.exe /I{CDBD2338-897B-432E-8424-EBC1290493DF}
Microsoft OneDrive [2017/04/15 11:20:28]-->C:\Users\já\AppData\Local\Microsoft\OneDrive\17.3.6799.0327_1\OneDriveSetup.exe /uninstall
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [20160916]-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 [20160916]-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [20160916]-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 [2016/09/08 20:57:40]-->"C:\ProgramData\Package Cache\{15134cb0-b767-4960-a911-f2d16ae54797}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 [2016/09/08 20:57:33]-->"C:\ProgramData\Package Cache\{22154f09-719a-4619-bb71-5b3356999fbf}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 [20160908]-->MsiExec.exe /X{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 [20160908]-->MsiExec.exe /X{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 [20160908]-->MsiExec.exe /X{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 [20160908]-->MsiExec.exe /X{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 [2016/10/30 16:35:23]-->"C:\ProgramData\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 [20161030]-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 [20161030]-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 [2016/11/18 09:38:28]-->"C:\ProgramData\Package Cache\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}\VC_redist.x86.exe" /uninstall
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24212 [20161118]-->MsiExec.exe /X{844ECB74-9B63-3D5C-958C-30BD23F19EE4}
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24212 [20161118]-->MsiExec.exe /X{37B55901-995A-3650-80B1-BBFD047E2911}
Mozilla Firefox 54.0.1 (x64 cs) [2017/07/01 02:08:16]-->"C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service [2017/06/30 17:47:56]-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
Online Application [20170718]-->MsiExec.exe /X{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
PicosmosTools 1.8.5.0 [2017/04/16 19:07:12]-->C:\Program Files (x86)\PicosmosTools\uninst.exe
PlaysTV [2017/06/30 16:21:08]-->"C:\Program Files (x86)\Raptr Inc\PlaysTV\uninstall.exe"
Pomocník při upgradu na Windows 10 [2016/09/08 21:09:57]-->"C:\Windows10Upgrade\Windows10UpgraderApp.exe" /Uninstall
Prohlížeč Seznam.cz [2017/04/16 19:13:33]-->"C:\Users\já\AppData\Roaming\Seznam Browser\uninstall.exe"
Raptr [2017/06/04 16:43:18]-->"C:\Program Files (x86)\Raptr Inc\Raptr\uninstall.exe"
Seznam Software [2017/06/15 18:15:07]-->"C:\Users\já\AppData\Roaming\Seznam.cz\szninstall.exe" -X
Synaptics Pointing Device Driver [2016/09/08 20:55:04]-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Unity Web Player [2016/10/07 18:38:25]-->C:\Users\já\AppData\Local\Unity\WebPlayer\Uninstall.exe /CurrentUser
Visual Studio 2012 x64 Redistributables [20160902]-->MsiExec.exe /I{8C775E70-A791-4DA8-BCC3-6AB7136F4484}
Visual Studio 2012 x86 Redistributables [20160902]-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
Windows 10 Update and Privacy Settings [20170710]-->MsiExec.exe /X{4DFCD818-036A-4229-A67D-CF17DC461D92}
WinRAR 5.31 (64-bit) [2016/09/10 18:06:05]-->C:\Program Files\WinRAR\uninstall.exe
YTD Video Downloader 5.8.3 [2017/06/14 02:21:27]-->"C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\uninstall.exe"

====== System event log ======

Computer Name: DESKTOP-I1NJ20H
Event Code: 1014
Message: Překlad názvu x64.yeamini.com nebyl v požadované době dokončen. Žádný z nakonfigurovaných serverů DNS neodpověděl.
Record Number: 20260
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20170718121921.208088-000
Event Type: Upozornění
User: NT AUTHORITY\NETWORK SERVICE

Computer Name: DESKTOP-I1NJ20H
Event Code: 4003
Message: Služba Automatická konfigurace sítě WLAN zjistila při resetování nebo zotavení adaptéru omezené připojení.

Kód: 8 0x0 0x0

Record Number: 20259
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20170718120925.236051-000
Event Type: Chyba
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-I1NJ20H
Event Code: 4003
Message: Služba Automatická konfigurace sítě WLAN zjistila při resetování nebo zotavení adaptéru omezené připojení.

Kód: 2 0xDEADDEED 0xEEEC

Record Number: 20258
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20170718120920.531908-000
Event Type: Chyba
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-I1NJ20H
Event Code: 4003
Message: Služba Automatická konfigurace sítě WLAN zjistila při resetování nebo zotavení adaptéru omezené připojení.

Kód: 1 0xC 0x4

Record Number: 20257
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20170718120920.531899-000
Event Type: Chyba
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-I1NJ20H
Event Code: 1014
Message: Překlad názvu avast.com nebyl v požadované době dokončen. Žádný z nakonfigurovaných serverů DNS neodpověděl.
Record Number: 20253
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20170718120457.190865-000
Event Type: Upozornění
User: NT AUTHORITY\NETWORK SERVICE
====== Application event log ======

Computer Name: DESKTOP-I1NJ20H
Event Code: 1000
Message: Název chybující aplikace: firefox.exe, verze: 54.0.1.6388, časové razítko: 0x5953d2cc
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x000002a49dd351b0
ID chybujícího procesu: 0x2048
Čas spuštění chybující aplikace: 0x01d2ffc55e7e7d2b
Cesta k chybující aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: bfa5dab2-1bda-4bb0-ae44-30640960f877
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Record Number: 44358
Source Name: Application Error
Time Written: 20170718130415.374417-000
Event Type: Chyba
User:

Computer Name: DESKTOP-I1NJ20H
Event Code: 1000
Message: Název chybující aplikace: explorer.exe, verze: 10.0.14393.1378, časové razítko: 0x594a1517
Název chybujícího modulu: C_02iu57.dat_unloaded, verze: 6.8.4.6, časové razítko: 0x596dd3f0
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002d5e0
ID chybujícího procesu: 0x1e0c
Čas spuštění chybující aplikace: 0x01d2ffc3158fae08
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C_02iu57.dat
ID zprávy: e6c2cfa6-5258-460f-adaf-e8ee00e2c5ae
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Record Number: 44340
Source Name: Application Error
Time Written: 20170718124054.586640-000
Event Type: Chyba
User:

Computer Name: DESKTOP-I1NJ20H
Event Code: 903
Message: Služba Ochrana softwaru byla ukončena.

Record Number: 44339
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20170718124020.925441-000
Event Type: Informace
User:

Computer Name: DESKTOP-I1NJ20H
Event Code: 902
Message: Služba Ochrana softwaru byla spuštěna.
10.0.14393.351
Record Number: 44330
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20170718123940.232713-000
Event Type: Informace
User:

Computer Name: DESKTOP-I1NJ20H
Event Code: 903
Message: Služba Ochrana softwaru byla ukončena.

Record Number: 44326
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20170718123906.303935-000
Event Type: Informace
User:
====== Security event log ======

Computer Name: DESKTOP-I1NJ20H
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7

Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
SeDelegateSessionUserImpersonatePrivilege
Record Number: 119416
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170718131743.728301-000
Event Type: Úspěšný audit
User:

Computer Name: DESKTOP-I1NJ20H
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-I1NJ20H$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Informace o přihlášení:
Typ přihlášení: 5
Omezený režim správce: -
Virtuální účet: Ne
Token se zvýšeným oprávněním: Ano

Úroveň zosobnění: Zosobnění

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
ID propojeného přihlášení: 0x0
Název účtu v síti: -
Doména účtu v síti: -
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x2a8
Název procesu: C:\Windows\System32\services.exe

Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě: -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (jenom NTLM): -
Délka klíče: 0

Tato událost je vygenerována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole předmětu označují účet v místním systému, který si vyžádal přihlášení. Obvykle se jedná o službu, například serverovou službu, nebo o místní proces, například Winlogon.exe nebo Services.exe.

Pole typu přihlášení označuje druh přihlášení, které proběhlo. Nejčastější typy jsou 2 (interaktivní) a 3 (síťové).

Pole Nové přihlášení označují účet, pro který bylo vytvořeno nové přihlášení, tj. přihlášený účet.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují pomocné služby, které se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje dílčí protokol z protokolů NTLM, který byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 119415
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170718131743.728267-000
Event Type: Úspěšný audit
User:

Computer Name: DESKTOP-I1NJ20H
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7

Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
SeDelegateSessionUserImpersonatePrivilege
Record Number: 119414
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170718130412.780240-000
Event Type: Úspěšný audit
User:

Computer Name: DESKTOP-I1NJ20H
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-I1NJ20H$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Informace o přihlášení:
Typ přihlášení: 5
Omezený režim správce: -
Virtuální účet: Ne
Token se zvýšeným oprávněním: Ano

Úroveň zosobnění: Zosobnění

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
ID propojeného přihlášení: 0x0
Název účtu v síti: -
Doména účtu v síti: -
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x2a8
Název procesu: C:\Windows\System32\services.exe

Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě: -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (jenom NTLM): -
Délka klíče: 0

Tato událost je vygenerována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole předmětu označují účet v místním systému, který si vyžádal přihlášení. Obvykle se jedná o službu, například serverovou službu, nebo o místní proces, například Winlogon.exe nebo Services.exe.

Pole typu přihlášení označuje druh přihlášení, které proběhlo. Nejčastější typy jsou 2 (interaktivní) a 3 (síťové).

Pole Nové přihlášení označují účet, pro který bylo vytvořeno nové přihlášení, tj. přihlášený účet.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují pomocné služby, které se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje dílčí protokol z protokolů NTLM, který byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 119413
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170718130412.780210-000
Event Type: Úspěšný audit
User:

Computer Name: DESKTOP-I1NJ20H
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7

Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
SeDelegateSessionUserImpersonatePrivilege
Record Number: 119412
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170718130248.438102-000
Event Type: Úspěšný audit
User:
====== Environment variables ======

"ComSpec" = %SystemRoot%\system32\cmd.exe
"OS" = Windows_NT
"Path" = %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
"PATHEXT" = .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE" = AMD64
"TEMP" = %SystemRoot%\TEMP
"TMP" = %SystemRoot%\TEMP
"USERNAME" = SYSTEM
"windir" = %SystemRoot%
"NUMBER_OF_PROCESSORS" = 2
"PROCESSOR_LEVEL" = 20
"PROCESSOR_IDENTIFIER" = AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION" = 0200
"PSModulePath" = %SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 18 črc 2017 17:15

Zdravím!
Log z info.txt je pro tento účel k ničemu. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

Mave · #3 Příspěvek od **Mave** » 18 črc 2017 20:17

Zdravím a děkuji za pomoc.

Log z FRST (1/2) + Addition.zip v příloze
-----------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2017
Ran by já (administrator) on DESKTOP-I1NJ20H (18-07-2017 21:00:42)
Running from C:\Users\já\Desktop
Loaded Profiles: já (Available Profiles: já)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\afwServ.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Copyright (c) 2017 Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Facebook) C:\Users\já\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Copyright (c) 2017 Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\Raptr Inc\PlaysTV\QtWebEngineProcess.exe
() C:\Program Files (x86)\Raptr Inc\PlaysTV\QtWebEngineProcess.exe
(The CefSharp Authors) C:\Users\já\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
() C:\Program Files (x86)\Raptr Inc\PlaysTV\QtWebEngineProcess.exe
() C:\Program Files (x86)\Raptr Inc\PlaysTV\QtWebEngineProcess.exe
() C:\Program Files (x86)\Raptr Inc\PlaysTV\QtWebEngineProcess.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_ep64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3951280 2016-09-01] (Synaptics Incorporated)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-07-03] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [263232 2017-06-03] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [571928 2016-09-01] (Vimicro)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-07-03] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2184776 2017-06-16] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [51416 2017-06-29] (Copyright (c) 2017 Plays.tv, LLC)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1325302123-2493504548-3556038974-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8912088 2016-08-26] (Piriform Ltd)
ShellExecuteHooks: No Name - {5F51FFFE-7463-4220-B711-E5B9ACB8EDFE} - C:\Windows\C_02iu57.dat [2021376 2017-07-18] (Micrasaft Carparation)
Startup: C:\Users\já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-07-16]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\já\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
Startup: C:\Users\já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Games Arcade (BETA).lnk [2016-10-05]
ShortcutTarget: Facebook Games Arcade (BETA).lnk -> C:\Users\já\AppData\Local\Facebook\Games\FacebookGames.exe (No File)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{9a1072b5-7d83-4357-9631-f614bd8307d1}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-1325302123-2493504548-3556038974-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid=%7BA00073B3-31F7-443E-A512-E62D047560FD%7D&mid=94fd27daa6df47cfb87c0d47e78cee3c-d03332c5955b46d9f6f35e72b3afd193bf316e95&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0516piz&pr=fr&d=2016-09-02%2004:33:34&v=4.3.4.122&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-1325302123-2493504548-3556038974-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={A00073B3-31F7-443E-A512-E62D047560FD}&mid=94fd27daa6df47cfb87c0d47e78cee3c-d03332c5955b46d9f6f35e72b3afd193bf316e95&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0516piz&pr=fr&d=2016-09-02 04:33:34&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1325302123-2493504548-3556038974-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={A00073B3-31F7-443E-A512-E62D047560FD}&mid=94fd27daa6df47cfb87c0d47e78cee3c-d03332c5955b46d9f6f35e72b3afd193bf316e95&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0516piz&pr=fr&d=2016-09-02 04:33:34&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1325302123-2493504548-3556038974-1001 -> {96EFD6F6-D95A-4674-81DD-74329063DE12} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.8.510\AVG Web TuneUp.dll [2017-06-16] (AVG)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.8.510\AVG Web TuneUp.dll [2017-06-16] (AVG)

FireFox:
========
FF ProfilePath: C:\Users\já\AppData\Roaming\Mozilla\Firefox\Profiles\ywxsc6x3.default-1477478699744 [2017-07-18]
FF Homepage: Mozilla\Firefox\Profiles\ywxsc6x3.default-1477478699744 -> http://www.seznam.cz
FF Extension: (Emoji Cheatsheet for GitHub, Basecamp etc.) - C:\Users\já\AppData\Roaming\Mozilla\Firefox\Profiles\ywxsc6x3.default-1477478699744\Extensions\jid1-Xo5SuA6qc1DFpw@jetpack.xpi [2017-07-17]
FF Extension: (Seznam lištička) - C:\Users\já\AppData\Roaming\Mozilla\Firefox\Profiles\ywxsc6x3.default-1477478699744\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-05-13]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll [2017-07-12] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-12] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw.dll [2015-11-18] (Adobe Systems, Inc.)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @haitao.com/npHaitaoPlugin -> C:\Users\já\AppData\Local\htyh\application\htwebHelper.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1325302123-2493504548-3556038974-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\já\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)

Chrome:
=======
CHR Profile: C:\Users\já\AppData\Local\Google\Chrome\User Data\Default [2017-07-18]
CHR Extension: (Docs) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-07-18]
CHR Extension: (Disk Google) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-18]
CHR Extension: (YouTube) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-18]
CHR Extension: (Gmail) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-18]
CHR Profile: C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha [2017-07-18] <==== ATTENTION
CHR Extension: (Prezentace Google) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-07]
CHR Extension: (海淘1号) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\aeppgfljjlhcnnbddcccndljodpdkpdh [2017-07-03]
CHR Extension: (Dokumenty Google) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-17]
CHR Extension: (Disk Google) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-17]
CHR Extension: (Seznam Lištička - Email) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-07-10]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-07-18]
CHR Extension: (YouTube) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-17]
CHR Extension: (AVG Secure Search) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2017-02-01]
CHR Extension: (Adobe Acrobat) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-07-18]
CHR Extension: (Tabulky Google) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-07-10]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-07-18]
CHR Extension: (Gmail) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-17]
CHR Extension: (Chrome Media Router) - C:\Users\já\AppData\Local\Google\Chrome\User Data\Default - zaloha\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-18]
CHR HKU\S-1-5-21-1325302123-2493504548-3556038974-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [aeppgfljjlhcnnbddcccndljodpdkpdh] - <not found>
CHR HKU\S-1-5-21-1325302123-2493504548-3556038974-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [264432 2017-06-03] (AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [311624 2017-06-03] (AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7396872 2017-06-03] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-07-03] (AVG Technologies CZ, s.r.o.)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [55000 2017-06-29] (Copyright (c) 2017 Plays.tv, LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246448 2016-09-01] (Synaptics Incorporated)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-02-21] (AVG Technologies CZ, s.r.o.)
R2 vToolbarUpdater40.3.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [1354824 2017-06-16] (AVG Secure Search)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [981576 2017-06-16] ()
S2 AdService; C:\Users\já\AppData\Local\AdService\AdService.dll [X] <==== ATTENTION

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgbdisk; C:\WINDOWS\system32\drivers\avgbdiska.sys [166624 2017-06-03] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\system32\drivers\avgbidsdrivera.sys [314128 2017-06-03] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\system32\drivers\avgbidsha.sys [192584 2017-06-03] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\system32\drivers\avgbloga.sys [336896 2017-06-03] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\system32\drivers\avgbuniva.sys [51336 2017-06-03] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\system32\drivers\avgHwid.sys [39424 2017-06-03] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\system32\drivers\avgMonFlt.sys [129776 2017-06-03] (AVG Technologies CZ, s.r.o.)
R1 avgNetSec; C:\WINDOWS\system32\drivers\avgNetSec.sys [509056 2017-06-03] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\system32\drivers\avgRdr2.sys [102280 2017-06-03] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\system32\drivers\avgRvrt.sys [76832 2017-06-03] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\system32\drivers\avgSnx.sys [1008288 2017-06-03] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\system32\drivers\avgSP.sys [570320 2017-06-03] (AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\WINDOWS\system32\drivers\avgStm.sys [160008 2017-06-03] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\system32\drivers\avgVmm.sys [340824 2017-06-03] (AVG Technologies CZ, s.r.o.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [7585280 2016-07-16] (Broadcom Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 rtux64w10; C:\WINDOWS\System32\drivers\rtux64w10.sys [333824 2016-07-16] (Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2017-01-31] (SlimWare Utilities, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2016-08-19] (AVG Netherlands B.V.)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [648872 2016-09-01] (Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 wfcre; C:\WINDOWS\System32\drivers\wfcre.sys [124288 2017-07-04] ()

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-18 21:00 - 2017-07-18 21:02 - 00017836 _____ C:\Users\já\Desktop\FRST.txt
2017-07-18 21:00 - 2017-07-18 21:00 - 00000000 ____D C:\FRST
2017-07-18 20:55 - 2017-07-18 20:56 - 02435584 _____ (Farbar) C:\Users\já\Desktop\FRST64.exe
2017-07-18 19:58 - 2017-07-18 19:58 - 00038188 _____ C:\Users\já\Documents\zaloha-registry-cc_20170718_195835.reg
2017-07-18 17:51 - 2017-07-18 17:51 - 00000000 ____D C:\Users\já\AppData\Local\ElevatedDiagnostics
2017-07-18 17:37 - 2017-07-18 17:37 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-07-18 17:30 - 2017-07-18 17:31 - 00000000 ____D C:\Users\já\AppData\Roaming\Raptr
2017-07-18 15:18 - 2017-07-18 15:19 - 00000000 ____D C:\rsit
2017-07-18 15:18 - 2017-07-18 15:18 - 00000000 ____D C:\Program Files\trend micro
2017-07-18 15:16 - 2017-07-18 15:17 - 01329152 _____ C:\Users\já\Desktop\RSITx64.exe
2017-07-18 14:36 - 2017-07-18 14:40 - 00000000 ____D C:\Program Files\KMSpico
2017-07-18 14:07 - 2017-07-18 14:07 - 00000000 ___HD C:\$AV_AVG
2017-07-18 14:00 - 2017-07-18 14:00 - 00016828 _____ C:\WINDOWS\System32\Tasks\Pensian Analyser
2017-07-18 13:59 - 2017-07-18 13:59 - 00000000 ____D C:\Users\já\AppData\Roaming\UCChannel
2017-07-18 13:59 - 2017-07-18 13:59 - 00000000 ____D C:\ProgramData\Microleaves
2017-07-18 13:58 - 2017-07-18 14:07 - 00000000 ____D C:\Program Files (x86)\YeaDesktop
2017-07-18 13:58 - 2017-07-18 13:58 - 00000000 ____D C:\Users\Public\Documents\XMUpdate
2017-07-18 13:58 - 2017-07-18 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YeaDesktop
2017-07-18 13:56 - 2017-07-18 14:02 - 00000414 _____ C:\WINDOWS\Tasks\Updater_Online_Application.job
2017-07-18 13:56 - 2017-07-18 14:02 - 00000382 _____ C:\WINDOWS\Tasks\Online Application V2G3.job
2017-07-18 13:56 - 2017-07-18 14:02 - 00000382 _____ C:\WINDOWS\Tasks\Online Application V2G2.job
2017-07-18 13:56 - 2017-07-18 14:02 - 00000382 _____ C:\WINDOWS\Tasks\Online Application V2G1.job
2017-07-18 13:56 - 2017-07-18 13:56 - 00003308 _____ C:\WINDOWS\System32\Tasks\Updater_Online_Application
2017-07-18 13:56 - 2017-07-18 13:56 - 00003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G3
2017-07-18 13:56 - 2017-07-18 13:56 - 00003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G2
2017-07-18 13:56 - 2017-07-18 13:56 - 00003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G1
2017-07-18 13:56 - 2017-07-18 13:56 - 00000000 ____D C:\Program Files (x86)\Microleaves
2017-07-18 13:55 - 2017-07-18 13:55 - 00000000 ____D C:\Users\já\AppData\Roaming\Microleaves
2017-07-18 13:55 - 2017-07-18 13:55 - 00000000 ____D C:\Users\já\AppData\Local\_AdvinstAnalytics
2017-07-18 13:54 - 2017-07-03 14:00 - 00000000 ____D C:\Users\já\AppData\Local\_AdService
2017-07-16 14:44 - 2017-06-21 09:22 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2017-07-16 14:44 - 2017-06-21 08:59 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-07-16 14:44 - 2017-06-21 08:56 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-07-16 14:44 - 2017-06-21 08:51 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2017-07-16 14:44 - 2017-06-21 08:51 - 00258048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-07-16 14:44 - 2017-06-21 08:41 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-07-16 14:44 - 2017-06-21 08:40 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-07-16 14:44 - 2017-06-21 08:37 - 07468544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-07-16 14:44 - 2017-06-21 08:35 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2017-07-16 14:44 - 2017-06-21 08:35 - 00732160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2017-07-16 14:44 - 2017-06-21 08:30 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tlscsp.dll
2017-07-16 14:43 - 2017-07-07 09:49 - 00340824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-07-16 14:43 - 2017-07-07 09:46 - 00781152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-07-16 14:43 - 2017-07-07 09:45 - 02263832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-07-16 14:43 - 2017-07-07 09:40 - 20967840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-07-16 14:43 - 2017-07-07 09:29 - 05686272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-07-16 14:43 - 2017-07-07 09:20 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\l2gpstore.dll
2017-07-16 14:43 - 2017-07-07 09:19 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-07-16 14:43 - 2017-07-07 09:19 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll
2017-07-16 14:43 - 2017-07-07 09:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-07-16 14:43 - 2017-07-07 09:18 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\onex.dll
2017-07-16 14:43 - 2017-07-07 09:17 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2017-07-16 14:43 - 2017-07-07 09:14 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-07-16 14:43 - 2017-07-07 09:14 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-07-16 14:43 - 2017-07-07 09:13 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2017-07-16 14:43 - 2017-07-07 09:13 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-07-16 14:43 - 2017-07-07 09:11 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-07-16 14:43 - 2017-07-07 09:10 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-07-16 14:43 - 2017-07-07 09:09 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2017-07-16 14:43 - 2017-07-07 09:09 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-07-16 14:43 - 2017-07-07 09:06 - 18364928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-07-16 14:43 - 2017-07-07 09:06 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-07-16 14:43 - 2017-07-07 09:05 - 19414528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-07-16 14:43 - 2017-07-07 09:03 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2017-07-16 14:43 - 2017-07-07 09:02 - 01313280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2017-07-16 14:43 - 2017-07-07 09:00 - 12187136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-07-16 14:43 - 2017-07-07 09:00 - 00476160 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\SysWOW64\wvc.dll
2017-07-16 14:43 - 2017-07-07 08:57 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-07-16 14:43 - 2017-07-07 08:56 - 06035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-07-16 14:43 - 2017-07-07 08:55 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-07-16 14:43 - 2017-07-07 08:55 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-07-16 14:43 - 2017-07-07 08:55 - 01571840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-07-16 14:43 - 2017-07-07 08:54 - 02997248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-07-16 14:43 - 2017-07-07 08:54 - 02027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-07-16 14:43 - 2017-07-07 08:53 - 02483200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-07-16 14:43 - 2017-07-07 08:52 - 04561408 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-07-16 14:43 - 2017-07-07 08:52 - 01599488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-07-16 14:43 - 2017-07-07 08:52 - 01413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-07-16 14:43 - 2017-06-21 10:18 - 01470816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-07-16 14:43 - 2017-06-21 09:42 - 01573280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-07-16 14:43 - 2017-06-21 09:42 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-07-16 14:43 - 2017-06-21 09:41 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-07-16 14:43 - 2017-06-21 09:39 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-07-16 14:43 - 2017-06-21 09:38 - 00790752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2017-07-16 14:43 - 2017-06-21 09:30 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2017-07-16 14:43 - 2017-06-21 09:30 - 00196960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ifsutil.dll
2017-07-16 14:43 - 2017-06-21 09:29 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-07-16 14:43 - 2017-06-21 09:28 - 02277288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-07-16 14:43 - 2017-06-21 09:28 - 01504056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-07-16 14:43 - 2017-06-21 09:28 - 00524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-07-16 14:43 - 2017-06-21 09:28 - 00170960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-07-16 14:43 - 2017-06-21 09:27 - 01431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-07-16 14:43 - 2017-06-21 09:27 - 01122344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2017-07-16 14:43 - 2017-06-21 09:27 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-07-16 14:43 - 2017-06-21 09:27 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-07-16 14:43 - 2017-06-21 09:27 - 00549088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-07-16 14:43 - 2017-06-21 09:27 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2017-07-16 14:43 - 2017-06-21 09:25 - 02168288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-07-16 14:43 - 2017-06-21 09:25 - 01980776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-07-16 14:43 - 2017-06-21 09:24 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2017-07-16 14:43 - 2017-06-21 09:24 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntmarta.dll
2017-07-16 14:43 - 2017-06-21 09:21 - 06665440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-07-16 14:43 - 2017-06-21 09:21 - 04023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-07-16 14:43 - 2017-06-21 09:21 - 01845512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-07-16 14:43 - 2017-06-21 09:21 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-07-16 14:43 - 2017-06-21 09:21 - 01277856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-07-16 14:43 - 2017-06-21 09:21 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-07-16 14:43 - 2017-06-21 09:21 - 00374448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2017-07-16 14:43 - 2017-06-21 09:20 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-07-16 14:43 - 2017-06-21 09:20 - 00981888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-07-16 14:43 - 2017-06-21 09:20 - 00962768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-07-16 14:43 - 2017-06-21 09:20 - 00312472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2017-07-16 14:43 - 2017-06-21 09:19 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-07-16 14:43 - 2017-06-21 09:04 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-07-16 14:43 - 2017-06-21 09:04 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-07-16 14:43 - 2017-06-21 09:01 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2017-07-16 14:43 - 2017-06-21 09:00 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-07-16 14:43 - 2017-06-21 09:00 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2017-07-16 14:43 - 2017-06-21 09:00 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uudf.dll
2017-07-16 14:43 - 2017-06-21 09:00 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2017-07-16 14:43 - 2017-06-21 08:59 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-07-16 14:43 - 2017-06-21 08:59 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-07-16 14:43 - 2017-06-21 08:59 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2017-07-16 14:43 - 2017-06-21 08:59 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2017-07-16 14:43 - 2017-06-21 08:58 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2017-07-16 14:43 - 2017-06-21 08:58 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-07-16 14:43 - 2017-06-21 08:58 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2017-07-16 14:43 - 2017-06-21 08:58 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-07-16 14:43 - 2017-06-21 08:58 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.UserDeviceAssociation.dll
2017-07-16 14:43 - 2017-06-21 08:57 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2017-07-16 14:43 - 2017-06-21 08:57 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2017-07-16 14:43 - 2017-06-21 08:57 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-07-16 14:43 - 2017-06-21 08:56 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2017-07-16 14:43 - 2017-06-21 08:56 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2017-07-16 14:43 - 2017-06-21 08:56 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-07-16 14:43 - 2017-06-21 08:56 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2017-07-16 14:43 - 2017-06-21 08:56 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-07-16 14:43 - 2017-06-21 08:56 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2017-07-16 14:43 - 2017-06-21 08:56 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2017-07-16 14:43 - 2017-06-21 08:56 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-07-16 14:43 - 2017-06-21 08:56 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2017-07-16 14:43 - 2017-06-21 08:55 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-07-16 14:43 - 2017-06-21 08:55 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2017-07-16 14:43 - 2017-06-21 08:55 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-07-16 14:43 - 2017-06-21 08:55 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2017-07-16 14:43 - 2017-06-21 08:55 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2017-07-16 14:43 - 2017-06-21 08:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2017-07-16 14:43 - 2017-06-21 08:55 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regsvr32.exe
2017-07-16 14:43 - 2017-06-21 08:54 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2017-07-16 14:43 - 2017-06-21 08:54 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2017-07-16 14:43 - 2017-06-21 08:54 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-07-16 14:43 - 2017-06-21 08:54 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-07-16 14:43 - 2017-06-21 08:54 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2017-07-16 14:43 - 2017-06-21 08:53 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-07-16 14:43 - 2017-06-21 08:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2017-07-16 14:43 - 2017-06-21 08:52 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2017-07-16 14:43 - 2017-06-21 08:51 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2017-07-16 14:43 - 2017-06-21 08:51 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2017-07-16 14:43 - 2017-06-21 08:51 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-07-16 14:43 - 2017-06-21 08:50 - 01167360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2017-07-16 14:43 - 2017-06-21 08:50 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2017-07-16 14:43 - 2017-06-21 08:50 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-07-16 14:43 - 2017-06-21 08:50 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2017-07-16 14:43 - 2017-06-21 08:50 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-07-16 14:43 - 2017-06-21 08:50 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-07-16 14:43 - 2017-06-21 08:49 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2017-07-16 14:43 - 2017-06-21 08:49 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2017-07-16 14:43 - 2017-06-21 08:49 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2017-07-16 14:43 - 2017-06-21 08:48 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2017-07-16 14:43 - 2017-06-21 08:48 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2017-07-16 14:43 - 2017-06-21 08:48 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2017-07-16 14:43 - 2017-06-21 08:47 - 13873664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-07-16 14:43 - 2017-06-21 08:46 - 04615168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-07-16 14:43 - 2017-06-21 08:46 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-07-16 14:43 - 2017-06-21 08:46 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2017-07-16 14:43 - 2017-06-21 08:46 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2017-07-16 14:43 - 2017-06-21 08:46 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2017-07-16 14:43 - 2017-06-21 08:45 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-07-16 14:43 - 2017-06-21 08:45 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-07-16 14:43 - 2017-06-21 08:45 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-07-16 14:43 - 2017-06-21 08:45 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uexfat.dll
2017-07-16 14:43 - 2017-06-21 08:44 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2017-07-16 14:43 - 2017-06-21 08:44 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-07-16 14:43 - 2017-06-21 08:44 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-07-16 14:43 - 2017-06-21 08:44 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ufat.dll
2017-07-16 14:43 - 2017-06-21 08:44 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdProxy.dll
2017-07-16 14:43 - 2017-06-21 08:43 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-07-16 14:43 - 2017-06-21 08:43 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-07-16 14:43 - 2017-06-21 08:43 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-07-16 14:43 - 2017-06-21 08:43 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2017-07-16 14:43 - 2017-06-21 08:43 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cnvfat.dll
2017-07-16 14:43 - 2017-06-21 08:42 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-07-16 14:43 - 2017-06-21 08:42 - 02749440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-07-16 14:43 - 2017-06-21 08:42 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-07-16 14:43 - 2017-06-21 08:42 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-07-16 14:43 - 2017-06-21 08:42 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2017-07-16 14:43 - 2017-06-21 08:42 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFSv1.dll
2017-07-16 14:43 - 2017-06-21 08:41 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2017-07-16 14:43 - 2017-06-21 08:40 - 02641920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-07-16 14:43 - 2017-06-21 08:40 - 02154496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2017-07-16 14:43 - 2017-06-21 08:40 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-07-16 14:43 - 2017-06-21 08:40 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-07-16 14:43 - 2017-06-21 08:40 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-07-16 14:43 - 2017-06-21 08:40 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2017-07-16 14:43 - 2017-06-21 08:39 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2017-07-16 14:43 - 2017-06-21 08:39 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2017-07-16 14:43 - 2017-06-21 08:38 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-07-16 14:43 - 2017-06-21 08:38 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2017-07-16 14:43 - 2017-06-21 08:38 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-07-16 14:43 - 2017-06-21 08:38 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-07-16 14:43 - 2017-06-21 08:38 - 00877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-07-16 14:43 - 2017-06-21 08:38 - 00753152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2017-07-16 14:43 - 2017-06-21 08:38 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2017-07-16 14:43 - 2017-06-21 08:37 - 06109696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-07-16 14:43 - 2017-06-21 08:37 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-07-16 14:43 - 2017-06-21 08:37 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2017-07-16 14:43 - 2017-06-21 08:37 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2017-07-16 14:43 - 2017-06-21 08:36 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-07-16 14:43 - 2017-06-21 08:36 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-07-16 14:43 - 2017-06-21 08:36 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2017-07-16 14:43 - 2017-06-21 08:35 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-07-16 14:43 - 2017-06-21 08:35 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2017-07-16 14:43 - 2017-06-21 08:35 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-07-16 14:43 - 2017-06-21 08:35 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-07-16 14:43 - 2017-06-21 08:35 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-07-16 14:43 - 2017-06-21 08:35 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2017-07-16 14:43 - 2017-06-21 08:35 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-07-16 14:43 - 2017-06-21 08:35 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-07-16 14:43 - 2017-06-21 08:34 - 01886720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-07-16 14:43 - 2017-06-21 08:34 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-07-16 14:43 - 2017-06-21 08:34 - 00711168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-07-16 14:43 - 2017-06-21 08:34 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-07-16 14:43 - 2017-06-21 08:34 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-07-16 14:43 - 2017-06-21 08:34 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-07-16 14:43 - 2017-06-21 08:34 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2017-07-16 14:43 - 2017-06-21 08:33 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-07-16 14:43 - 2017-06-21 08:33 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2017-07-16 14:43 - 2017-06-21 08:33 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-07-16 14:43 - 2017-06-21 08:33 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-07-16 14:43 - 2017-06-21 08:32 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-07-16 14:43 - 2017-06-21 08:32 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-07-16 14:43 - 2017-06-21 08:31 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2017-07-16 14:43 - 2017-06-21 08:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-07-16 14:43 - 2017-03-04 08:56 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-07-16 14:43 - 2017-03-04 08:21 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-07-16 14:43 - 2017-03-04 08:21 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2017-07-16 14:43 - 2017-03-04 08:20 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2017-07-16 14:43 - 2017-03-04 08:20 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-07-16 14:43 - 2017-03-04 08:20 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2017-07-16 14:43 - 2017-03-04 08:19 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-07-16 14:43 - 2017-03-04 08:18 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2017-07-16 14:43 - 2017-03-04 08:16 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-07-16 14:43 - 2017-03-04 08:02 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-07-16 14:43 - 2016-10-05 11:15 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2017-07-16 14:43 - 2016-09-15 18:58 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-07-16 14:43 - 2016-09-15 18:47 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2017-07-16 14:38 - 2017-07-07 09:29 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-07-16 14:38 - 2017-07-07 08:44 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-07-16 14:38 - 2017-07-07 08:24 - 05388800 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2017-07-16 14:38 - 2017-07-07 08:24 - 03615744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-07-16 14:38 - 2017-07-07 08:24 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-07-16 14:38 - 2017-06-21 09:52 - 00088416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2017-07-16 14:38 - 2017-06-21 09:52 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2017-07-16 14:38 - 2017-06-21 09:40 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-07-16 14:38 - 2017-06-21 09:38 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-07-16 14:38 - 2017-06-21 09:32 - 08169024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-07-16 14:38 - 2017-06-21 09:03 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2017-07-16 14:38 - 2017-06-21 09:02 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-07-16 14:38 - 2017-06-21 09:02 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmdisk0101.sys
2017-07-16 14:38 - 2017-06-21 09:02 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-07-16 14:38 - 2017-06-21 09:01 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2017-07-16 14:38 - 2017-06-21 09:00 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-07-16 14:38 - 2017-06-21 09:00 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2017-07-16 14:38 - 2017-06-21 09:00 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-07-16 14:38 - 2017-06-21 09:00 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-07-16 14:38 - 2017-06-21 09:00 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-07-16 14:38 - 2017-06-21 08:59 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-07-16 14:38 - 2017-06-21 08:59 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-07-16 14:38 - 2017-06-21 08:59 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-07-16 14:38 - 2017-06-21 08:59 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2017-07-16 14:38 - 2017-06-21 08:59 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-07-16 14:38 - 2017-06-21 08:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-07-16 14:38 - 2017-06-21 08:58 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-07-16 14:38 - 2017-06-21 08:58 - 00224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2017-07-16 14:38 - 2017-06-21 08:58 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-07-16 14:38 - 2017-06-21 08:57 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-07-16 14:38 - 2017-06-21 08:57 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2017-07-16 14:38 - 2017-06-21 08:56 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-07-16 14:38 - 2017-06-21 08:56 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-07-16 14:38 - 2017-06-21 08:56 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-07-16 14:38 - 2017-06-21 08:56 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-07-16 14:38 - 2017-06-21 08:55 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-07-16 14:38 - 2017-06-21 08:55 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-07-16 14:38 - 2017-06-21 08:55 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-07-16 14:38 - 2017-06-21 08:54 - 01159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2017-07-16 14:38 - 2017-06-21 08:54 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2017-07-16 14:38 - 2017-06-21 08:54 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-07-16 14:38 - 2017-06-21 08:53 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2017-07-16 14:38 - 2017-06-21 08:53 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2017-07-16 14:38 - 2017-06-21 08:52 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-07-16 14:38 - 2017-06-21 08:52 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-07-16 14:38 - 2017-06-21 08:51 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-07-16 14:38 - 2017-06-21 08:49 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-07-16 14:38 - 2017-06-21 08:49 - 01913856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-07-16 14:38 - 2017-06-21 08:49 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-07-16 14:38 - 2017-06-21 08:46 - 03290112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-07-16 14:38 - 2017-06-21 08:44 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2017-07-16 14:38 - 2017-06-21 08:41 - 03400704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-07-16 14:38 - 2017-06-21 08:41 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-07-16 14:38 - 2017-06-21 08:39 - 02916864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-07-16 14:38 - 2017-06-21 08:39 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-07-16 14:38 - 2017-06-21 08:39 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-07-16 14:38 - 2017-06-21 08:39 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-07-16 14:38 - 2017-06-21 08:39 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-07-16 14:38 - 2017-06-21 08:38 - 02695680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-07-16 14:38 - 2017-06-21 08:38 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-07-16 14:38 - 2017-06-21 08:38 - 00908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-07-16 14:38 - 2017-06-21 08:37 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-07-16 14:38 - 2017-06-21 08:36 - 02318848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-07-16 14:38 - 2017-06-21 08:36 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-07-16 14:38 - 2017-06-21 08:36 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-07-16 14:38 - 2017-06-21 08:35 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-07-16 14:38 - 2017-06-21 08:35 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-07-16 14:38 - 2017-06-21 08:35 - 01328640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-07-16 14:38 - 2017-05-23 06:58 - 00448576 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-07-16 14:38 - 2017-03-04 08:12 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-07-16 14:37 - 2017-07-07 09:44 - 00108896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-07-16 14:37 - 2017-07-07 09:42 - 07781720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-07-16 14:37 - 2017-07-07 09:37 - 00468320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-07-16 14:37 - 2017-07-07 09:37 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-07-16 14:37 - 2017-07-07 09:32 - 00404824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-07-16 14:37 - 2017-07-07 09:29 - 02759712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-07-16 14:37 - 2017-07-07 09:28 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-07-16 14:37 - 2017-07-07 09:24 - 22220856 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-07-16 14:37 - 2017-07-07 09:23 - 01600624 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-07-16 14:37 - 2017-07-07 09:18 - 02532192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-07-16 14:37 - 2017-07-07 09:18 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-07-16 14:37 - 2017-07-07 08:51 - 22569984 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-07-16 14:37 - 2017-07-07 08:49 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-07-16 14:37 - 2017-07-07 08:48 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2017-07-16 14:37 - 2017-07-07 08:48 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll
2017-07-16 14:37 - 2017-07-07 08:47 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-07-16 14:37 - 2017-07-07 08:46 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-07-16 14:37 - 2017-07-07 08:46 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2017-07-16 14:37 - 2017-07-07 08:45 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2017-07-16 14:37 - 2017-07-07 08:45 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-07-16 14:37 - 2017-07-07 08:45 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-07-16 14:37 - 2017-07-07 08:45 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-07-16 14:37 - 2017-07-07 08:44 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-07-16 14:37 - 2017-07-07 08:44 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2017-07-16 14:37 - 2017-07-07 08:44 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-07-16 14:37 - 2017-07-07 08:44 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-07-16 14:37 - 2017-07-07 08:44 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2017-07-16 14:37 - 2017-07-07 08:43 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-07-16 14:37 - 2017-07-07 08:43 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-07-16 14:37 - 2017-07-07 08:43 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-07-16 14:37 - 2017-07-07 08:42 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-07-16 14:37 - 2017-07-07 08:42 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-07-16 14:37 - 2017-07-07 08:39 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-07-16 14:37 - 2017-07-07 08:36 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2017-07-16 14:37 - 2017-07-07 08:35 - 01397760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2017-07-16 14:37 - 2017-07-07 08:34 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-07-16 14:37 - 2017-07-07 08:33 - 00576000 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\system32\wvc.dll
2017-07-16 14:37 - 2017-07-07 08:30 - 13090816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-07-16 14:37 - 2017-07-07 08:29 - 04749824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-07-16 14:37 - 2017-07-07 08:29 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-07-16 14:37 - 2017-07-07 08:28 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-07-16 14:37 - 2017-07-07 08:28 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-07-16 14:37 - 2017-07-07 08:27 - 08120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-07-16 14:37 - 2017-07-07 08:24 - 04744704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-07-16 14:37 - 2017-07-07 08:22 - 01826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-07-16 14:37 - 2017-06-21 09:53 - 00794928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-07-16 14:37 - 2017-06-21 09:52 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-07-16 14:37 - 2017-06-21 09:52 - 01886344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-07-16 14:37 - 2017-06-21 09:52 - 00774224 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-07-16 14:37 - 2017-06-21 09:51 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-07-16 14:37 - 2017-06-21 09:50 - 00126304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2017-07-16 14:37 - 2017-06-21 09:38 - 07220192 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-07-16 14:37 - 2017-06-21 09:38 - 01860288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-07-16 14:37 - 2017-06-21 09:37 - 02446704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-07-16 14:37 - 2017-06-21 09:37 - 01157008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-07-16 14:37 - 2017-06-21 09:36 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-07-16 14:37 - 2017-06-21 09:33 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2017-07-16 14:37 - 2017-06-21 09:33 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-07-16 14:37 - 2017-06-21 09:32 - 04260576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-07-16 14:37 - 2017-06-21 09:32 - 01983408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-07-16 14:37 - 2017-06-21 09:32 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-07-16 14:37 - 2017-06-21 09:32 - 01072248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-07-16 14:37 - 2017-06-21 09:26 - 00387864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-07-16 14:37 - 2017-06-21 09:06 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-07-16 14:37 - 2017-06-21 09:02 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-07-16 14:37 - 2017-06-21 09:02 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-07-16 14:37 - 2017-06-21 09:01 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2017-07-16 14:37 - 2017-06-21 09:01 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2017-07-16 14:37 - 2017-06-21 09:01 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2017-07-16 14:37 - 2017-06-21 09:00 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2017-07-16 14:37 - 2017-06-21 09:00 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvisioningHandlers.dll
2017-07-16 14:37 - 2017-06-21 09:00 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2017-07-16 14:37 - 2017-06-21 09:00 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-07-16 14:37 - 2017-06-21 09:00 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-07-16 14:37 - 2017-06-21 08:59 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2017-07-16 14:37 - 2017-06-21 08:59 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2017-07-16 14:37 - 2017-06-21 08:58 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-07-16 14:37 - 2017-06-21 08:57 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-07-16 14:37 - 2017-06-21 08:56 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2017-07-16 14:37 - 2017-06-21 08:56 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-07-16 14:37 - 2017-06-21 08:56 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-07-16 14:37 - 2017-06-21 08:56 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2017-07-16 14:37 - 2017-06-21 08:55 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-07-16 14:37 - 2017-06-21 08:55 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-07-16 14:37 - 2017-06-21 08:55 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-07-16 14:37 - 2017-06-21 08:54 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-07-16 14:37 - 2017-06-21 08:54 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-07-16 14:37 - 2017-06-21 08:54 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2017-07-16 14:37 - 2017-06-21 08:53 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-07-16 14:37 - 2017-06-21 08:53 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-07-16 14:37 - 2017-06-21 08:52 - 06288384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-07-16 14:37 - 2017-06-21 08:52 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-07-16 14:37 - 2017-06-21 08:52 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-07-16 14:37 - 2017-06-21 08:49 - 03778048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-07-16 14:37 - 2017-06-21 08:49 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-07-16 14:37 - 2017-06-21 08:49 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2017-07-16 14:37 - 2017-06-21 08:49 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-07-16 14:37 - 2017-06-21 08:47 - 07655424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-07-16 14:37 - 2017-06-21 08:47 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-07-16 14:37 - 2017-06-21 08:47 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-07-16 14:37 - 2017-06-21 08:46 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-16 14:37 - 2017-06-21 08:46 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2017-07-16 14:37 - 2017-06-21 08:45 - 02861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-07-16 14:37 - 2017-06-21 08:43 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-07-16 14:37 - 2017-06-21 08:43 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2017-07-16 14:37 - 2017-06-21 08:42 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-07-16 14:37 - 2017-06-21 08:42 - 00779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2017-07-16 14:37 - 2017-06-21 08:42 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-07-16 14:37 - 2017-06-21 08:42 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-07-16 14:37 - 2017-06-21 08:41 - 01359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-07-16 14:37 - 2017-06-21 08:41 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-07-16 14:37 - 2017-06-21 08:41 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-16 14:37 - 2017-06-21 08:41 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-07-16 14:37 - 2017-06-21 08:40 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-07-16 14:37 - 2017-06-21 08:40 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-07-16 14:37 - 2017-06-21 08:39 - 08076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-07-16 14:37 - 2017-06-21 08:39 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-07-16 14:37 - 2017-06-21 08:39 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-07-16 14:37 - 2017-06-21 08:39 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-07-16 14:37 - 2017-06-21 08:38 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-07-16 14:37 - 2017-06-21 08:38 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-07-16 14:37 - 2017-06-21 08:38 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-07-16 14:37 - 2017-06-21 08:37 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-07-16 14:37 - 2017-06-21 08:37 - 00735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-07-16 14:37 - 2017-06-21 08:36 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2017-07-16 14:37 - 2017-06-21 08:36 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-07-16 14:37 - 2017-06-21 08:35 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-07-16 14:37 - 2017-06-21 08:35 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-07-16 14:37 - 2017-06-21 08:34 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-07-16 14:37 - 2017-06-21 08:34 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-07-16 14:37 - 2017-06-21 08:34 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2017-07-16 14:37 - 2017-06-21 08:34 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2017-07-16 14:37 - 2017-06-21 08:33 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2017-07-16 14:37 - 2017-06-21 08:33 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlscsp.dll
2017-07-16 14:37 - 2017-03-04 09:10 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-07-16 14:37 - 2017-03-04 08:27 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-07-16 14:37 - 2017-03-04 08:26 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-07-16 14:37 - 2017-03-04 08:23 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-07-16 14:37 - 2017-03-04 08:23 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-07-16 14:37 - 2017-03-04 08:20 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-07-16 14:37 - 2017-03-04 08:17 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-07-16 14:37 - 2017-03-04 08:15 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-07-16 14:37 - 2017-03-04 08:14 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-07-16 14:37 - 2016-10-05 11:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2017-07-16 14:37 - 2016-08-27 07:12 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-07-16 14:36 - 2017-07-07 09:40 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-07-16 14:36 - 2017-07-07 09:23 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-07-16 14:36 - 2017-07-07 09:18 - 01100120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-07-16 14:36 - 2017-07-07 08:58 - 07217152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-16 14:36 - 2017-07-07 08:43 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-07-16 14:36 - 2017-07-07 08:31 - 23676416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-07-16 14:36 - 2017-07-07 08:28 - 02096640 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-07-16 14:36 - 2017-07-07 08:28 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-07-16 14:36 - 2017-07-07 08:25 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-16 14:36 - 2017-07-07 08:24 - 02895872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-07-16 14:36 - 2017-07-07 08:24 - 02217472 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-07-16 14:36 - 2017-07-07 08:24 - 01783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-07-16 14:36 - 2017-06-21 09:56 - 01405280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-07-16 14:36 - 2017-06-21 09:55 - 02170720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-07-16 14:36 - 2017-06-21 09:54 - 01669984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-07-16 14:36 - 2017-06-21 09:54 - 00822624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-07-16 14:36 - 2017-06-21 09:54 - 00813408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-07-16 14:36 - 2017-06-21 09:54 - 00758624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-07-16 14:36 - 2017-06-21 09:54 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-07-16 14:36 - 2017-06-21 09:54 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-07-16 14:36 - 2017-06-21 09:54 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-07-16 14:36 - 2017-06-21 09:54 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-07-16 14:36 - 2017-06-21 09:54 - 00406368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-07-16 14:36 - 2017-06-21 09:51 - 00434528 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-07-16 14:36 - 2017-06-21 09:48 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-16 14:36 - 2017-06-21 09:40 - 01069720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-07-16 14:36 - 2017-06-21 09:40 - 00224096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ifsutil.dll
2017-07-16 14:36 - 2017-06-21 09:37 - 01369240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2017-07-16 14:36 - 2017-06-21 09:35 - 02915704 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-07-16 14:36 - 2017-06-21 09:35 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-07-16 14:36 - 2017-06-21 09:31 - 04674360 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-07-16 14:36 - 2017-06-21 09:31 - 01277824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-07-16 14:36 - 2017-06-21 09:31 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-07-16 14:36 - 2017-06-21 09:04 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-07-16 14:36 - 2017-06-21 09:03 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\uudf.dll
2017-07-16 14:36 - 2017-06-21 09:01 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-07-16 14:36 - 2017-06-21 09:00 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-07-16 14:36 - 2017-06-21 08:59 - 00182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2017-07-16 14:36 - 2017-06-21 08:58 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-07-16 14:36 - 2017-06-21 08:58 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-07-16 14:36 - 2017-06-21 08:58 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-07-16 14:36 - 2017-06-21 08:57 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-07-16 14:36 - 2017-06-21 08:57 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-07-16 14:36 - 2017-06-21 08:57 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2017-07-16 14:36 - 2017-06-21 08:57 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-07-16 14:36 - 2017-06-21 08:57 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-07-16 14:36 - 2017-06-21 08:56 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-07-16 14:36 - 2017-06-21 08:56 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-07-16 14:36 - 2017-06-21 08:56 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-07-16 14:36 - 2017-06-21 08:56 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-07-16 14:36 - 2017-06-21 08:55 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-07-16 14:36 - 2017-06-21 08:55 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-07-16 14:36 - 2017-06-21 08:54 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-07-16 14:36 - 2017-06-21 08:54 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-07-16 14:36 - 2017-06-21 08:54 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2017-07-16 14:36 - 2017-06-21 08:53 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-07-16 14:36 - 2017-06-21 08:53 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-07-16 14:36 - 2017-06-21 08:52 - 17198592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-16 14:36 - 2017-06-21 08:52 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-07-16 14:36 - 2017-06-21 08:52 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-07-16 14:36 - 2017-06-21 08:52 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-07-16 14:36 - 2017-06-21 08:52 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-07-16 14:36 - 2017-06-21 08:51 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-07-16 14:36 - 2017-06-21 08:50 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2017-07-16 14:36 - 2017-06-21 08:49 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2017-07-16 14:36 - 2017-06-21 08:48 - 00968192 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-07-16 14:36 - 2017-06-21 08:48 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\uexfat.dll
2017-07-16 14:36 - 2017-06-21 08:47 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-07-16 14:36 - 2017-06-21 08:47 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ufat.dll
2017-07-16 14:36 - 2017-06-21 08:46 - 00925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-07-16 14:36 - 2017-06-21 08:46 - 00516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFSv1.dll
2017-07-16 14:36 - 2017-06-21 08:46 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2017-07-16 14:36 - 2017-06-21 08:46 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\cnvfat.dll
2017-07-16 14:36 - 2017-06-21 08:43 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2017-07-16 14:36 - 2017-06-21 08:43 - 00953344 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-07-16 14:36 - 2017-06-21 08:43 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2017-07-16 14:36 - 2017-06-21 08:42 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-07-16 14:36 - 2017-06-21 08:42 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-07-16 14:36 - 2017-06-21 08:41 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-07-16 14:36 - 2017-06-21 08:41 - 01692160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-07-16 14:36 - 2017-06-21 08:41 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-07-16 14:36 - 2017-06-21 08:40 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-16 14:36 - 2017-06-21 08:40 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-07-16 14:36 - 2017-06-21 08:40 - 01421824 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-07-16 14:36 - 2017-06-21 08:40 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2017-07-16 14:36 - 2017-06-21 08:40 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2017-07-16 14:36 - 2017-06-21 08:38 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-07-16 14:36 - 2017-06-21 08:38 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-07-16 14:36 - 2017-06-21 08:36 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2017-07-16 14:36 - 2017-03-04 08:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-07-16 14:36 - 2017-03-04 08:19 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-07-16 14:36 - 2016-10-15 05:45 - 01790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-07-16 14:35 - 2017-06-21 09:47 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-07-16 14:35 - 2017-06-21 09:37 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-07-16 14:35 - 2017-06-21 09:36 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-07-16 14:35 - 2017-06-21 09:36 - 00129888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2017-07-16 14:35 - 2017-06-21 08:57 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2017-07-16 14:35 - 2017-06-21 08:56 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-07-16 14:35 - 2017-06-21 08:53 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2017-07-16 14:35 - 2017-06-21 08:47 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2017-07-16 14:35 - 2017-06-21 08:44 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2017-07-16 14:35 - 2017-06-21 08:41 - 01021440 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2017-07-16 14:35 - 2017-06-21 08:37 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-07-10 22:07 - 2017-04-21 23:53 - 00029376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2017-07-10 22:07 - 2017-04-21 23:50 - 00030912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2017-07-10 22:06 - 2017-04-21 23:53 - 00018600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2017-07-10 22:06 - 2017-04-21 23:50 - 00018592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-07-10 22:06 - 2017-04-11 20:27 - 00690008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-07-10 22:06 - 2017-03-15 20:15 - 00485576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2017-07-10 22:05 - 2017-04-11 20:27 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-07-10 22:05 - 2017-03-15 20:15 - 00987840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2017-07-05 11:29 - 2017-07-05 11:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-07-04 13:42 - 2017-07-18 17:23 - 00002240 _____ C:\Users\já\Desktop\Seaport.lnk
2017-07-04 13:42 - 2017-07-04 13:42 - 00002264 _____ C:\Users\já\AppData\Roaming\Microsoft\Windows\Start Menu\Seaport.lnk
2017-07-04 10:46 - 2017-07-04 10:46 - 00124288 _____ C:\WINDOWS\system32\Drivers\wfcre.sys
2017-07-03 13:59 - 2017-07-18 17:25 - 02021376 ___SH (Micrasaft Carparation) C:\WINDOWS\C_02iu57.dat
2017-07-01 18:53 - 2017-07-08 11:10 - 00000000 ____D C:\Users\já\Desktop\nové 1080
2017-06-30 06:06 - 2017-06-30 06:06 - 00000000 ____D C:\Users\já\AppData\Local\UNP
2017-06-27 11:49 - 2017-07-04 02:48 - 00000000 ____D C:\Users\já\Desktop\nové dance
2017-06-23 12:00 - 2017-06-23 12:00 - 00000000 ____D C:\Users\já\Documents\FeedbackHub
2017-06-22 21:36 - 2017-06-22 21:37 - 00000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-06-21 23:30 - 2017-07-10 22:05 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-21 23:30 - 2017-07-10 22:05 - 00000000 ____D C:\Program Files\UNP
2017-06-20 03:22 - 2017-06-03 11:33 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-06-20 03:22 - 2017-06-03 11:31 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2017-06-20 03:22 - 2017-06-03 11:26 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBrokerUI.dll
2017-06-20 03:22 - 2017-06-03 11:23 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-06-20 03:22 - 2017-06-03 11:22 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcorehc.dll
2017-06-20 03:22 - 2017-06-03 11:22 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2017-06-20 03:22 - 2017-03-04 08:22 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-06-20 03:22 - 2017-03-04 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2017-06-20 03:22 - 2017-03-04 08:16 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-06-20 03:22 - 2016-09-07 06:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2017-06-20 03:21 - 2017-06-03 12:50 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-06-20 03:21 - 2017-06-03 12:50 - 00192856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-06-20 03:21 - 2017-06-03 11:52 - 01021784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2017-06-20 03:21 - 2017-06-03 11:52 - 00607072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2017-06-20 03:21 - 2017-06-03 11:52 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2017-06-20 03:21 - 2017-06-03 11:44 - 01412640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-06-20 03:21 - 2017-06-03 11:44 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-06-20 03:21 - 2017-06-03 11:32 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-06-20 03:21 - 2017-06-03 11:31 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-06-20 03:21 - 2017-06-03 11:28 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2017-06-20 03:21 - 2017-06-03 11:05 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2017-06-20 03:21 - 2017-06-03 11:04 - 02006528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-06-20 03:11 - 2017-06-03 12:11 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-20 03:11 - 2017-06-03 11:49 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-06-20 03:11 - 2017-06-03 11:16 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-20 03:11 - 2017-06-03 11:15 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-20 03:11 - 2017-06-03 11:14 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-06-20 03:11 - 2017-06-03 11:14 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-20 03:11 - 2017-06-03 11:11 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-06-20 03:11 - 2017-06-03 11:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBrokerUI.dll
2017-06-20 03:11 - 2017-06-03 11:07 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-20 03:11 - 2017-06-03 10:52 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-06-20 03:11 - 2017-06-03 10:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-06-20 03:10 - 2017-06-03 12:14 - 00136024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-06-20 03:10 - 2017-06-03 11:59 - 01181024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-06-20 03:10 - 2017-06-03 11:48 - 00857952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-06-20 03:10 - 2017-06-03 11:48 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2017-06-20 03:10 - 2017-06-03 11:09 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcorehc.dll
2017-06-20 03:10 - 2017-06-03 11:09 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-06-20 03:10 - 2017-06-03 10:51 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2017-06-20 03:10 - 2017-06-03 10:48 - 01131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-06-20 03:10 - 2017-06-03 10:48 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-20 03:10 - 2017-05-25 07:56 - 00038752 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2017-06-20 03:10 - 2017-03-04 08:16 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2017-06-20 03:09 - 2017-06-03 12:14 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-20 03:09 - 2017-06-03 12:14 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-06-20 03:09 - 2017-06-03 12:14 - 00034648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-06-20 03:09 - 2017-06-03 11:51 - 02187104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-20 03:09 - 2017-06-03 11:51 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-06-20 03:09 - 2017-06-03 11:40 - 01566552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-20 03:09 - 2017-06-03 11:40 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-20 03:09 - 2017-06-03 11:16 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-06-20 03:09 - 2017-06-03 11:14 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-20 03:09 - 2017-06-03 11:10 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-06-20 03:09 - 2017-06-03 11:08 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-20 03:09 - 2017-06-03 11:07 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\HNetCfgClient.dll
2017-06-20 03:09 - 2017-06-03 11:06 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-06-20 03:09 - 2017-06-03 11:01 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-06-20 03:09 - 2017-06-03 10:52 - 00975872 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-20 03:09 - 2017-06-03 10:49 - 02475520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-06-20 03:09 - 2017-06-03 10:49 - 01845248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-06-20 03:09 - 2017-06-03 10:49 - 00351744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2017-06-20 03:09 - 2017-06-03 08:08 - 00080078 _____ C:\WINDOWS\system32\normidna.nls
2017-06-20 03:08 - 2017-06-03 12:14 - 01564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-06-20 03:08 - 2017-06-03 12:14 - 01214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-06-20 03:08 - 2017-06-03 12:14 - 00629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-06-20 03:08 - 2017-06-03 12:14 - 00544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-06-20 03:08 - 2017-06-03 12:14 - 00334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-06-20 03:08 - 2017-06-03 12:14 - 00233824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-06-20 03:08 - 2017-06-03 12:14 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-06-20 03:08 - 2017-06-03 12:14 - 00096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-06-20 03:08 - 2017-06-03 11:48 - 01112416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2017-06-20 03:07 - 2017-06-03 11:48 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-06-20 03:07 - 2017-06-03 11:48 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-06-20 03:07 - 2017-06-03 11:39 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-06-20 03:06 - 2017-06-03 12:16 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-06-20 03:06 - 2017-06-03 11:54 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-06-20 03:06 - 2017-06-03 11:50 - 00381792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-06-20 03:06 - 2017-06-03 11:15 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys

.... pokračování v dalším příspěvku

Mave · #4 Příspěvek od **Mave** » 18 črc 2017 20:18

... pokračovaní

Log z FRST (2/2)
--------------

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-18 20:58 - 2016-09-07 09:00 - 00002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-07-18 20:58 - 2016-09-07 09:00 - 00002486 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-07-18 20:58 - 2016-09-07 08:08 - 00001107 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-07-18 20:58 - 2016-09-07 08:08 - 00001095 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-07-18 20:44 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-07-18 20:36 - 2017-04-29 21:40 - 00004282 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2017-07-18 20:29 - 2016-11-18 13:57 - 00000000 ____D C:\Users\já\AppData\LocalLow\Mozilla
2017-07-18 20:27 - 2016-09-08 21:19 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-07-18 20:27 - 2016-07-16 08:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-07-18 17:27 - 2016-09-08 21:02 - 00000000 ____D C:\Users\já
2017-07-18 15:29 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-07-18 14:05 - 2016-09-16 08:45 - 00000000 ____D C:\Users\já\AppData\Roaming\PlaysTV
2017-07-18 13:54 - 2016-09-08 18:29 - 00000000 ____D C:\Windows10Upgrade
2017-07-18 12:50 - 2017-05-07 08:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-07-18 12:50 - 2016-09-02 06:21 - 00000955 _____ C:\Users\Public\Desktop\AVG.lnk
2017-07-18 12:43 - 2016-09-20 12:23 - 00003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-07-18 11:50 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-18 11:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-18 11:39 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-18 10:40 - 2016-09-08 20:53 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-07-18 06:51 - 2016-09-01 21:36 - 02501714 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-18 06:51 - 2016-07-17 00:25 - 00994238 _____ C:\WINDOWS\system32\perfh005.dat
2017-07-18 06:51 - 2016-07-17 00:25 - 00245270 _____ C:\WINDOWS\system32\perfc005.dat
2017-07-18 06:47 - 2016-09-01 21:38 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-07-18 06:40 - 2016-09-08 20:53 - 00280624 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-07-18 06:36 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-07-18 06:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-07-18 06:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-07-18 06:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-07-18 06:36 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-07-18 06:36 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-07-16 19:09 - 2016-09-01 21:38 - 00000000 ____D C:\Users\já\AppData\Local\Packages
2017-07-16 12:13 - 2017-06-04 00:11 - 00001240 _____ C:\Users\já\Desktop\Facebook Gameroom.lnk
2017-07-16 12:13 - 2016-09-09 21:40 - 00000000 ____D C:\Users\já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2017-07-16 12:11 - 2016-09-09 21:40 - 00000000 ____D C:\Users\já\AppData\Local\Facebook
2017-07-16 11:20 - 2017-05-07 21:37 - 00000000 ____D C:\Users\já\Desktop\Různé foto
2017-07-14 22:25 - 2016-09-28 12:48 - 00000000 ____D C:\Users\já\AppData\Roaming\BSplayer
2017-07-14 06:05 - 2016-09-07 10:54 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-07-14 05:25 - 2016-09-01 23:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-14 05:19 - 2016-09-01 23:23 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-13 18:34 - 2016-07-16 13:43 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2017-07-12 21:52 - 2016-09-28 14:26 - 00012288 _____ C:\Users\já\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-12 09:49 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-07-12 09:49 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-07-01 21:44 - 2016-09-01 21:38 - 00000000 ____D C:\Users\já\AppData\Local\VirtualStore
2017-07-01 10:20 - 2016-10-06 14:43 - 00000000 ____D C:\Users\Public\Facebook Games
2017-06-30 19:38 - 2016-11-18 12:46 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-06-30 19:38 - 2016-09-07 08:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-06-30 16:46 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-30 16:46 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-27 13:56 - 2017-04-16 15:56 - 00000000 ____D C:\Users\já\Desktop\metal klipy 1080HD
2017-06-26 19:46 - 2016-09-07 09:02 - 00000000 ____D C:\Users\já\AppData\Roaming\Seznam.cz
2017-06-23 12:26 - 2017-02-01 14:53 - 00000000 ____D C:\ProgramData\YTD Video Downloader
2017-06-23 07:57 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache

==================== Files in the root of some directories =======

2016-09-28 14:26 - 2017-07-12 21:52 - 0012288 _____ () C:\Users\já\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-12-18 12:01 - 2016-12-18 12:01 - 0000017 _____ () C:\Users\já\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-07-13 21:22

==================== End of FRST.txt ============================

#5 Příspěvek od **Rudy** » 18 črc 2017 20:19

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

VIRY.CZ

YeaDesktop

YeaDesktop

Re: YeaDesktop

Re: YeaDesktop

Re: YeaDesktop

Re: YeaDesktop