Zdravím,
mám problém s notebooku, vyskakuje mi reklama.
Druhý problém mám s s tím, že mi ve poznámkách a ve windows vyhledávání nefunguje klávesnice - všude jinde funguje O.K
díky za pomoc
Přikládám log z RSITU:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jiří at 2017-10-03 21:30:42
Microsoft Windows 10 Home
System drive C: has 39 GB (39%) free of 99 GB
Total RAM: 4061 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:30:50, on 03.10.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Programs\CorelDRW.exe
C:\Program Files\trend micro\Jiří.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jiří\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{4ba45da4-fc5c-4821-ae2a-2345c6a49da7}: NameServer = 82.163.143.136 82.163.142.138
O17 - HKLM\System\CCS\Services\Tcpip\..\{7f1fd34e-a4db-4c16-ab8e-dd6162a8909f}: NameServer = 82.163.143.136 82.163.142.138
O17 - HKLM\System\CCS\Services\Tcpip\..\{85d82c79-87cf-4863-875c-40b0395822c2}: NameServer = 82.163.143.136 82.163.142.138
O17 - HKLM\System\CCS\Services\Tcpip\..\{c60bd49e-d460-49b5-97fe-d496eee9834e}: NameServer = 82.163.143.136 82.163.142.138
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 82.163.143.136 82.163.142.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.143.136 82.163.142.138
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Backbone Service (BBDemon) - Dassault Systemes - C:\Program Files (x86)\Dassault Systemes\B18\intel_a\code\bin\CATSysDemon.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @oem4.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9934 bytes
======Listing Processes======
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Dassault Systemes\B18\intel_a\code\bin\CATSysDemon.exe" -service
"C:\Program Files\Elantech\ETDService.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\system32\svchost.exe -k appmodel
C:\Windows\system32\viakaraokesrv.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
dashost.exe {84e2f932-cfe7-4169-bac8f72e831355b5}
dashost.exe {9cef5b81-256c-4f48-b311246b650036cb}
dashost.exe {064c6fb6-7a72-4b3c-894d6bf7236b407c}
C:\Windows\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
Atouch64.exe
sihost.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\Common Files\InstallShield\Update\ISUSPM.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
ATKOSD.exe
C:\Windows\Explorer.EXE
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
WDC.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.8.0.0_x64__8wekyb3d8bbwe\Microsoft.StickyNotes.exe" -ServerName:App.AppXqx982emnayc5vbja1mrpk9zh4r774nd8.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
AvastUI.exe /nogui
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Photosmart C3100 series#1505334018" -Startup
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding
"fontdrvhost.exe"
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Windows\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Programs\CorelDRW.exe"
C:\Windows\system32\SppExtComObj.exe -Embedding
C:\Windows\splwow64.exe 8192
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Jiří\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=61.0.3163.100 --initial-client-data=0x1a8,0x1ac,0x1b0,0x1a4,0x1b4,0x7ffb7efc1988,0x7ffb7efc1948,0x7ffb7efc1958
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=9296 --on-initialized-event-handle=460 --parent-handle=60 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1608,12964911838897716736,12930074580484986201,131072 --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=9,12,13,19,23,27,29,49,70,84 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x2a42 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2702 --gpu-driver-date=3-11-2013 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x2a43 --service-request-channel-token=B4E2D1A692C8CF05815C2F493E8D9D2F --mojo-platform-channel-handle=1688 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1608,12964911838897716736,12930074580484986201,131072 --service-pipe-token=BD143DA5FDF3AEA8F250464FC8F51E1F --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --disable-accelerated-video-decode --enable-gpu-async-worker-context --service-request-channel-token=BD143DA5FDF3AEA8F250464FC8F51E1F --renderer-client-id=4 --mojo-platform-channel-handle=3208 /prefetch:1
C:\Windows\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.13610.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1608,12964911838897716736,12930074580484986201,131072 --service-pipe-token=4BC99DDCD0E40CAB0239448577F991B0 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --disable-accelerated-video-decode --enable-gpu-async-worker-context --service-request-channel-token=4BC99DDCD0E40CAB0239448577F991B0 --renderer-client-id=51 --mojo-platform-channel-handle=6600 /prefetch:1
C:\Windows\system32\AUDIODG.EXE 0x548
"C:\Windows\System32\Taskmgr.exe" /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1608,12964911838897716736,12930074580484986201,131072 --service-pipe-token=4F7B1BBB1904B68F7299D054491EB804 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --disable-accelerated-video-decode --enable-gpu-async-worker-context --service-request-channel-token=4F7B1BBB1904B68F7299D054491EB804 --renderer-client-id=73 --mojo-platform-channel-handle=3880 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1608,12964911838897716736,12930074580484986201,131072 --service-pipe-token=D607948B2B6CC33F1C4B645C982E16B2 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --disable-accelerated-video-decode --enable-gpu-async-worker-context --service-request-channel-token=D607948B2B6CC33F1C4B645C982E16B2 --renderer-client-id=74 --mojo-platform-channel-handle=6176 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe138_ Global\UsGthrCtrlFltPipeMssGthrPipe138 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 600 596 640 8192 636
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\Jiří\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Jiří\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501
prefs.js - "browser.startup.homepage" - "https://www.google.com/?bcutc=sp-006"
prefs.js - "keyword.URL" - "https://www.google.com/search?bcutc=sp-006"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.130 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.130 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
C:\Users\Jiří\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501\searchplugins\
google-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-07 3242696]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-09-06 239856]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Jiří\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-04-08 1518808]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-10-06 4557504]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-10-03 21:30:42 ----D---- C:\rsit
2017-10-03 21:30:42 ----D---- C:\Program Files\trend micro
2017-10-03 21:00:45 ----D---- C:\ProgramData\3afcd2ac-12d7-0
2017-10-03 21:00:45 ----D---- C:\ProgramData\3afcd2ac-0b75-1
2017-10-03 21:00:36 ----D---- C:\ProgramData\fba3a2c8
2017-10-03 21:00:33 ----D---- C:\ProgramData\{618CCA48-D627-7DE3-89AA-FC197ACA7A0A}
2017-10-03 21:00:28 ----D---- C:\ProgramData\{43643ad3-312c-1}
2017-10-03 21:00:28 ----D---- C:\ProgramData\{096564a7-112c-0}
2017-09-30 20:38:37 ----D---- C:\Program Files\rempl
2017-09-21 20:29:32 ----D---- C:\Program Files (x86)\Google
2017-09-13 21:14:06 ----D---- C:\ProgramData\SWCUTemp
2017-09-10 12:00:42 ----HD---- C:\$AV_ASW
2017-09-10 11:42:28 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-09-06 15:26:46 ----A---- C:\Windows\system32\aswBoot.exe
2017-09-05 20:33:58 ----D---- C:\ProgramData\Microsoft Toolkit
2017-09-05 20:33:45 ----D---- C:\ProgramData\InstallShield
======List of files/folders modified in the last 1 month======
2017-10-03 21:30:42 ----RD---- C:\Program Files
2017-10-03 21:30:37 ----D---- C:\Windows\Prefetch
2017-10-03 21:29:59 ----D---- C:\Windows\Temp
2017-10-03 21:20:21 ----D---- C:\Windows\system32\Tasks
2017-10-03 21:20:14 ----D---- C:\Windows\system32\Macromed
2017-10-03 21:20:07 ----D---- C:\Windows\SYSWOW64\Macromed
2017-10-03 21:20:02 ----AD---- C:\Program Files\Mozilla Firefox
2017-10-03 21:19:22 ----D---- C:\Program Files (x86)\QYERbvxRHIE
2017-10-03 21:13:25 ----D---- C:\Windows\system32\drivers
2017-10-03 21:01:23 ----D---- C:\ProgramData\042b3de6-7803-1
2017-10-03 21:00:51 ----A---- C:\Windows\win.ini
2017-10-03 21:00:50 ----SHD---- C:\Windows\Installer
2017-10-03 21:00:50 ----HD---- C:\Config.Msi
2017-10-03 21:00:47 ----D---- C:\ProgramData\042b3de6-7785-0
2017-10-03 21:00:45 ----HD---- C:\ProgramData
2017-10-03 21:00:45 ----D---- C:\Windows\system32\sru
2017-10-03 20:59:58 ----D---- C:\Windows\system32\SleepStudy
2017-10-03 17:52:48 ----D---- C:\Windows\CbsTemp
2017-09-30 20:36:12 ----D---- C:\Windows\AppReadiness
2017-09-29 18:45:57 ----HD---- C:\Program Files\WindowsApps
2017-09-29 18:26:33 ----RD---- C:\Program Files (x86)
2017-09-29 18:24:09 ----D---- C:\Windows\System32
2017-09-29 18:23:46 ----D---- C:\Windows\Tasks
2017-09-29 18:11:40 ----D---- C:\Users\Jiří\AppData\Roaming\vlc
2017-09-18 20:44:22 ----D---- C:\Windows\system32\NDF
2017-09-16 21:01:43 ----D---- C:\Windows\system32\config
2017-09-15 23:00:40 ----D---- C:\Windows\system32\MRT
2017-09-15 23:00:28 ----AC---- C:\Windows\system32\MRT.exe
2017-09-15 23:00:12 ----D---- C:\Windows\WinSxS
2017-09-15 23:00:12 ----D---- C:\Windows\SysWOW64
2017-09-15 22:59:47 ----D---- C:\ProgramData\Microsoft Help
2017-09-14 21:47:17 ----D---- C:\Windows
2017-09-14 21:45:25 ----D---- C:\Windows\system32\catroot2
2017-09-13 22:40:11 ----D---- C:\Windows\INF
2017-09-13 22:17:21 ----D---- C:\Windows\twain_32
2017-09-11 15:40:54 ----D---- C:\Program Files\Common Files\AV
2017-09-10 11:38:43 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-09-05 21:01:32 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2017-09-05 20:47:02 ----D---- C:\Windows\AutoKMS
2017-09-05 20:33:44 ----D---- C:\Program Files (x86)\Common Files
2017-09-05 20:29:20 ----SHD---- C:\System Volume Information
2017-09-05 20:25:10 ----D---- C:\Users\Jiří\AppData\Roaming\DAEMON Tools Lite
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2017-09-06 198976]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2017-09-06 343296]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2017-09-06 57736]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-09-06 84416]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-09-06 361336]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\Windows\system32\drivers\iorate.sys [2016-11-02 48992]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2017-09-06 320528]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-09-06 41832]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-09-06 110376]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-09-06 1016384]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-09-06 590880]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-09-06 147784]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-09-06 199312]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\Windows\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\System32\drivers\athwnx.sys [2016-07-16 4233728]
R3 dtlitescsibus;@oem10.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\System32\drivers\dtlitescsibus.sys [2016-11-09 30264]
R3 dtliteusbbus;@oem11.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\Windows\System32\drivers\dtliteusbbus.sys [2016-11-09 47672]
R3 ETD;@oem3.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2015-10-07 525512]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-03-23 10627744]
R3 L1E;@netl1e64.inf,%L1E.Service.DispName%;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\System32\drivers\L1E62x64.sys [2016-07-16 59904]
R3 MTsensor;@oem5.inf,%ATKACPI.DisplayName%;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2007-08-09 13680]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\Windows\System32\drivers\scmbus.sys [2017-06-21 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-09-06 47016]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\Windows\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2016-09-10 118272]
S3 dg_ssudbus;@oem12.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 dot4;@oem6.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2012-09-25 151968]
S3 Dot4Print;@oem7.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\Windows\System32\drivers\Dot4Prt.sys [2012-09-25 27040]
S3 dot4usb;@oem6.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2012-09-25 49056]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\Windows\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\Windows\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\Windows\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\Windows\System32\drivers\scmdisk0101.sys [2017-07-12 124928]
S3 ssudmdm;@oem13.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\Windows\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\Windows\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\Windows\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\Windows\system32\drivers\udecx.sys [2016-07-16 45568]
S3 Ufx01000;USB Function Class Extension; C:\Windows\system32\drivers\ufx01000.sys [2016-07-16 263008]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\Windows\System32\drivers\UfxChipidea.sys [2016-07-16 96608]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\Windows\System32\drivers\ufxsynopsys.sys [2016-07-16 137056]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-07-19 83032]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-09-06 275208]
R2 BBDemon;Backbone Service; C:\Program Files (x86)\Dassault Systemes\B18\intel_a\code\bin\CATSysDemon.exe [2007-05-04 36864]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-07 144072]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 OneSyncSvc_664fb2c;Hostitel synchronizace_664fb2c; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-10 189728]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-09-06 7452288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2016-07-16 44496]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\Windows\System32\svchost.exe [2016-07-16 44496]
R3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc_664fb2c;CDPUserSvc_664fb2c; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-21 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-03 272384]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-10-06 1468608]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-21 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_664fb2c;Služba zasílání zpráv_664fb2c; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-08-24 194000]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc_664fb2c;Data kontaktů_664fb2c; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2017-03-04 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\Windows\system32\TieringEngineService.exe [2016-07-16 287744]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\Windows\System32\svchost.exe [2016-07-16 44496]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\Windows\system32\svchost.exe [2016-07-16 44496]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pop Up reklama, nefunkční klávesnice
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rakosnik517
- Návštěvník
- Příspěvky: 10
- Registrován: 18 říj 2006 15:25
- Kontaktovat uživatele:
Re: Pop Up reklama, nefunkční klávesnice
Krasny den Vam preju 
V ramci cisteni Vam budou vyprazdneny docasne adresare (vysypani Kose a tempu, vyprazdneni cache prohlizecu apod.).
Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
V ramci cisteni Vam budou vyprazdneny docasne adresare (vysypani Kose a tempu, vyprazdneni cache prohlizecu apod.). Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan (Skenovani), pote na Clean (Cisteni)
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
-
Rakosnik517
- Návštěvník
- Příspěvky: 10
- Registrován: 18 říj 2006 15:25
- Kontaktovat uživatele:
Re: Pop Up reklama, nefunkční klávesnice
Děkuji za pomoc, vypadá to mnohem líp
# AdwCleaner 7.0.3.1 - Logfile created on Sun Oct 08 09:08:31 2017
# Updated on 2017/29/09 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
Deleted: C:\Users\Jiří\AppData\Local\AdvinstAnalytics
Deleted: C:\Users\Public\Documents\XMUpdate
Deleted: C:\Program Files (x86)\thzXuJvjU
Deleted: C:\Program Files (x86)\QYERbvxRHIE
Deleted: C:\Program Files (x86)\GXZiGyYLSHyU2
Deleted: C:\Program Files (x86)\dCHHaxjOpqUn
Deleted: C:\ProgramData\Microleaves
Deleted: C:\Program Files (x86)\Microleaves
Deleted: C:\Users\All Users\Microleaves
Deleted: C:\Users\Jiří\AppData\Roaming\Microleaves
Deleted: C:\Program Files (x86)\FastDataX
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\Solvusoft
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft
Deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnjoyWiFi
Deleted: C:\Program Files (x86)\EnjoyWiFi
Deleted: C:\ProgramData\042b3de6-7785-0
Deleted: C:\ProgramData\042b3de6-7803-1
Deleted: C:\ProgramData\3afcd2ac-0b75-1
Deleted: C:\ProgramData\3afcd2ac-12d7-0
Deleted: C:\ProgramData\fba3a2c8
Deleted: C:\ProgramData\{096564a7-112c-0}
Deleted: C:\ProgramData\{43643ad3-312c-1}
***** [ Files ] *****
Deleted: C:\Windows\SysNative\drivers\wfcre.sys
Deleted: C:\Users\Jiří\AppData\Local\PO.DB
Deleted: C:\Users\Public\Desktop\EnjoyWiFi.lnk
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
Deleted: [Key] - HKLM\SOFTWARE\Microleaves
Deleted: [Key] - HKU\S-1-5-21-234085966-1151612453-4061763284-1001\Software\FastDataX
Deleted: [Key] - HKCU\Software\FastDataX
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FastDataX_is1
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\E3605470-291B-44EB-8648-745EE356599A
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Deleted: [Key] - HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8948C1BE-92B8-4276-8803-DC71CC78203A}
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [3285 B] - [2017/10/8 9:3:33]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
# AdwCleaner 7.0.3.1 - Logfile created on Sun Oct 08 09:08:31 2017
# Updated on 2017/29/09 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
Deleted: C:\Users\Jiří\AppData\Local\AdvinstAnalytics
Deleted: C:\Users\Public\Documents\XMUpdate
Deleted: C:\Program Files (x86)\thzXuJvjU
Deleted: C:\Program Files (x86)\QYERbvxRHIE
Deleted: C:\Program Files (x86)\GXZiGyYLSHyU2
Deleted: C:\Program Files (x86)\dCHHaxjOpqUn
Deleted: C:\ProgramData\Microleaves
Deleted: C:\Program Files (x86)\Microleaves
Deleted: C:\Users\All Users\Microleaves
Deleted: C:\Users\Jiří\AppData\Roaming\Microleaves
Deleted: C:\Program Files (x86)\FastDataX
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\Solvusoft
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft
Deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnjoyWiFi
Deleted: C:\Program Files (x86)\EnjoyWiFi
Deleted: C:\ProgramData\042b3de6-7785-0
Deleted: C:\ProgramData\042b3de6-7803-1
Deleted: C:\ProgramData\3afcd2ac-0b75-1
Deleted: C:\ProgramData\3afcd2ac-12d7-0
Deleted: C:\ProgramData\fba3a2c8
Deleted: C:\ProgramData\{096564a7-112c-0}
Deleted: C:\ProgramData\{43643ad3-312c-1}
***** [ Files ] *****
Deleted: C:\Windows\SysNative\drivers\wfcre.sys
Deleted: C:\Users\Jiří\AppData\Local\PO.DB
Deleted: C:\Users\Public\Desktop\EnjoyWiFi.lnk
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
Deleted: [Key] - HKLM\SOFTWARE\Microleaves
Deleted: [Key] - HKU\S-1-5-21-234085966-1151612453-4061763284-1001\Software\FastDataX
Deleted: [Key] - HKCU\Software\FastDataX
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FastDataX_is1
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\E3605470-291B-44EB-8648-745EE356599A
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Deleted: [Key] - HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8948C1BE-92B8-4276-8803-DC71CC78203A}
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [3285 B] - [2017/10/8 9:3:33]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
Re: Pop Up reklama, nefunkční klávesnice
V pocitaci jeste par kousku zbylo... Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101Pokud budete mit problemy se stazenim FRSTLauncheru, staci kdyz pouzijete samotny FRST.exe/FRST64.exe.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
-
Rakosnik517
- Návštěvník
- Příspěvky: 10
- Registrován: 18 říj 2006 15:25
- Kontaktovat uživatele:
Re: Pop Up reklama, nefunkční klávesnice
Děkuji za pomoc
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2017
Ran by Jiřà (administrator) on DESKTOP-QGUN0J2 (16-10-2017 21:19:18)
Running from C:\Users\JiĹ™Ă\Desktop
Loaded Profiles: Jiřà (Available Profiles: defaultuser0 & JiĹ™Ă)
Platform: Windows 10 Home Version 1607 170917-1700 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Dassault Systemes) C:\Program Files (x86)\Dassault Systemes\B18\intel_a\code\bin\CATSysDemon.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
() C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe
(InstallShield®) C:\Program Files (x86)\Common Files\InstallShield\Update\ISUSPM.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\JiĹ™Ă\Downloads\FRSTLauncher.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-08] (AVAST Software)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-234085966-1151612453-4061763284-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4557504 2016-10-06] (Disc Soft Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-10-09]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
BootExecute: autocheck autochk * aswBoot.exe /M:5dc10a20 /wow /dir:"C:\Program Files\AVAST Software\Avast"
GroupPolicy: Restriction - Windows Defender <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
ProxyEnable: [HKLM] => Proxy is enabled.
ProxyEnable: [HKLM-x32] => Proxy is enabled.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
AutoConfigURL: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
Tcpip\Parameters: [DhcpNameServer] 79.170.251.130 8.8.8.8
Tcpip\Parameters: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{4ba45da4-fc5c-4821-ae2a-2345c6a49da7}: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{4ba45da4-fc5c-4821-ae2a-2345c6a49da7}: [DhcpNameServer] 82.163.143.136
Tcpip\..\Interfaces\{7f1fd34e-a4db-4c16-ab8e-dd6162a8909f}: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{7f1fd34e-a4db-4c16-ab8e-dd6162a8909f}: [DhcpNameServer] 79.170.251.130 8.8.8.8
Tcpip\..\Interfaces\{85d82c79-87cf-4863-875c-40b0395822c2}: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{85d82c79-87cf-4863-875c-40b0395822c2}: [DhcpNameServer] 79.170.251.130 8.8.8.8
Tcpip\..\Interfaces\{c60bd49e-d460-49b5-97fe-d496eee9834e}: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{c60bd49e-d460-49b5-97fe-d496eee9834e}: [DhcpNameServer] 82.163.143.136
ManualProxies: 1http=127.0.0.1:8080;https=127.0.0.1:8080
Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: f0cnkvkk.default-1505036589501
FF ProfilePath: C:\Users\JiĹ™Ă\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 [2017-10-16]
FF NewTab: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> Google
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> Google
FF Homepage: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/?bcutc=sp-006
FF Keyword.URL: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\JiĹ™Ă\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-10-16]
FF Extension: (Avast Online Security) - C:\Users\JiĹ™Ă\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501\Extensions\wrc@avast.com.xpi [2017-10-16]
FF SearchPlugin: C:\Users\JiĹ™Ă\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501\searchplugins\google-avast.xml [2017-10-03]
FF Extension: (Adblocker for Youtube™) - C:\Program Files\Mozilla Firefox\browser\features\{5C3FD6D1-9185-4195-B5E1-FAB622427F59} [2017-08-31] [not signed]
FF Extension: (Adblocker for Youtube™) - C:\Program Files (x86)\Mozilla Firefox\browser\features\{5C3FD6D1-9185-4195-B5E1-FAB622427F59} [2017-08-31] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_170.dll [2017-10-16] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_170.dll [2017-10-16] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-21] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-08-18] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default [2017-10-16]
CHR Extension: (Prezentace) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-21]
CHR Extension: (YouTube) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-21]
CHR Extension: (Avast SafePrice) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-09-21]
CHR Extension: (Tabulky) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-21]
CHR Extension: (Avast Online Security) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-12]
CHR Extension: (Platby InternetovĂ©ho obchodu Chrome) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-21]
CHR Extension: (Gmail) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-21]
CHR Extension: (Chrome Media Router) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-21]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-08] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-08] (AVAST Software)
R2 BBDemon; C:\Program Files (x86)\Dassault Systemes\B18\intel_a\code\bin\CATSysDemon.exe [36864 2007-05-04] (Dassault Systemes) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1468608 2016-10-06] (Disc Soft Ltd)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corp.)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2017-08-08] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [321032 2017-10-08] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-10-08] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-10-08] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57736 2017-10-08] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [47008 2017-10-08] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [147776 2017-10-08] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110376 2017-10-08] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84416 2017-10-08] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1020536 2017-10-08] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [587168 2017-10-08] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [201352 2017-10-08] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [363440 2017-10-08] (AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-11-09] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-11-09] (Disc Soft Ltd)
R3 MTsensor; C:\Windows\system32\DRIVERS\ATK64AMD.sys [13680 2007-08-09] ()
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 wfcre; C:\Windows\System32\drivers\wfcre.sys [124288 2017-07-04] ()
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-10-16 21:19 - 2017-10-16 21:20 - 000017093 _____ C:\Users\JiĹ™Ă\Desktop\FRST.txt
2017-10-16 21:19 - 2017-10-16 21:17 - 000112640 _____ (forum.viry.cz) C:\Users\JiĹ™Ă\Downloads\FRSTLauncher.exe
2017-10-16 21:18 - 2017-10-16 21:19 - 000000000 ____D C:\FRST
2017-10-16 21:18 - 2017-10-16 21:18 - 002401792 _____ (Farbar) C:\Users\JiĹ™Ă\Desktop\FRST64.exe
2017-10-16 21:17 - 2017-10-16 21:17 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-16 21:15 - 2017-10-16 21:15 - 002401792 _____ (Farbar) C:\Users\JiĹ™Ă\Downloads\FRST64.exe
2017-10-12 19:03 - 2017-10-12 19:03 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-12 18:54 - 2017-09-18 05:05 - 000497424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-10-12 18:54 - 2017-09-18 05:03 - 000791272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-10-12 18:54 - 2017-09-18 04:59 - 000341344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-10-12 18:54 - 2017-09-18 04:55 - 001431240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 006672680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 001845512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 001360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 001277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 000981888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-10-12 18:54 - 2017-09-18 04:34 - 000095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2017-10-12 18:54 - 2017-09-18 04:31 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2017-10-12 18:54 - 2017-09-18 04:29 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-10-12 18:54 - 2017-09-18 04:28 - 000237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-10-12 18:54 - 2017-09-18 04:27 - 004615168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-10-12 18:54 - 2017-09-18 04:26 - 000431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2017-10-12 18:54 - 2017-09-18 04:26 - 000298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2017-10-12 18:54 - 2017-09-18 04:26 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-10-12 18:54 - 2017-09-18 04:26 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-10-12 18:54 - 2017-09-18 04:25 - 002333184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-10-12 18:54 - 2017-09-18 04:24 - 007626240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-10-12 18:54 - 2017-09-18 04:24 - 000819200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2017-10-12 18:54 - 2017-09-18 04:24 - 000755200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-10-12 18:54 - 2017-09-18 04:23 - 000857600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2017-10-12 18:54 - 2017-09-18 04:23 - 000816640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2017-10-12 18:54 - 2017-09-18 04:23 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-10-12 18:54 - 2017-09-18 04:23 - 000238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2017-10-12 18:54 - 2017-09-18 04:20 - 002641920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-10-12 18:54 - 2017-09-18 04:20 - 000343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2017-10-12 18:54 - 2017-09-18 04:17 - 000641024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 002997760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-10-12 18:54 - 2017-09-18 04:14 - 002740224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 002649600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 001599488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 000542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 001013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 000886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 000773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-10-12 18:54 - 2017-09-18 04:13 - 000751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 000598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2017-10-12 18:54 - 2017-09-18 04:11 - 000783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-10-12 18:54 - 2017-09-15 00:52 - 000136032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2017-10-12 18:54 - 2017-09-15 00:49 - 001202936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-10-12 18:54 - 2017-09-15 00:31 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-10-12 18:54 - 2017-09-15 00:25 - 000529920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-10-12 18:54 - 2017-09-07 09:07 - 000315744 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-10-12 18:54 - 2017-09-07 08:29 - 002048496 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2017-10-12 18:54 - 2017-09-07 08:24 - 000869848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2017-10-12 18:54 - 2017-09-07 08:22 - 001504056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2017-10-12 18:54 - 2017-09-07 08:21 - 000975744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-10-12 18:54 - 2017-09-07 08:21 - 000861024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2017-10-12 18:54 - 2017-09-07 08:21 - 000780640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-10-12 18:54 - 2017-09-07 08:21 - 000116576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2017-10-12 18:54 - 2017-09-07 08:20 - 000577976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-10-12 18:54 - 2017-09-07 08:19 - 002168288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2017-10-12 18:54 - 2017-09-07 08:19 - 000606560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2017-10-12 18:54 - 2017-09-07 08:19 - 000111968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2017-10-12 18:54 - 2017-09-07 08:17 - 001557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-10-12 18:54 - 2017-09-07 08:16 - 000962768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-10-12 18:54 - 2017-09-07 08:13 - 000546456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2017-10-12 18:54 - 2017-09-07 08:12 - 000306800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2017-10-12 18:54 - 2017-09-07 08:07 - 005686784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-10-12 18:54 - 2017-09-07 08:01 - 001631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-10-12 18:54 - 2017-09-07 08:01 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-10-12 18:54 - 2017-09-07 07:58 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2017-10-12 18:54 - 2017-09-07 07:57 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-10-12 18:54 - 2017-09-07 07:57 - 000138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2017-10-12 18:54 - 2017-09-07 07:57 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2017-10-12 18:54 - 2017-09-07 07:56 - 000255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2017-10-12 18:54 - 2017-09-07 07:56 - 000097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2017-10-12 18:54 - 2017-09-07 07:55 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll
2017-10-12 18:54 - 2017-09-07 07:55 - 000129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-10-12 18:54 - 2017-09-07 07:55 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2017-10-12 18:54 - 2017-09-07 07:54 - 000506368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2017-10-12 18:54 - 2017-09-07 07:54 - 000392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2017-10-12 18:54 - 2017-09-07 07:54 - 000231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-10-12 18:54 - 2017-09-07 07:54 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2017-10-12 18:54 - 2017-09-07 07:54 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2017-10-12 18:54 - 2017-09-07 07:53 - 000374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2017-10-12 18:54 - 2017-09-07 07:53 - 000315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-10-12 18:54 - 2017-09-07 07:53 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-10-12 18:54 - 2017-09-07 07:52 - 000557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-10-12 18:54 - 2017-09-07 07:52 - 000265728 _____ C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2017-10-12 18:54 - 2017-09-07 07:52 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2017-10-12 18:54 - 2017-09-07 07:52 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Core.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-10-12 18:54 - 2017-09-07 07:51 - 000202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-10-12 18:54 - 2017-09-07 07:50 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2017-10-12 18:54 - 2017-09-07 07:50 - 000218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2017-10-12 18:54 - 2017-09-07 07:49 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2017-10-12 18:54 - 2017-09-07 07:49 - 000262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2017-10-12 18:54 - 2017-09-07 07:48 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2017-10-12 18:54 - 2017-09-07 07:48 - 000314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2017-10-12 18:54 - 2017-09-07 07:48 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2017-10-12 18:54 - 2017-09-07 07:47 - 000787968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2017-10-12 18:54 - 2017-09-07 07:47 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2017-10-12 18:54 - 2017-09-07 07:47 - 000288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2017-10-12 18:54 - 2017-09-07 07:45 - 013875712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-10-12 18:54 - 2017-09-07 07:44 - 001534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-10-12 18:54 - 2017-09-07 07:44 - 000901120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2017-10-12 18:54 - 2017-09-07 07:44 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.InkControls.dll
2017-10-12 18:54 - 2017-09-07 07:43 - 000653312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2017-10-12 18:54 - 2017-09-07 07:42 - 001077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2017-10-12 18:54 - 2017-09-07 07:42 - 000355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2017-10-12 18:54 - 2017-09-07 07:41 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 003307008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 003198464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 000795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 000746496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcprx.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 000713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2017-10-12 18:54 - 2017-09-07 07:39 - 006109696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2017-10-12 18:54 - 2017-09-07 07:39 - 000470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2017-10-12 18:54 - 2017-09-07 07:38 - 001255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-10-12 18:54 - 2017-09-07 07:38 - 000895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2017-10-12 18:54 - 2017-09-07 07:38 - 000459776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2017-10-12 18:54 - 2017-09-07 07:37 - 000220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll
2017-10-12 18:54 - 2017-09-07 07:37 - 000090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2017-10-12 18:54 - 2017-09-07 07:36 - 001221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2017-10-12 18:54 - 2017-09-07 07:36 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraCaptureUI.dll
2017-10-12 18:54 - 2017-09-07 07:35 - 000357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2017-10-12 18:54 - 2017-09-07 07:35 - 000103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2017-10-12 18:54 - 2017-09-07 07:34 - 003733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-10-12 18:54 - 2017-09-07 07:34 - 000709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2017-10-12 18:54 - 2017-09-07 07:34 - 000400384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2017-10-12 18:54 - 2017-09-07 07:33 - 001656320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll
2017-10-12 18:54 - 2017-09-07 07:33 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2017-10-12 18:54 - 2017-09-07 07:32 - 001993216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-10-12 18:54 - 2017-09-07 07:32 - 001247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2017-10-12 18:54 - 2017-09-07 07:32 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 001886720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 001004544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 000654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 000621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 000566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2017-10-12 18:54 - 2017-09-07 07:30 - 002747904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-10-12 18:54 - 2017-09-07 07:30 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-10-12 18:54 - 2017-09-07 07:30 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2017-10-12 18:54 - 2017-09-07 07:29 - 001576448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2017-10-12 18:54 - 2017-09-07 07:07 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2017-10-12 18:54 - 2017-08-22 06:49 - 000248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2017-10-12 18:54 - 2017-08-08 06:48 - 000388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-10-12 18:54 - 2017-08-08 06:41 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-10-12 18:54 - 2017-03-04 08:28 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2017-10-12 18:54 - 2017-03-04 08:24 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-10-12 18:54 - 2017-03-04 08:23 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2017-10-12 18:54 - 2017-03-04 08:05 - 000458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2017-10-12 18:54 - 2017-03-04 08:01 - 001232384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-10-12 18:54 - 2017-03-04 08:00 - 000862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-10-12 18:54 - 2017-03-04 08:00 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-10-12 18:54 - 2016-12-21 06:43 - 000285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-10-12 18:53 - 2017-09-18 05:27 - 000218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2017-10-12 18:53 - 2017-09-18 05:04 - 000918304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-10-12 18:53 - 2017-09-18 04:55 - 005722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-10-12 18:53 - 2017-09-18 04:54 - 001980768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-10-12 18:53 - 2017-09-18 04:52 - 020967840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-10-12 18:53 - 2017-09-18 04:52 - 004023560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-10-12 18:53 - 2017-09-18 04:51 - 000178016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-10-12 18:53 - 2017-09-18 04:49 - 001435896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-10-12 18:53 - 2017-09-18 04:49 - 001412128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-10-12 18:53 - 2017-09-18 04:49 - 001260784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-12 18:53 - 2017-09-18 04:48 - 000117792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-10-12 18:53 - 2017-09-18 04:33 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-10-12 18:53 - 2017-09-18 04:32 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2017-10-12 18:53 - 2017-09-18 04:31 - 000519168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll
2017-10-12 18:53 - 2017-09-18 04:31 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-10-12 18:53 - 2017-09-18 04:30 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-10-12 18:53 - 2017-09-18 04:30 - 000147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2017-10-12 18:53 - 2017-09-18 04:28 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2017-10-12 18:53 - 2017-09-18 04:27 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-10-12 18:53 - 2017-09-18 04:26 - 000538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2017-10-12 18:53 - 2017-09-18 04:26 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2017-10-12 18:53 - 2017-09-18 04:25 - 000461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2017-10-12 18:53 - 2017-09-18 04:23 - 000636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2017-10-12 18:53 - 2017-09-18 04:23 - 000287744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2017-10-12 18:53 - 2017-09-18 04:22 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2017-10-12 18:53 - 2017-09-18 04:22 - 001137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2017-10-12 18:53 - 2017-09-18 04:19 - 002750976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-10-12 18:53 - 2017-09-18 04:19 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2017-10-12 18:53 - 2017-09-18 04:19 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-10-12 18:53 - 2017-09-18 04:18 - 007470592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-10-12 18:53 - 2017-09-18 04:17 - 003401216 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-10-12 18:53 - 2017-09-18 04:16 - 004596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2017-10-12 18:53 - 2017-09-18 04:16 - 003520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2017-10-12 18:53 - 2017-09-18 04:15 - 002538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-10-12 18:53 - 2017-09-18 04:14 - 006474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-10-12 18:53 - 2017-09-18 04:14 - 002682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2017-10-12 18:53 - 2017-09-18 04:14 - 002483712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-10-12 18:53 - 2017-09-18 04:14 - 000903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-10-12 18:53 - 2017-09-18 04:14 - 000657408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-10-12 18:53 - 2017-09-18 04:13 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2017-10-12 18:53 - 2017-09-18 04:11 - 000450048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2017-10-12 18:53 - 2017-09-15 00:59 - 000096064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2017-10-12 18:53 - 2017-09-15 00:34 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2017-10-12 18:53 - 2017-09-15 00:30 - 000291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
2017-10-12 18:53 - 2017-09-15 00:30 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB7.dll
2017-10-12 18:53 - 2017-09-15 00:30 - 000185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2017-10-12 18:53 - 2017-09-15 00:30 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput8.dll
2017-10-12 18:53 - 2017-09-15 00:30 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-12 18:53 - 2017-09-15 00:28 - 000311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-10-12 18:53 - 2017-09-15 00:28 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput.dll
2017-10-12 18:53 - 2017-09-15 00:27 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2017-10-12 18:53 - 2017-09-15 00:26 - 001167360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2017-10-12 18:53 - 2017-09-15 00:26 - 000636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2017-10-12 18:53 - 2017-09-15 00:26 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
2017-10-12 18:53 - 2017-09-15 00:15 - 003106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-10-12 18:53 - 2017-09-14 04:04 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-12 18:53 - 2017-09-14 04:04 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-10-12 18:53 - 2017-09-14 04:04 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-12 18:53 - 2017-09-07 08:32 - 001573792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-10-12 18:53 - 2017-09-07 08:24 - 000263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-10-12 18:53 - 2017-09-07 08:21 - 002265368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-10-12 18:53 - 2017-09-07 08:20 - 000339896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2017-10-12 18:53 - 2017-09-07 08:20 - 000267104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2017-10-12 18:53 - 2017-09-07 08:20 - 000139104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2017-10-12 18:53 - 2017-09-07 08:20 - 000037200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2017-10-12 18:53 - 2017-09-07 08:19 - 000846560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2017-10-12 18:53 - 2017-09-07 08:00 - 000037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-10-12 18:53 - 2017-09-07 07:59 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2017-10-12 18:53 - 2017-09-07 07:58 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2017-10-12 18:53 - 2017-09-07 07:58 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IconCodecService.dll
2017-10-12 18:53 - 2017-09-07 07:57 - 000264704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\socialapis.dll
2017-10-12 18:53 - 2017-09-07 07:54 - 000857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-10-12 18:53 - 2017-09-07 07:54 - 000092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-10-12 18:53 - 2017-09-07 07:53 - 000501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2017-10-12 18:53 - 2017-09-07 07:53 - 000313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2017-10-12 18:53 - 2017-09-07 07:52 - 001300480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-10-12 18:53 - 2017-09-07 07:51 - 001243136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-10-12 18:53 - 2017-09-07 07:51 - 000670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2017-10-12 18:53 - 2017-09-07 07:51 - 000576512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-10-12 18:53 - 2017-09-07 07:51 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2017-10-12 18:53 - 2017-09-07 07:50 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2017-10-12 18:53 - 2017-09-07 07:50 - 000244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2017-10-12 18:53 - 2017-09-07 07:50 - 000206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2017-10-12 18:53 - 2017-09-07 07:50 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2017-10-12 18:53 - 2017-09-07 07:49 - 000415232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2017-10-12 18:53 - 2017-09-07 07:48 - 000396800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2017-10-12 18:53 - 2017-09-07 07:48 - 000225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2017-10-12 18:53 - 2017-09-07 07:47 - 001456640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2017-10-12 18:53 - 2017-09-07 07:47 - 000846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2017-10-12 18:53 - 2017-09-07 07:45 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2017-10-12 18:53 - 2017-09-07 07:42 - 000134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll
2017-10-12 18:53 - 2017-09-07 07:34 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2017-10-12 18:53 - 2017-09-07 07:33 - 001135616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2017-10-12 18:53 - 2017-09-07 07:30 - 001413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2017-10-12 18:53 - 2017-09-07 07:19 - 000467968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2017-10-12 18:53 - 2017-09-07 07:16 - 001507840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2017-10-12 18:53 - 2017-09-07 07:14 - 000561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-10-12 18:53 - 2017-09-07 07:14 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2017-10-12 18:53 - 2017-09-07 07:13 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSave.dll
2017-10-12 18:53 - 2017-09-07 07:13 - 000245760 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2017-10-12 18:53 - 2017-09-07 07:12 - 000963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2017-10-12 18:53 - 2017-09-07 06:58 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2017-10-12 18:53 - 2017-09-07 06:55 - 002424320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2017-10-12 18:53 - 2017-08-22 07:08 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2017-10-12 18:53 - 2017-08-22 06:57 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-10-12 18:53 - 2017-08-08 08:03 - 000102240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2017-10-12 18:53 - 2017-08-08 07:56 - 000054240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-10-12 18:53 - 2017-08-08 07:53 - 000715104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2017-10-12 18:53 - 2017-08-08 07:53 - 000557408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-10-12 18:53 - 2017-08-08 07:25 - 000255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2017-10-12 18:53 - 2017-08-08 07:16 - 000294952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll
2017-10-12 18:53 - 2017-08-08 07:16 - 000086232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
2017-10-12 18:53 - 2017-08-08 06:56 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidtel.exe
2017-10-12 18:53 - 2017-08-08 06:53 - 000450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2017-10-12 18:53 - 2017-08-08 06:53 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2017-10-12 18:53 - 2017-08-08 06:53 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.XamlHost.dll
2017-10-12 18:53 - 2017-08-08 06:50 - 000531456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-10-12 18:53 - 2017-08-08 06:50 - 000334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastlsext.dll
2017-10-12 18:53 - 2017-08-08 06:50 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2017-10-12 18:53 - 2017-08-08 06:49 - 000052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2017-10-12 18:53 - 2017-08-08 06:47 - 000260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Phoneutil.dll
2017-10-12 18:53 - 2017-03-04 08:24 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-10-12 18:53 - 2017-03-04 08:16 - 000368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2017-10-12 18:53 - 2016-09-15 18:40 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-10-12 18:53 - 2016-09-15 18:24 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll
2017-10-12 18:52 - 2017-09-18 05:09 - 002213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-10-12 18:52 - 2017-09-18 05:09 - 000133984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-12 18:52 - 2017-09-18 05:08 - 000998920 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-10-12 18:52 - 2017-09-18 05:05 - 001177688 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-10-12 18:52 - 2017-09-18 05:05 - 000172536 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-12 18:52 - 2017-09-18 05:04 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-10-12 18:52 - 2017-09-18 05:02 - 007213464 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-10-12 18:52 - 2017-09-18 05:02 - 001860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-10-12 18:52 - 2017-09-18 05:00 - 001072248 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 022220864 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 008173672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 004260072 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 001983408 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-10-12 18:52 - 2017-09-18 04:56 - 000057408 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-10-12 18:52 - 2017-09-18 04:35 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-10-12 18:52 - 2017-09-18 04:33 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2017-10-12 18:52 - 2017-09-18 04:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-12 18:52 - 2017-09-18 04:31 - 006288384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-10-12 18:52 - 2017-09-18 04:31 - 000239104 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-10-12 18:52 - 2017-09-18 04:29 - 000411136 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2017-10-12 18:52 - 2017-09-18 04:29 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2017-10-12 18:52 - 2017-09-18 04:28 - 000536064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-12 18:52 - 2017-09-18 04:27 - 000719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-10-12 18:52 - 2017-09-18 04:27 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2017-10-12 18:52 - 2017-09-18 04:27 - 000590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-10-12 18:52 - 2017-09-18 04:27 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-12 18:52 - 2017-09-18 04:27 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-10-12 18:52 - 2017-09-18 04:26 - 000384000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2017-10-12 18:52 - 2017-09-18 04:26 - 000283136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-12 18:52 - 2017-09-18 04:24 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-12 18:52 - 2017-09-18 04:24 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-10-12 18:52 - 2017-09-18 04:20 - 000284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-10-12 18:52 - 2017-09-18 04:19 - 000549376 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-10-12 18:52 - 2017-09-18 04:18 - 008077312 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-10-12 18:52 - 2017-09-18 04:18 - 001145344 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2017-10-12 18:52 - 2017-09-18 04:18 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2017-10-12 18:52 - 2017-09-18 04:15 - 002370048 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-10-12 18:52 - 2017-09-18 04:14 - 000983552 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2017-10-12 18:52 - 2017-09-18 04:14 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2017-10-12 18:52 - 2017-09-18 04:14 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-10-12 18:52 - 2017-09-18 04:12 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-10-12 18:52 - 2017-09-18 04:12 - 000532992 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-10-12 18:52 - 2017-09-15 01:05 - 001302136 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-10-12 18:52 - 2017-09-15 00:32 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2017-10-12 18:52 - 2017-09-15 00:30 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-10-12 18:52 - 2017-09-15 00:22 - 000987648 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2017-10-12 18:52 - 2017-09-15 00:18 - 003299840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-10-12 18:52 - 2017-09-15 00:18 - 000273920 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2017-10-12 18:52 - 2017-09-07 08:01 - 002049480 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-10-12 18:52 - 2017-09-07 07:53 - 000097128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2017-10-12 18:52 - 2017-09-07 07:52 - 000858464 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2017-10-12 18:52 - 2017-09-07 07:52 - 000148832 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2017-10-12 18:52 - 2017-09-07 07:52 - 000044464 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2017-10-12 18:52 - 2017-09-07 07:51 - 000092512 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-10-12 18:52 - 2017-09-07 07:45 - 002532704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-10-12 18:52 - 2017-09-07 07:45 - 000387872 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-10-12 18:52 - 2017-09-07 07:23 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2017-10-12 18:52 - 2017-09-07 07:21 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-10-12 18:52 - 2017-09-07 07:21 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-10-12 18:52 - 2017-09-07 07:20 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2017-10-12 18:52 - 2017-09-07 07:20 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-10-12 18:52 - 2017-09-07 07:20 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2017-10-12 18:52 - 2017-09-07 07:19 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2017-10-12 18:52 - 2017-09-07 07:19 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2017-10-12 18:52 - 2017-09-07 07:18 - 000418304 _____ C:\Windows\system32\Windows.Perception.Stub.dll
2017-10-12 18:52 - 2017-09-07 07:18 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2017-10-12 18:52 - 2017-09-07 07:18 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-10-12 18:52 - 2017-09-07 07:17 - 000730112 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-10-12 18:52 - 2017-09-07 07:17 - 000360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2017-10-12 18:52 - 2017-09-07 07:16 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-10-12 18:52 - 2017-09-07 07:16 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2017-10-12 18:52 - 2017-09-07 07:16 - 000335872 _____ (Microsoft Corporation) C:\Windows\system32\socialapis.dll
2017-10-12 18:52 - 2017-09-07 07:15 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-10-12 18:52 - 2017-09-07 07:15 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-10-12 18:52 - 2017-09-07 07:14 - 000252416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-10-12 18:52 - 2017-09-07 07:13 - 000671744 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2017-10-12 18:52 - 2017-09-07 07:12 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2017-10-12 18:52 - 2017-09-07 07:11 - 000527360 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2017-10-12 18:52 - 2017-09-07 07:09 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2017-10-12 18:52 - 2017-09-07 07:08 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-10-12 18:52 - 2017-09-07 07:07 - 007655424 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2017-10-12 18:52 - 2017-09-07 07:07 - 003778048 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2017-10-12 18:52 - 2017-09-07 07:07 - 001403392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2017-10-12 18:52 - 2017-09-07 07:07 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2017-10-12 18:52 - 2017-09-07 07:04 - 001908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-10-12 18:52 - 2017-09-07 07:03 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2017-10-12 18:52 - 2017-09-07 07:03 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-10-12 18:52 - 2017-09-07 07:01 - 002390016 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2017-10-12 18:52 - 2017-09-07 07:01 - 001217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2017-10-12 18:52 - 2017-09-07 07:01 - 000411648 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2017-10-12 18:52 - 2017-09-07 07:01 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.ps.dll
2017-10-12 18:52 - 2017-09-07 06:59 - 000611328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2017-10-12 18:52 - 2017-09-07 06:58 - 001700352 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2017-10-12 18:52 - 2017-09-07 06:58 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2017-10-12 18:52 - 2017-09-07 06:57 - 003134976 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-10-12 18:52 - 2017-09-07 06:57 - 001424896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2017-10-12 18:52 - 2017-09-07 06:56 - 004149248 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-10-12 18:52 - 2017-09-07 06:56 - 000846336 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2017-10-12 18:52 - 2017-09-07 06:55 - 001984000 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-10-12 18:52 - 2017-09-07 06:55 - 001369088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2017-10-12 18:52 - 2017-09-07 06:55 - 001131520 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-10-12 18:52 - 2017-09-07 06:54 - 000834560 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-10-12 18:52 - 2017-08-22 07:02 - 000221696 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe
2017-10-12 18:52 - 2017-08-22 06:53 - 013441536 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-10-12 18:52 - 2017-08-22 06:50 - 012349440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-10-12 18:52 - 2017-08-08 07:59 - 000357984 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2017-10-12 18:52 - 2017-08-08 07:59 - 000118112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-10-12 18:52 - 2017-08-08 07:45 - 000453544 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2017-10-12 18:52 - 2017-08-08 07:15 - 000502272 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2017-10-12 18:52 - 2017-08-08 07:14 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\Phoneutil.dll
2017-10-12 18:52 - 2017-08-08 07:12 - 000579584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-10-12 18:52 - 2017-03-04 08:28 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2017-10-12 18:52 - 2017-03-04 08:23 - 001184256 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2017-10-12 18:52 - 2017-03-04 08:08 - 001266176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2017-10-12 18:52 - 2016-09-15 18:34 - 000441856 _____ (Microsoft Corporation) C:\Windows\system32\AccountsRt.dll
2017-10-12 18:52 - 2016-08-27 07:12 - 000244816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-10-12 18:51 - 2017-09-18 05:09 - 007780192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-12 18:51 - 2017-09-18 05:09 - 000646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-10-12 18:51 - 2017-09-18 05:01 - 000431456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-10-12 18:51 - 2017-09-18 05:01 - 000223072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-12 18:51 - 2017-09-18 04:59 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-10-12 18:51 - 2017-09-18 04:36 - 022570496 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-10-12 18:51 - 2017-09-18 04:29 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2017-10-12 18:51 - 2017-09-18 04:28 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2017-10-12 18:51 - 2017-09-18 04:28 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2017-10-12 18:51 - 2017-09-18 04:27 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-10-12 18:51 - 2017-09-18 04:26 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-10-12 18:51 - 2017-09-18 04:26 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-10-12 18:51 - 2017-09-18 04:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-10-12 18:51 - 2017-09-18 04:24 - 013107712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-10-12 18:51 - 2017-09-18 04:24 - 002103808 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2017-10-12 18:51 - 2017-09-18 04:24 - 001589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2017-10-12 18:51 - 2017-09-18 04:23 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2017-10-12 18:51 - 2017-09-18 04:21 - 018364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-10-12 18:51 - 2017-09-18 04:20 - 023677952 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-12 18:51 - 2017-09-18 04:20 - 019414016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-10-12 18:51 - 2017-09-18 04:20 - 000937984 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-10-12 18:51 - 2017-09-18 04:18 - 012204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-10-12 18:51 - 2017-09-18 04:18 - 008114688 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-10-12 18:51 - 2017-09-18 04:17 - 001783296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-12 18:51 - 2017-09-18 04:16 - 004743168 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 006065152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 003202048 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 001282048 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 001231360 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 003663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 002897408 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 001518080 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-10-12 18:51 - 2017-09-18 04:14 - 000971264 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 000650752 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2017-10-12 18:51 - 2017-09-18 04:13 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-10-12 18:51 - 2017-09-18 04:13 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-10-12 18:51 - 2017-09-18 04:12 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-10-12 18:51 - 2017-09-15 00:32 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-12 18:51 - 2017-09-15 00:24 - 000981504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2017-10-12 18:51 - 2017-09-15 00:22 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-10-12 18:51 - 2017-09-15 00:20 - 002852864 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-10-12 18:51 - 2017-09-15 00:16 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2017-10-12 18:51 - 2017-09-07 08:10 - 000603488 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2017-10-12 18:51 - 2017-09-07 08:01 - 002681200 _____ C:\Windows\system32\CoreUIComponents.dll
2017-10-12 18:51 - 2017-09-07 07:57 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-10-12 18:51 - 2017-09-07 07:56 - 001069720 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2017-10-12 18:51 - 2017-09-07 07:56 - 000328008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2017-10-12 18:51 - 2017-09-07 07:54 - 002761248 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-10-12 18:51 - 2017-09-07 07:54 - 002188128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-10-12 18:51 - 2017-09-07 07:54 - 001739072 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2017-10-12 18:51 - 2017-09-07 07:54 - 001157008 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-10-12 18:51 - 2017-09-07 07:54 - 000402784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-10-12 18:51 - 2017-09-07 07:52 - 000126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-10-12 18:51 - 2017-09-07 07:51 - 000306688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2017-10-12 18:51 - 2017-09-07 07:49 - 001277824 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-10-12 18:51 - 2017-09-07 07:49 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-10-12 18:51 - 2017-09-07 07:47 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-10-12 18:51 - 2017-09-07 07:43 - 000693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-10-12 18:51 - 2017-09-07 07:31 - 002028032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-10-12 18:51 - 2017-09-07 07:31 - 001509376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-10-12 18:51 - 2017-09-07 07:24 - 001631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-10-12 18:51 - 2017-09-07 07:22 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-10-12 18:51 - 2017-09-07 07:22 - 000021504 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2017-10-12 18:51 - 2017-09-07 07:21 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2017-10-12 18:51 - 2017-09-07 07:21 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Printers.dll
2017-10-12 18:51 - 2017-09-07 07:21 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2017-10-12 18:51 - 2017-09-07 07:18 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000505856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000276992 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-10-12 18:51 - 2017-09-07 07:17 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000139264 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-10-12 18:51 - 2017-09-07 07:16 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2017-10-12 18:51 - 2017-09-07 07:16 - 000691200 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2017-10-12 18:51 - 2017-09-07 07:16 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2017-10-12 18:51 - 2017-09-07 07:16 - 000174592 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2017-10-12 18:51 - 2017-09-07 07:15 - 000432128 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2017-10-12 18:51 - 2017-09-07 07:15 - 000389120 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-10-12 18:51 - 2017-09-07 07:15 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2017-10-12 18:51 - 2017-09-07 07:15 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-10-12 18:51 - 2017-09-07 07:14 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2017-10-12 18:51 - 2017-09-07 07:14 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2017-10-12 18:51 - 2017-09-07 07:13 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2017-10-12 18:51 - 2017-09-07 07:13 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2017-10-12 18:51 - 2017-09-07 07:11 - 000583680 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2017-10-12 18:51 - 2017-09-07 07:10 - 017200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-10-12 18:51 - 2017-09-07 07:10 - 001037312 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2017-10-12 18:51 - 2017-09-07 07:09 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-10-12 18:51 - 2017-09-07 07:08 - 001639424 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2017-10-12 18:51 - 2017-09-07 07:08 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2017-10-12 18:51 - 2017-09-07 07:07 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\CastLaunch.dll
2017-10-12 18:51 - 2017-09-07 07:05 - 001105408 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2017-10-12 18:51 - 2017-09-07 07:05 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2017-10-12 18:51 - 2017-09-07 07:04 - 000870400 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2017-10-12 18:51 - 2017-09-07 07:03 - 001837056 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2017-10-12 18:51 - 2017-09-07 07:00 - 000539136 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2017-10-12 18:51 - 2017-09-07 07:00 - 000467968 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2017-10-12 18:51 - 2017-09-07 07:00 - 000391168 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2017-10-12 18:51 - 2017-09-07 06:59 - 004474368 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-10-12 18:51 - 2017-09-07 06:59 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2017-10-12 18:51 - 2017-09-07 06:59 - 000760320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-10-12 18:51 - 2017-09-07 06:58 - 002097152 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-10-12 18:51 - 2017-09-07 06:57 - 005611520 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-10-12 18:51 - 2017-09-07 06:57 - 001275392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2017-10-12 18:51 - 2017-09-07 06:57 - 000874496 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2017-10-12 18:51 - 2017-09-07 06:56 - 002695680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-10-12 18:51 - 2017-09-07 06:56 - 002286592 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-10-12 18:51 - 2017-09-07 06:56 - 002208768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2017-10-12 18:51 - 2017-09-07 06:55 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-10-12 18:51 - 2017-08-22 07:06 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-10-12 18:51 - 2017-08-22 07:05 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2017-10-12 18:51 - 2017-08-22 07:04 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2017-10-12 18:51 - 2017-08-08 08:01 - 000376672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2017-10-12 18:51 - 2017-08-08 07:53 - 000026976 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2017-10-12 18:51 - 2017-08-08 07:45 - 001102176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-10-12 18:51 - 2017-08-08 07:18 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2017-10-12 18:51 - 2017-08-08 07:14 - 000658432 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2017-10-12 18:51 - 2017-08-08 07:10 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-10-12 18:51 - 2017-08-08 06:55 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-10-12 18:51 - 2017-03-04 09:10 - 000360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-10-12 18:51 - 2017-03-04 09:03 - 000160096 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2017-10-12 18:51 - 2017-03-04 08:28 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll
2017-10-12 18:51 - 2017-03-04 08:13 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\CameraCaptureUI.dll
2017-10-12 18:51 - 2016-11-02 12:43 - 000270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-10-12 18:51 - 2016-09-15 18:30 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll
2017-10-12 18:50 - 2017-09-18 05:17 - 001564512 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-10-12 18:50 - 2017-09-18 05:17 - 000245600 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2017-10-12 18:50 - 2017-09-18 05:08 - 002253664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-12 18:50 - 2017-09-18 05:05 - 000168800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-10-12 18:50 - 2017-09-18 05:04 - 000404832 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-12 18:50 - 2017-09-18 05:01 - 002446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-10-12 18:50 - 2017-09-18 05:01 - 000624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-10-12 18:50 - 2017-09-18 04:58 - 001600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-10-12 18:50 - 2017-09-18 04:58 - 000206688 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2017-10-12 18:50 - 2017-09-18 04:57 - 001566552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-10-12 18:50 - 2017-09-18 04:57 - 001460696 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-10-12 18:50 - 2017-09-18 04:57 - 001415712 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-12 18:50 - 2017-09-18 04:33 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\TransliterationRanker.dll
2017-10-12 18:50 - 2017-09-18 04:32 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\jpninputrouter.dll
2017-10-12 18:50 - 2017-09-18 04:32 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\EmojiDS.dll
2017-10-12 18:50 - 2017-09-18 04:31 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\RuleBasedDS.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\jpnranker.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000257536 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000196096 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000174592 _____ C:\Windows\system32\IHDS.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\VocabRoamingHandler.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\StaticDictDS.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\chxranker.dll
2017-10-12 18:50 - 2017-09-18 04:29 - 009129984 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-10-12 18:50 - 2017-09-18 04:29 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\ChsStrokeDS.dll
2017-10-12 18:50 - 2017-09-18 04:28 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\ChtHkStrokeDS.dll
2017-10-12 18:50 - 2017-09-18 04:28 - 000335872 _____ (Microsoft Corporation) C:\Windows\system32\ChsPinyinRanker.dll
2017-10-12 18:50 - 2017-09-18 04:28 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\MtfDecoder.dll
2017-10-12 18:50 - 2017-09-18 04:28 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000626176 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\ChxAPDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000480768 _____ (Microsoft Corporation) C:\Windows\system32\msimeChsPinyinMainDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\ChxHAPDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000422400 _____ (Microsoft Corporation) C:\Windows\system32\ChtCangjieDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000410624 _____ (Microsoft Corporation) C:\Windows\system32\ChtQuickDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000336384 _____ (Microsoft Corporation) C:\Windows\system32\jpndecoder.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\chxinputrouter.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000326656 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 000562176 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 000481792 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-10-12 18:50 - 2017-09-18 04:25 - 001914368 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2017-10-12 18:50 - 2017-09-18 04:24 - 001584640 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2017-10-12 18:50 - 2017-09-18 04:22 - 004749824 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-10-12 18:50 - 2017-09-18 04:22 - 003291648 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-10-12 18:50 - 2017-09-18 04:22 - 000883712 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-10-12 18:50 - 2017-09-18 04:22 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-10-12 18:50 - 2017-09-18 04:18 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2017-10-12 18:50 - 2017-09-18 04:18 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-10-12 18:50 - 2017-09-18 04:18 - 000932864 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-10-12 18:50 - 2017-09-18 04:17 - 002279424 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-10-12 18:50 - 2017-09-18 04:16 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-12 18:50 - 2017-09-18 04:15 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-10-12 18:50 - 2017-09-18 04:15 - 002800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2017-10-12 18:50 - 2017-09-18 04:15 - 001692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-10-12 18:50 - 2017-09-18 04:15 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 003615744 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-10-12 18:50 - 2017-09-18 04:14 - 002321408 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 001328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 001040896 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 000908800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-12 18:50 - 2017-09-18 04:13 - 001726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-10-12 18:50 - 2017-09-18 04:11 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\trie.dll
2017-10-12 18:50 - 2017-09-18 04:11 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\MTFFuzzyDS.dll
2017-10-12 18:50 - 2017-09-18 04:11 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\MTFSpellcheckDS.dll
2017-10-12 18:50 - 2017-09-15 01:14 - 000119328 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2017-10-12 18:50 - 2017-09-15 00:32 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\dinput8.dll
2017-10-12 18:50 - 2017-09-15 00:32 - 000162304 _____ (Microsoft Corporation) C:\Windows\system32\dinput.dll
2017-10-12 18:50 - 2017-09-15 00:31 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-10-12 18:50 - 2017-09-15 00:25 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2017-10-12 18:50 - 2017-09-15 00:23 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2017-10-12 18:50 - 2017-09-15 00:22 - 000820736 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2017-10-12 18:50 - 2017-09-15 00:19 - 000928256 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2017-10-12 18:50 - 2017-09-07 08:20 - 000367208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2017-10-12 18:50 - 2017-09-07 08:16 - 000379232 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-10-12 18:50 - 2017-09-07 08:03 - 001887408 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-10-12 18:50 - 2017-09-07 08:02 - 032693432 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsRaw.dll
2017-10-12 18:50 - 2017-09-07 08:00 - 000764392 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2017-10-12 18:50 - 2017-09-07 07:57 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2017-10-12 18:50 - 2017-09-07 07:54 - 000658784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-10-12 18:50 - 2017-09-07 07:54 - 000146784 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2017-10-12 18:50 - 2017-09-07 07:53 - 000684896 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-10-12 18:50 - 2017-09-07 07:53 - 000431296 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2017-10-12 18:50 - 2017-09-07 07:53 - 000296288 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2017-10-12 18:50 - 2017-09-07 07:53 - 000144736 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-10-12 18:50 - 2017-09-07 07:52 - 002915704 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2017-10-12 18:50 - 2017-09-07 07:52 - 001267512 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2017-10-12 18:50 - 2017-09-07 07:52 - 001100128 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2017-10-12 18:50 - 2017-09-07 07:52 - 000989024 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2017-10-12 18:50 - 2017-09-07 07:50 - 001694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-10-12 18:50 - 2017-09-07 07:50 - 000236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-10-12 18:50 - 2017-09-07 07:46 - 000628552 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2017-10-12 18:50 - 2017-09-07 07:30 - 007218176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-10-12 18:50 - 2017-09-07 07:22 - 000584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2017-10-12 18:50 - 2017-09-07 07:22 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2017-10-12 18:50 - 2017-09-07 07:22 - 000045056 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
pokracovani v dalsim prispevku
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2017
Ran by Jiřà (administrator) on DESKTOP-QGUN0J2 (16-10-2017 21:19:18)
Running from C:\Users\JiĹ™Ă\Desktop
Loaded Profiles: Jiřà (Available Profiles: defaultuser0 & JiĹ™Ă)
Platform: Windows 10 Home Version 1607 170917-1700 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Dassault Systemes) C:\Program Files (x86)\Dassault Systemes\B18\intel_a\code\bin\CATSysDemon.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
() C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe
(InstallShield®) C:\Program Files (x86)\Common Files\InstallShield\Update\ISUSPM.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\JiĹ™Ă\Downloads\FRSTLauncher.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-08] (AVAST Software)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-234085966-1151612453-4061763284-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4557504 2016-10-06] (Disc Soft Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-10-09]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
BootExecute: autocheck autochk * aswBoot.exe /M:5dc10a20 /wow /dir:"C:\Program Files\AVAST Software\Avast"
GroupPolicy: Restriction - Windows Defender <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
ProxyEnable: [HKLM] => Proxy is enabled.
ProxyEnable: [HKLM-x32] => Proxy is enabled.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
AutoConfigURL: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
Tcpip\Parameters: [DhcpNameServer] 79.170.251.130 8.8.8.8
Tcpip\Parameters: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{4ba45da4-fc5c-4821-ae2a-2345c6a49da7}: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{4ba45da4-fc5c-4821-ae2a-2345c6a49da7}: [DhcpNameServer] 82.163.143.136
Tcpip\..\Interfaces\{7f1fd34e-a4db-4c16-ab8e-dd6162a8909f}: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{7f1fd34e-a4db-4c16-ab8e-dd6162a8909f}: [DhcpNameServer] 79.170.251.130 8.8.8.8
Tcpip\..\Interfaces\{85d82c79-87cf-4863-875c-40b0395822c2}: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{85d82c79-87cf-4863-875c-40b0395822c2}: [DhcpNameServer] 79.170.251.130 8.8.8.8
Tcpip\..\Interfaces\{c60bd49e-d460-49b5-97fe-d496eee9834e}: [NameServer] 82.163.143.136 82.163.142.138
Tcpip\..\Interfaces\{c60bd49e-d460-49b5-97fe-d496eee9834e}: [DhcpNameServer] 82.163.143.136
ManualProxies: 1http=127.0.0.1:8080;https=127.0.0.1:8080
Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: f0cnkvkk.default-1505036589501
FF ProfilePath: C:\Users\JiĹ™Ă\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 [2017-10-16]
FF NewTab: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> Google
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> Google
FF Homepage: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/?bcutc=sp-006
FF Keyword.URL: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\JiĹ™Ă\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-10-16]
FF Extension: (Avast Online Security) - C:\Users\JiĹ™Ă\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501\Extensions\wrc@avast.com.xpi [2017-10-16]
FF SearchPlugin: C:\Users\JiĹ™Ă\AppData\Roaming\Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501\searchplugins\google-avast.xml [2017-10-03]
FF Extension: (Adblocker for Youtube™) - C:\Program Files\Mozilla Firefox\browser\features\{5C3FD6D1-9185-4195-B5E1-FAB622427F59} [2017-08-31] [not signed]
FF Extension: (Adblocker for Youtube™) - C:\Program Files (x86)\Mozilla Firefox\browser\features\{5C3FD6D1-9185-4195-B5E1-FAB622427F59} [2017-08-31] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_170.dll [2017-10-16] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_170.dll [2017-10-16] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-21] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-08-18] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default [2017-10-16]
CHR Extension: (Prezentace) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-21]
CHR Extension: (YouTube) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-21]
CHR Extension: (Avast SafePrice) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-09-21]
CHR Extension: (Tabulky) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-21]
CHR Extension: (Avast Online Security) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-12]
CHR Extension: (Platby InternetovĂ©ho obchodu Chrome) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-21]
CHR Extension: (Gmail) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-21]
CHR Extension: (Chrome Media Router) - C:\Users\JiĹ™Ă\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-21]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-08] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-08] (AVAST Software)
R2 BBDemon; C:\Program Files (x86)\Dassault Systemes\B18\intel_a\code\bin\CATSysDemon.exe [36864 2007-05-04] (Dassault Systemes) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1468608 2016-10-06] (Disc Soft Ltd)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corp.)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2017-08-08] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [321032 2017-10-08] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-10-08] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-10-08] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57736 2017-10-08] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [47008 2017-10-08] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [147776 2017-10-08] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110376 2017-10-08] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84416 2017-10-08] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1020536 2017-10-08] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [587168 2017-10-08] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [201352 2017-10-08] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [363440 2017-10-08] (AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-11-09] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-11-09] (Disc Soft Ltd)
R3 MTsensor; C:\Windows\system32\DRIVERS\ATK64AMD.sys [13680 2007-08-09] ()
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 wfcre; C:\Windows\System32\drivers\wfcre.sys [124288 2017-07-04] ()
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-10-16 21:19 - 2017-10-16 21:20 - 000017093 _____ C:\Users\JiĹ™Ă\Desktop\FRST.txt
2017-10-16 21:19 - 2017-10-16 21:17 - 000112640 _____ (forum.viry.cz) C:\Users\JiĹ™Ă\Downloads\FRSTLauncher.exe
2017-10-16 21:18 - 2017-10-16 21:19 - 000000000 ____D C:\FRST
2017-10-16 21:18 - 2017-10-16 21:18 - 002401792 _____ (Farbar) C:\Users\JiĹ™Ă\Desktop\FRST64.exe
2017-10-16 21:17 - 2017-10-16 21:17 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-16 21:15 - 2017-10-16 21:15 - 002401792 _____ (Farbar) C:\Users\JiĹ™Ă\Downloads\FRST64.exe
2017-10-12 19:03 - 2017-10-12 19:03 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-12 18:54 - 2017-09-18 05:05 - 000497424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-10-12 18:54 - 2017-09-18 05:03 - 000791272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-10-12 18:54 - 2017-09-18 04:59 - 000341344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-10-12 18:54 - 2017-09-18 04:55 - 001431240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 006672680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 001845512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 001360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 001277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-10-12 18:54 - 2017-09-18 04:52 - 000981888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-10-12 18:54 - 2017-09-18 04:34 - 000095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2017-10-12 18:54 - 2017-09-18 04:31 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2017-10-12 18:54 - 2017-09-18 04:29 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-10-12 18:54 - 2017-09-18 04:28 - 000237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-10-12 18:54 - 2017-09-18 04:27 - 004615168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-10-12 18:54 - 2017-09-18 04:26 - 000431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2017-10-12 18:54 - 2017-09-18 04:26 - 000298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2017-10-12 18:54 - 2017-09-18 04:26 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-10-12 18:54 - 2017-09-18 04:26 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-10-12 18:54 - 2017-09-18 04:25 - 002333184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-10-12 18:54 - 2017-09-18 04:24 - 007626240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-10-12 18:54 - 2017-09-18 04:24 - 000819200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2017-10-12 18:54 - 2017-09-18 04:24 - 000755200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-10-12 18:54 - 2017-09-18 04:23 - 000857600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2017-10-12 18:54 - 2017-09-18 04:23 - 000816640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2017-10-12 18:54 - 2017-09-18 04:23 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-10-12 18:54 - 2017-09-18 04:23 - 000238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2017-10-12 18:54 - 2017-09-18 04:20 - 002641920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-10-12 18:54 - 2017-09-18 04:20 - 000343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2017-10-12 18:54 - 2017-09-18 04:17 - 000641024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 002997760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-10-12 18:54 - 2017-09-18 04:14 - 002740224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 002649600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 001599488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2017-10-12 18:54 - 2017-09-18 04:14 - 000542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 001013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 000886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 000773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-10-12 18:54 - 2017-09-18 04:13 - 000751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 000598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2017-10-12 18:54 - 2017-09-18 04:13 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2017-10-12 18:54 - 2017-09-18 04:11 - 000783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-10-12 18:54 - 2017-09-15 00:52 - 000136032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2017-10-12 18:54 - 2017-09-15 00:49 - 001202936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-10-12 18:54 - 2017-09-15 00:31 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-10-12 18:54 - 2017-09-15 00:25 - 000529920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-10-12 18:54 - 2017-09-07 09:07 - 000315744 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-10-12 18:54 - 2017-09-07 08:29 - 002048496 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2017-10-12 18:54 - 2017-09-07 08:24 - 000869848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2017-10-12 18:54 - 2017-09-07 08:22 - 001504056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2017-10-12 18:54 - 2017-09-07 08:21 - 000975744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-10-12 18:54 - 2017-09-07 08:21 - 000861024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2017-10-12 18:54 - 2017-09-07 08:21 - 000780640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-10-12 18:54 - 2017-09-07 08:21 - 000116576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2017-10-12 18:54 - 2017-09-07 08:20 - 000577976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-10-12 18:54 - 2017-09-07 08:19 - 002168288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2017-10-12 18:54 - 2017-09-07 08:19 - 000606560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2017-10-12 18:54 - 2017-09-07 08:19 - 000111968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2017-10-12 18:54 - 2017-09-07 08:17 - 001557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-10-12 18:54 - 2017-09-07 08:16 - 000962768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-10-12 18:54 - 2017-09-07 08:13 - 000546456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2017-10-12 18:54 - 2017-09-07 08:12 - 000306800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2017-10-12 18:54 - 2017-09-07 08:07 - 005686784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-10-12 18:54 - 2017-09-07 08:01 - 001631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-10-12 18:54 - 2017-09-07 08:01 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-10-12 18:54 - 2017-09-07 07:58 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2017-10-12 18:54 - 2017-09-07 07:57 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-10-12 18:54 - 2017-09-07 07:57 - 000138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2017-10-12 18:54 - 2017-09-07 07:57 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2017-10-12 18:54 - 2017-09-07 07:56 - 000255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2017-10-12 18:54 - 2017-09-07 07:56 - 000097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2017-10-12 18:54 - 2017-09-07 07:55 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll
2017-10-12 18:54 - 2017-09-07 07:55 - 000129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-10-12 18:54 - 2017-09-07 07:55 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2017-10-12 18:54 - 2017-09-07 07:54 - 000506368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2017-10-12 18:54 - 2017-09-07 07:54 - 000392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2017-10-12 18:54 - 2017-09-07 07:54 - 000231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-10-12 18:54 - 2017-09-07 07:54 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2017-10-12 18:54 - 2017-09-07 07:54 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2017-10-12 18:54 - 2017-09-07 07:53 - 000374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2017-10-12 18:54 - 2017-09-07 07:53 - 000315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-10-12 18:54 - 2017-09-07 07:53 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-10-12 18:54 - 2017-09-07 07:52 - 000557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-10-12 18:54 - 2017-09-07 07:52 - 000265728 _____ C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2017-10-12 18:54 - 2017-09-07 07:52 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2017-10-12 18:54 - 2017-09-07 07:52 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Core.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-10-12 18:54 - 2017-09-07 07:51 - 000202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-10-12 18:54 - 2017-09-07 07:51 - 000185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-10-12 18:54 - 2017-09-07 07:50 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2017-10-12 18:54 - 2017-09-07 07:50 - 000218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2017-10-12 18:54 - 2017-09-07 07:49 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2017-10-12 18:54 - 2017-09-07 07:49 - 000262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2017-10-12 18:54 - 2017-09-07 07:48 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2017-10-12 18:54 - 2017-09-07 07:48 - 000314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2017-10-12 18:54 - 2017-09-07 07:48 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2017-10-12 18:54 - 2017-09-07 07:47 - 000787968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2017-10-12 18:54 - 2017-09-07 07:47 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2017-10-12 18:54 - 2017-09-07 07:47 - 000288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2017-10-12 18:54 - 2017-09-07 07:45 - 013875712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-10-12 18:54 - 2017-09-07 07:44 - 001534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-10-12 18:54 - 2017-09-07 07:44 - 000901120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2017-10-12 18:54 - 2017-09-07 07:44 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.InkControls.dll
2017-10-12 18:54 - 2017-09-07 07:43 - 000653312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2017-10-12 18:54 - 2017-09-07 07:42 - 001077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2017-10-12 18:54 - 2017-09-07 07:42 - 000355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2017-10-12 18:54 - 2017-09-07 07:41 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 003307008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 003198464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 000795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 000746496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcprx.dll
2017-10-12 18:54 - 2017-09-07 07:40 - 000713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2017-10-12 18:54 - 2017-09-07 07:39 - 006109696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2017-10-12 18:54 - 2017-09-07 07:39 - 000470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2017-10-12 18:54 - 2017-09-07 07:38 - 001255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-10-12 18:54 - 2017-09-07 07:38 - 000895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2017-10-12 18:54 - 2017-09-07 07:38 - 000459776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2017-10-12 18:54 - 2017-09-07 07:37 - 000220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll
2017-10-12 18:54 - 2017-09-07 07:37 - 000090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2017-10-12 18:54 - 2017-09-07 07:36 - 001221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2017-10-12 18:54 - 2017-09-07 07:36 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraCaptureUI.dll
2017-10-12 18:54 - 2017-09-07 07:35 - 000357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2017-10-12 18:54 - 2017-09-07 07:35 - 000103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2017-10-12 18:54 - 2017-09-07 07:34 - 003733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-10-12 18:54 - 2017-09-07 07:34 - 000709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2017-10-12 18:54 - 2017-09-07 07:34 - 000400384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2017-10-12 18:54 - 2017-09-07 07:33 - 001656320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll
2017-10-12 18:54 - 2017-09-07 07:33 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2017-10-12 18:54 - 2017-09-07 07:32 - 001993216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-10-12 18:54 - 2017-09-07 07:32 - 001247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2017-10-12 18:54 - 2017-09-07 07:32 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 001886720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 001004544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 000654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 000621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2017-10-12 18:54 - 2017-09-07 07:31 - 000566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2017-10-12 18:54 - 2017-09-07 07:30 - 002747904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-10-12 18:54 - 2017-09-07 07:30 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-10-12 18:54 - 2017-09-07 07:30 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2017-10-12 18:54 - 2017-09-07 07:29 - 001576448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2017-10-12 18:54 - 2017-09-07 07:07 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2017-10-12 18:54 - 2017-08-22 06:49 - 000248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2017-10-12 18:54 - 2017-08-08 06:48 - 000388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-10-12 18:54 - 2017-08-08 06:41 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-10-12 18:54 - 2017-03-04 08:28 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2017-10-12 18:54 - 2017-03-04 08:24 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-10-12 18:54 - 2017-03-04 08:23 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2017-10-12 18:54 - 2017-03-04 08:05 - 000458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2017-10-12 18:54 - 2017-03-04 08:01 - 001232384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-10-12 18:54 - 2017-03-04 08:00 - 000862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-10-12 18:54 - 2017-03-04 08:00 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-10-12 18:54 - 2016-12-21 06:43 - 000285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-10-12 18:53 - 2017-09-18 05:27 - 000218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2017-10-12 18:53 - 2017-09-18 05:04 - 000918304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-10-12 18:53 - 2017-09-18 04:55 - 005722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-10-12 18:53 - 2017-09-18 04:54 - 001980768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-10-12 18:53 - 2017-09-18 04:52 - 020967840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-10-12 18:53 - 2017-09-18 04:52 - 004023560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-10-12 18:53 - 2017-09-18 04:51 - 000178016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-10-12 18:53 - 2017-09-18 04:49 - 001435896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-10-12 18:53 - 2017-09-18 04:49 - 001412128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-10-12 18:53 - 2017-09-18 04:49 - 001260784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-12 18:53 - 2017-09-18 04:48 - 000117792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-10-12 18:53 - 2017-09-18 04:33 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-10-12 18:53 - 2017-09-18 04:32 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2017-10-12 18:53 - 2017-09-18 04:31 - 000519168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll
2017-10-12 18:53 - 2017-09-18 04:31 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-10-12 18:53 - 2017-09-18 04:30 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-10-12 18:53 - 2017-09-18 04:30 - 000147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2017-10-12 18:53 - 2017-09-18 04:28 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2017-10-12 18:53 - 2017-09-18 04:27 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-10-12 18:53 - 2017-09-18 04:26 - 000538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2017-10-12 18:53 - 2017-09-18 04:26 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2017-10-12 18:53 - 2017-09-18 04:25 - 000461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2017-10-12 18:53 - 2017-09-18 04:23 - 000636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2017-10-12 18:53 - 2017-09-18 04:23 - 000287744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2017-10-12 18:53 - 2017-09-18 04:22 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2017-10-12 18:53 - 2017-09-18 04:22 - 001137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2017-10-12 18:53 - 2017-09-18 04:19 - 002750976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-10-12 18:53 - 2017-09-18 04:19 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2017-10-12 18:53 - 2017-09-18 04:19 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-10-12 18:53 - 2017-09-18 04:18 - 007470592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-10-12 18:53 - 2017-09-18 04:17 - 003401216 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-10-12 18:53 - 2017-09-18 04:16 - 004596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2017-10-12 18:53 - 2017-09-18 04:16 - 003520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2017-10-12 18:53 - 2017-09-18 04:15 - 002538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-10-12 18:53 - 2017-09-18 04:14 - 006474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-10-12 18:53 - 2017-09-18 04:14 - 002682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2017-10-12 18:53 - 2017-09-18 04:14 - 002483712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-10-12 18:53 - 2017-09-18 04:14 - 000903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-10-12 18:53 - 2017-09-18 04:14 - 000657408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-10-12 18:53 - 2017-09-18 04:13 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2017-10-12 18:53 - 2017-09-18 04:11 - 000450048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2017-10-12 18:53 - 2017-09-15 00:59 - 000096064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2017-10-12 18:53 - 2017-09-15 00:34 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2017-10-12 18:53 - 2017-09-15 00:30 - 000291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
2017-10-12 18:53 - 2017-09-15 00:30 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB7.dll
2017-10-12 18:53 - 2017-09-15 00:30 - 000185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2017-10-12 18:53 - 2017-09-15 00:30 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput8.dll
2017-10-12 18:53 - 2017-09-15 00:30 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-12 18:53 - 2017-09-15 00:28 - 000311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-10-12 18:53 - 2017-09-15 00:28 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput.dll
2017-10-12 18:53 - 2017-09-15 00:27 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2017-10-12 18:53 - 2017-09-15 00:26 - 001167360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2017-10-12 18:53 - 2017-09-15 00:26 - 000636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2017-10-12 18:53 - 2017-09-15 00:26 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
2017-10-12 18:53 - 2017-09-15 00:15 - 003106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-10-12 18:53 - 2017-09-14 04:04 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-12 18:53 - 2017-09-14 04:04 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-10-12 18:53 - 2017-09-14 04:04 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-12 18:53 - 2017-09-07 08:32 - 001573792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-10-12 18:53 - 2017-09-07 08:24 - 000263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-10-12 18:53 - 2017-09-07 08:21 - 002265368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-10-12 18:53 - 2017-09-07 08:20 - 000339896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2017-10-12 18:53 - 2017-09-07 08:20 - 000267104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2017-10-12 18:53 - 2017-09-07 08:20 - 000139104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2017-10-12 18:53 - 2017-09-07 08:20 - 000037200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2017-10-12 18:53 - 2017-09-07 08:19 - 000846560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2017-10-12 18:53 - 2017-09-07 08:00 - 000037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-10-12 18:53 - 2017-09-07 07:59 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2017-10-12 18:53 - 2017-09-07 07:58 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2017-10-12 18:53 - 2017-09-07 07:58 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IconCodecService.dll
2017-10-12 18:53 - 2017-09-07 07:57 - 000264704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\socialapis.dll
2017-10-12 18:53 - 2017-09-07 07:54 - 000857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-10-12 18:53 - 2017-09-07 07:54 - 000092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-10-12 18:53 - 2017-09-07 07:53 - 000501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2017-10-12 18:53 - 2017-09-07 07:53 - 000313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2017-10-12 18:53 - 2017-09-07 07:52 - 001300480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-10-12 18:53 - 2017-09-07 07:51 - 001243136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-10-12 18:53 - 2017-09-07 07:51 - 000670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2017-10-12 18:53 - 2017-09-07 07:51 - 000576512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-10-12 18:53 - 2017-09-07 07:51 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2017-10-12 18:53 - 2017-09-07 07:50 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2017-10-12 18:53 - 2017-09-07 07:50 - 000244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2017-10-12 18:53 - 2017-09-07 07:50 - 000206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2017-10-12 18:53 - 2017-09-07 07:50 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2017-10-12 18:53 - 2017-09-07 07:49 - 000415232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2017-10-12 18:53 - 2017-09-07 07:48 - 000396800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2017-10-12 18:53 - 2017-09-07 07:48 - 000225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2017-10-12 18:53 - 2017-09-07 07:47 - 001456640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2017-10-12 18:53 - 2017-09-07 07:47 - 000846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2017-10-12 18:53 - 2017-09-07 07:45 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2017-10-12 18:53 - 2017-09-07 07:42 - 000134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll
2017-10-12 18:53 - 2017-09-07 07:34 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2017-10-12 18:53 - 2017-09-07 07:33 - 001135616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2017-10-12 18:53 - 2017-09-07 07:30 - 001413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2017-10-12 18:53 - 2017-09-07 07:19 - 000467968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2017-10-12 18:53 - 2017-09-07 07:16 - 001507840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2017-10-12 18:53 - 2017-09-07 07:14 - 000561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-10-12 18:53 - 2017-09-07 07:14 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2017-10-12 18:53 - 2017-09-07 07:13 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSave.dll
2017-10-12 18:53 - 2017-09-07 07:13 - 000245760 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2017-10-12 18:53 - 2017-09-07 07:12 - 000963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2017-10-12 18:53 - 2017-09-07 06:58 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2017-10-12 18:53 - 2017-09-07 06:55 - 002424320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2017-10-12 18:53 - 2017-08-22 07:08 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2017-10-12 18:53 - 2017-08-22 06:57 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-10-12 18:53 - 2017-08-08 08:03 - 000102240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2017-10-12 18:53 - 2017-08-08 07:56 - 000054240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-10-12 18:53 - 2017-08-08 07:53 - 000715104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2017-10-12 18:53 - 2017-08-08 07:53 - 000557408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-10-12 18:53 - 2017-08-08 07:25 - 000255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2017-10-12 18:53 - 2017-08-08 07:16 - 000294952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll
2017-10-12 18:53 - 2017-08-08 07:16 - 000086232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
2017-10-12 18:53 - 2017-08-08 06:56 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidtel.exe
2017-10-12 18:53 - 2017-08-08 06:53 - 000450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2017-10-12 18:53 - 2017-08-08 06:53 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2017-10-12 18:53 - 2017-08-08 06:53 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.XamlHost.dll
2017-10-12 18:53 - 2017-08-08 06:50 - 000531456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-10-12 18:53 - 2017-08-08 06:50 - 000334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastlsext.dll
2017-10-12 18:53 - 2017-08-08 06:50 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2017-10-12 18:53 - 2017-08-08 06:49 - 000052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2017-10-12 18:53 - 2017-08-08 06:47 - 000260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Phoneutil.dll
2017-10-12 18:53 - 2017-03-04 08:24 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-10-12 18:53 - 2017-03-04 08:16 - 000368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2017-10-12 18:53 - 2016-09-15 18:40 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-10-12 18:53 - 2016-09-15 18:24 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll
2017-10-12 18:52 - 2017-09-18 05:09 - 002213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-10-12 18:52 - 2017-09-18 05:09 - 000133984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-12 18:52 - 2017-09-18 05:08 - 000998920 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-10-12 18:52 - 2017-09-18 05:05 - 001177688 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-10-12 18:52 - 2017-09-18 05:05 - 000172536 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-12 18:52 - 2017-09-18 05:04 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-10-12 18:52 - 2017-09-18 05:02 - 007213464 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-10-12 18:52 - 2017-09-18 05:02 - 001860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-10-12 18:52 - 2017-09-18 05:00 - 001072248 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 022220864 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 008173672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 004260072 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 001983408 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-10-12 18:52 - 2017-09-18 04:59 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-10-12 18:52 - 2017-09-18 04:56 - 000057408 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-10-12 18:52 - 2017-09-18 04:35 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-10-12 18:52 - 2017-09-18 04:33 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2017-10-12 18:52 - 2017-09-18 04:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-12 18:52 - 2017-09-18 04:31 - 006288384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-10-12 18:52 - 2017-09-18 04:31 - 000239104 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-10-12 18:52 - 2017-09-18 04:29 - 000411136 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2017-10-12 18:52 - 2017-09-18 04:29 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2017-10-12 18:52 - 2017-09-18 04:28 - 000536064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-12 18:52 - 2017-09-18 04:27 - 000719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-10-12 18:52 - 2017-09-18 04:27 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2017-10-12 18:52 - 2017-09-18 04:27 - 000590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-10-12 18:52 - 2017-09-18 04:27 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-12 18:52 - 2017-09-18 04:27 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-10-12 18:52 - 2017-09-18 04:26 - 000384000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2017-10-12 18:52 - 2017-09-18 04:26 - 000283136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-12 18:52 - 2017-09-18 04:24 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-12 18:52 - 2017-09-18 04:24 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-10-12 18:52 - 2017-09-18 04:20 - 000284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-10-12 18:52 - 2017-09-18 04:19 - 000549376 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-10-12 18:52 - 2017-09-18 04:18 - 008077312 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-10-12 18:52 - 2017-09-18 04:18 - 001145344 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2017-10-12 18:52 - 2017-09-18 04:18 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2017-10-12 18:52 - 2017-09-18 04:15 - 002370048 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-10-12 18:52 - 2017-09-18 04:14 - 000983552 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2017-10-12 18:52 - 2017-09-18 04:14 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2017-10-12 18:52 - 2017-09-18 04:14 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-10-12 18:52 - 2017-09-18 04:12 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-10-12 18:52 - 2017-09-18 04:12 - 000532992 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-10-12 18:52 - 2017-09-15 01:05 - 001302136 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-10-12 18:52 - 2017-09-15 00:32 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2017-10-12 18:52 - 2017-09-15 00:30 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-10-12 18:52 - 2017-09-15 00:22 - 000987648 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2017-10-12 18:52 - 2017-09-15 00:18 - 003299840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-10-12 18:52 - 2017-09-15 00:18 - 000273920 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2017-10-12 18:52 - 2017-09-07 08:01 - 002049480 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-10-12 18:52 - 2017-09-07 07:53 - 000097128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2017-10-12 18:52 - 2017-09-07 07:52 - 000858464 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2017-10-12 18:52 - 2017-09-07 07:52 - 000148832 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2017-10-12 18:52 - 2017-09-07 07:52 - 000044464 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2017-10-12 18:52 - 2017-09-07 07:51 - 000092512 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-10-12 18:52 - 2017-09-07 07:45 - 002532704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-10-12 18:52 - 2017-09-07 07:45 - 000387872 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-10-12 18:52 - 2017-09-07 07:23 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2017-10-12 18:52 - 2017-09-07 07:21 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-10-12 18:52 - 2017-09-07 07:21 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-10-12 18:52 - 2017-09-07 07:20 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2017-10-12 18:52 - 2017-09-07 07:20 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-10-12 18:52 - 2017-09-07 07:20 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2017-10-12 18:52 - 2017-09-07 07:19 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2017-10-12 18:52 - 2017-09-07 07:19 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2017-10-12 18:52 - 2017-09-07 07:18 - 000418304 _____ C:\Windows\system32\Windows.Perception.Stub.dll
2017-10-12 18:52 - 2017-09-07 07:18 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2017-10-12 18:52 - 2017-09-07 07:18 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-10-12 18:52 - 2017-09-07 07:17 - 000730112 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-10-12 18:52 - 2017-09-07 07:17 - 000360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2017-10-12 18:52 - 2017-09-07 07:16 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-10-12 18:52 - 2017-09-07 07:16 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2017-10-12 18:52 - 2017-09-07 07:16 - 000335872 _____ (Microsoft Corporation) C:\Windows\system32\socialapis.dll
2017-10-12 18:52 - 2017-09-07 07:15 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-10-12 18:52 - 2017-09-07 07:15 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-10-12 18:52 - 2017-09-07 07:14 - 000252416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-10-12 18:52 - 2017-09-07 07:13 - 000671744 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2017-10-12 18:52 - 2017-09-07 07:12 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2017-10-12 18:52 - 2017-09-07 07:11 - 000527360 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2017-10-12 18:52 - 2017-09-07 07:09 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2017-10-12 18:52 - 2017-09-07 07:08 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-10-12 18:52 - 2017-09-07 07:07 - 007655424 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2017-10-12 18:52 - 2017-09-07 07:07 - 003778048 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2017-10-12 18:52 - 2017-09-07 07:07 - 001403392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2017-10-12 18:52 - 2017-09-07 07:07 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2017-10-12 18:52 - 2017-09-07 07:04 - 001908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-10-12 18:52 - 2017-09-07 07:03 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2017-10-12 18:52 - 2017-09-07 07:03 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-10-12 18:52 - 2017-09-07 07:01 - 002390016 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2017-10-12 18:52 - 2017-09-07 07:01 - 001217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2017-10-12 18:52 - 2017-09-07 07:01 - 000411648 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2017-10-12 18:52 - 2017-09-07 07:01 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.ps.dll
2017-10-12 18:52 - 2017-09-07 06:59 - 000611328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2017-10-12 18:52 - 2017-09-07 06:58 - 001700352 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2017-10-12 18:52 - 2017-09-07 06:58 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2017-10-12 18:52 - 2017-09-07 06:57 - 003134976 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-10-12 18:52 - 2017-09-07 06:57 - 001424896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2017-10-12 18:52 - 2017-09-07 06:56 - 004149248 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-10-12 18:52 - 2017-09-07 06:56 - 000846336 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2017-10-12 18:52 - 2017-09-07 06:55 - 001984000 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-10-12 18:52 - 2017-09-07 06:55 - 001369088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2017-10-12 18:52 - 2017-09-07 06:55 - 001131520 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-10-12 18:52 - 2017-09-07 06:54 - 000834560 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-10-12 18:52 - 2017-08-22 07:02 - 000221696 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe
2017-10-12 18:52 - 2017-08-22 06:53 - 013441536 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-10-12 18:52 - 2017-08-22 06:50 - 012349440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-10-12 18:52 - 2017-08-08 07:59 - 000357984 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2017-10-12 18:52 - 2017-08-08 07:59 - 000118112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-10-12 18:52 - 2017-08-08 07:45 - 000453544 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2017-10-12 18:52 - 2017-08-08 07:15 - 000502272 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2017-10-12 18:52 - 2017-08-08 07:14 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\Phoneutil.dll
2017-10-12 18:52 - 2017-08-08 07:12 - 000579584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-10-12 18:52 - 2017-03-04 08:28 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2017-10-12 18:52 - 2017-03-04 08:23 - 001184256 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2017-10-12 18:52 - 2017-03-04 08:08 - 001266176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2017-10-12 18:52 - 2016-09-15 18:34 - 000441856 _____ (Microsoft Corporation) C:\Windows\system32\AccountsRt.dll
2017-10-12 18:52 - 2016-08-27 07:12 - 000244816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-10-12 18:51 - 2017-09-18 05:09 - 007780192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-12 18:51 - 2017-09-18 05:09 - 000646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-10-12 18:51 - 2017-09-18 05:01 - 000431456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-10-12 18:51 - 2017-09-18 05:01 - 000223072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-12 18:51 - 2017-09-18 04:59 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-10-12 18:51 - 2017-09-18 04:36 - 022570496 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-10-12 18:51 - 2017-09-18 04:29 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2017-10-12 18:51 - 2017-09-18 04:28 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2017-10-12 18:51 - 2017-09-18 04:28 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2017-10-12 18:51 - 2017-09-18 04:27 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-10-12 18:51 - 2017-09-18 04:26 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-10-12 18:51 - 2017-09-18 04:26 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-10-12 18:51 - 2017-09-18 04:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-10-12 18:51 - 2017-09-18 04:24 - 013107712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-10-12 18:51 - 2017-09-18 04:24 - 002103808 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2017-10-12 18:51 - 2017-09-18 04:24 - 001589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2017-10-12 18:51 - 2017-09-18 04:23 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2017-10-12 18:51 - 2017-09-18 04:21 - 018364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-10-12 18:51 - 2017-09-18 04:20 - 023677952 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-12 18:51 - 2017-09-18 04:20 - 019414016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-10-12 18:51 - 2017-09-18 04:20 - 000937984 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-10-12 18:51 - 2017-09-18 04:18 - 012204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-10-12 18:51 - 2017-09-18 04:18 - 008114688 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-10-12 18:51 - 2017-09-18 04:17 - 001783296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-12 18:51 - 2017-09-18 04:16 - 004743168 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 006065152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 003202048 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 001282048 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 001231360 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-10-12 18:51 - 2017-09-18 04:15 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 003663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 002897408 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 001518080 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-10-12 18:51 - 2017-09-18 04:14 - 000971264 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2017-10-12 18:51 - 2017-09-18 04:14 - 000650752 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2017-10-12 18:51 - 2017-09-18 04:13 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-10-12 18:51 - 2017-09-18 04:13 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-10-12 18:51 - 2017-09-18 04:12 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-10-12 18:51 - 2017-09-15 00:32 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-12 18:51 - 2017-09-15 00:24 - 000981504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2017-10-12 18:51 - 2017-09-15 00:22 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-10-12 18:51 - 2017-09-15 00:20 - 002852864 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-10-12 18:51 - 2017-09-15 00:16 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2017-10-12 18:51 - 2017-09-07 08:10 - 000603488 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2017-10-12 18:51 - 2017-09-07 08:01 - 002681200 _____ C:\Windows\system32\CoreUIComponents.dll
2017-10-12 18:51 - 2017-09-07 07:57 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-10-12 18:51 - 2017-09-07 07:56 - 001069720 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2017-10-12 18:51 - 2017-09-07 07:56 - 000328008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2017-10-12 18:51 - 2017-09-07 07:54 - 002761248 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-10-12 18:51 - 2017-09-07 07:54 - 002188128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-10-12 18:51 - 2017-09-07 07:54 - 001739072 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2017-10-12 18:51 - 2017-09-07 07:54 - 001157008 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-10-12 18:51 - 2017-09-07 07:54 - 000402784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-10-12 18:51 - 2017-09-07 07:52 - 000126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-10-12 18:51 - 2017-09-07 07:51 - 000306688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2017-10-12 18:51 - 2017-09-07 07:49 - 001277824 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-10-12 18:51 - 2017-09-07 07:49 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-10-12 18:51 - 2017-09-07 07:47 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-10-12 18:51 - 2017-09-07 07:43 - 000693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-10-12 18:51 - 2017-09-07 07:31 - 002028032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-10-12 18:51 - 2017-09-07 07:31 - 001509376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-10-12 18:51 - 2017-09-07 07:24 - 001631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-10-12 18:51 - 2017-09-07 07:22 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-10-12 18:51 - 2017-09-07 07:22 - 000021504 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2017-10-12 18:51 - 2017-09-07 07:21 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2017-10-12 18:51 - 2017-09-07 07:21 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Printers.dll
2017-10-12 18:51 - 2017-09-07 07:21 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2017-10-12 18:51 - 2017-09-07 07:18 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000505856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000276992 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-10-12 18:51 - 2017-09-07 07:17 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2017-10-12 18:51 - 2017-09-07 07:17 - 000139264 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-10-12 18:51 - 2017-09-07 07:16 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2017-10-12 18:51 - 2017-09-07 07:16 - 000691200 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2017-10-12 18:51 - 2017-09-07 07:16 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2017-10-12 18:51 - 2017-09-07 07:16 - 000174592 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2017-10-12 18:51 - 2017-09-07 07:15 - 000432128 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2017-10-12 18:51 - 2017-09-07 07:15 - 000389120 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-10-12 18:51 - 2017-09-07 07:15 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2017-10-12 18:51 - 2017-09-07 07:15 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-10-12 18:51 - 2017-09-07 07:14 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2017-10-12 18:51 - 2017-09-07 07:14 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2017-10-12 18:51 - 2017-09-07 07:13 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2017-10-12 18:51 - 2017-09-07 07:13 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2017-10-12 18:51 - 2017-09-07 07:11 - 000583680 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2017-10-12 18:51 - 2017-09-07 07:10 - 017200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-10-12 18:51 - 2017-09-07 07:10 - 001037312 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2017-10-12 18:51 - 2017-09-07 07:09 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-10-12 18:51 - 2017-09-07 07:08 - 001639424 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2017-10-12 18:51 - 2017-09-07 07:08 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2017-10-12 18:51 - 2017-09-07 07:07 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\CastLaunch.dll
2017-10-12 18:51 - 2017-09-07 07:05 - 001105408 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2017-10-12 18:51 - 2017-09-07 07:05 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2017-10-12 18:51 - 2017-09-07 07:04 - 000870400 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2017-10-12 18:51 - 2017-09-07 07:03 - 001837056 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2017-10-12 18:51 - 2017-09-07 07:00 - 000539136 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2017-10-12 18:51 - 2017-09-07 07:00 - 000467968 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2017-10-12 18:51 - 2017-09-07 07:00 - 000391168 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2017-10-12 18:51 - 2017-09-07 06:59 - 004474368 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-10-12 18:51 - 2017-09-07 06:59 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2017-10-12 18:51 - 2017-09-07 06:59 - 000760320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-10-12 18:51 - 2017-09-07 06:58 - 002097152 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-10-12 18:51 - 2017-09-07 06:57 - 005611520 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-10-12 18:51 - 2017-09-07 06:57 - 001275392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2017-10-12 18:51 - 2017-09-07 06:57 - 000874496 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2017-10-12 18:51 - 2017-09-07 06:56 - 002695680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-10-12 18:51 - 2017-09-07 06:56 - 002286592 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-10-12 18:51 - 2017-09-07 06:56 - 002208768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2017-10-12 18:51 - 2017-09-07 06:55 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-10-12 18:51 - 2017-08-22 07:06 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-10-12 18:51 - 2017-08-22 07:05 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2017-10-12 18:51 - 2017-08-22 07:04 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2017-10-12 18:51 - 2017-08-08 08:01 - 000376672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2017-10-12 18:51 - 2017-08-08 07:53 - 000026976 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2017-10-12 18:51 - 2017-08-08 07:45 - 001102176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-10-12 18:51 - 2017-08-08 07:18 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2017-10-12 18:51 - 2017-08-08 07:14 - 000658432 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2017-10-12 18:51 - 2017-08-08 07:10 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-10-12 18:51 - 2017-08-08 06:55 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-10-12 18:51 - 2017-03-04 09:10 - 000360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-10-12 18:51 - 2017-03-04 09:03 - 000160096 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2017-10-12 18:51 - 2017-03-04 08:28 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll
2017-10-12 18:51 - 2017-03-04 08:13 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\CameraCaptureUI.dll
2017-10-12 18:51 - 2016-11-02 12:43 - 000270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-10-12 18:51 - 2016-09-15 18:30 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll
2017-10-12 18:50 - 2017-09-18 05:17 - 001564512 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-10-12 18:50 - 2017-09-18 05:17 - 000245600 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2017-10-12 18:50 - 2017-09-18 05:08 - 002253664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-12 18:50 - 2017-09-18 05:05 - 000168800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-10-12 18:50 - 2017-09-18 05:04 - 000404832 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-12 18:50 - 2017-09-18 05:01 - 002446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-10-12 18:50 - 2017-09-18 05:01 - 000624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-10-12 18:50 - 2017-09-18 04:58 - 001600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-10-12 18:50 - 2017-09-18 04:58 - 000206688 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2017-10-12 18:50 - 2017-09-18 04:57 - 001566552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-10-12 18:50 - 2017-09-18 04:57 - 001460696 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-10-12 18:50 - 2017-09-18 04:57 - 001415712 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-12 18:50 - 2017-09-18 04:33 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\TransliterationRanker.dll
2017-10-12 18:50 - 2017-09-18 04:32 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\jpninputrouter.dll
2017-10-12 18:50 - 2017-09-18 04:32 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\EmojiDS.dll
2017-10-12 18:50 - 2017-09-18 04:31 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\RuleBasedDS.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\jpnranker.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000257536 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000196096 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000174592 _____ C:\Windows\system32\IHDS.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\VocabRoamingHandler.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\StaticDictDS.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2017-10-12 18:50 - 2017-09-18 04:30 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\chxranker.dll
2017-10-12 18:50 - 2017-09-18 04:29 - 009129984 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-10-12 18:50 - 2017-09-18 04:29 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\ChsStrokeDS.dll
2017-10-12 18:50 - 2017-09-18 04:28 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\ChtHkStrokeDS.dll
2017-10-12 18:50 - 2017-09-18 04:28 - 000335872 _____ (Microsoft Corporation) C:\Windows\system32\ChsPinyinRanker.dll
2017-10-12 18:50 - 2017-09-18 04:28 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\MtfDecoder.dll
2017-10-12 18:50 - 2017-09-18 04:28 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000626176 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\ChxAPDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000480768 _____ (Microsoft Corporation) C:\Windows\system32\msimeChsPinyinMainDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\ChxHAPDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000422400 _____ (Microsoft Corporation) C:\Windows\system32\ChtCangjieDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000410624 _____ (Microsoft Corporation) C:\Windows\system32\ChtQuickDS.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000336384 _____ (Microsoft Corporation) C:\Windows\system32\jpndecoder.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\chxinputrouter.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000326656 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2017-10-12 18:50 - 2017-09-18 04:27 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 000562176 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 000481792 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2017-10-12 18:50 - 2017-09-18 04:26 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-10-12 18:50 - 2017-09-18 04:25 - 001914368 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2017-10-12 18:50 - 2017-09-18 04:24 - 001584640 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2017-10-12 18:50 - 2017-09-18 04:22 - 004749824 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-10-12 18:50 - 2017-09-18 04:22 - 003291648 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-10-12 18:50 - 2017-09-18 04:22 - 000883712 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-10-12 18:50 - 2017-09-18 04:22 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-10-12 18:50 - 2017-09-18 04:18 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2017-10-12 18:50 - 2017-09-18 04:18 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-10-12 18:50 - 2017-09-18 04:18 - 000932864 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-10-12 18:50 - 2017-09-18 04:17 - 002279424 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-10-12 18:50 - 2017-09-18 04:16 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-12 18:50 - 2017-09-18 04:15 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-10-12 18:50 - 2017-09-18 04:15 - 002800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2017-10-12 18:50 - 2017-09-18 04:15 - 001692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-10-12 18:50 - 2017-09-18 04:15 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 003615744 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-10-12 18:50 - 2017-09-18 04:14 - 002321408 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 001328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 001040896 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 000908800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-10-12 18:50 - 2017-09-18 04:14 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-12 18:50 - 2017-09-18 04:13 - 001726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-10-12 18:50 - 2017-09-18 04:11 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\trie.dll
2017-10-12 18:50 - 2017-09-18 04:11 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\MTFFuzzyDS.dll
2017-10-12 18:50 - 2017-09-18 04:11 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\MTFSpellcheckDS.dll
2017-10-12 18:50 - 2017-09-15 01:14 - 000119328 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2017-10-12 18:50 - 2017-09-15 00:32 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\dinput8.dll
2017-10-12 18:50 - 2017-09-15 00:32 - 000162304 _____ (Microsoft Corporation) C:\Windows\system32\dinput.dll
2017-10-12 18:50 - 2017-09-15 00:31 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-10-12 18:50 - 2017-09-15 00:25 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2017-10-12 18:50 - 2017-09-15 00:23 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2017-10-12 18:50 - 2017-09-15 00:22 - 000820736 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2017-10-12 18:50 - 2017-09-15 00:19 - 000928256 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2017-10-12 18:50 - 2017-09-07 08:20 - 000367208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2017-10-12 18:50 - 2017-09-07 08:16 - 000379232 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-10-12 18:50 - 2017-09-07 08:03 - 001887408 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-10-12 18:50 - 2017-09-07 08:02 - 032693432 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsRaw.dll
2017-10-12 18:50 - 2017-09-07 08:00 - 000764392 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2017-10-12 18:50 - 2017-09-07 07:57 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2017-10-12 18:50 - 2017-09-07 07:54 - 000658784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-10-12 18:50 - 2017-09-07 07:54 - 000146784 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2017-10-12 18:50 - 2017-09-07 07:53 - 000684896 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-10-12 18:50 - 2017-09-07 07:53 - 000431296 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2017-10-12 18:50 - 2017-09-07 07:53 - 000296288 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2017-10-12 18:50 - 2017-09-07 07:53 - 000144736 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-10-12 18:50 - 2017-09-07 07:52 - 002915704 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2017-10-12 18:50 - 2017-09-07 07:52 - 001267512 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2017-10-12 18:50 - 2017-09-07 07:52 - 001100128 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2017-10-12 18:50 - 2017-09-07 07:52 - 000989024 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2017-10-12 18:50 - 2017-09-07 07:50 - 001694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-10-12 18:50 - 2017-09-07 07:50 - 000236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-10-12 18:50 - 2017-09-07 07:46 - 000628552 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2017-10-12 18:50 - 2017-09-07 07:30 - 007218176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-10-12 18:50 - 2017-09-07 07:22 - 000584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2017-10-12 18:50 - 2017-09-07 07:22 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2017-10-12 18:50 - 2017-09-07 07:22 - 000045056 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
pokracovani v dalsim prispevku
- Přílohy
-
- Addition.rar
- (8.74 KiB) Staženo 51 x
-
Rakosnik517
- Návštěvník
- Příspěvky: 10
- Registrován: 18 říj 2006 15:25
- Kontaktovat uživatele:
Re: Pop Up reklama, nefunkční klávesnice
2017-10-12 18:50 - 2017-09-07 07:21 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2017-10-12 18:50 - 2017-09-07 07:21 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\Family.Authentication.dll
2017-10-12 18:50 - 2017-09-07 07:20 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\Family.SyncEngine.dll
2017-10-12 18:50 - 2017-09-07 07:20 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll
2017-10-12 18:50 - 2017-09-07 07:20 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.RetailInfo.dll
2017-10-12 18:50 - 2017-09-07 07:20 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_ClosedCaptioning.dll
2017-10-12 18:50 - 2017-09-07 07:19 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2017-10-12 18:50 - 2017-09-07 07:19 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2017-10-12 18:50 - 2017-09-07 07:18 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2017-10-12 18:50 - 2017-09-07 07:18 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2017-10-12 18:50 - 2017-09-07 07:18 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2017-10-12 18:50 - 2017-09-07 07:17 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\XamlTileRender.dll
2017-10-12 18:50 - 2017-09-07 07:16 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2017-10-12 18:50 - 2017-09-07 07:16 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-10-12 18:50 - 2017-09-07 07:15 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2017-10-12 18:50 - 2017-09-07 07:15 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-10-12 18:50 - 2017-09-07 07:15 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2017-10-12 18:50 - 2017-09-07 07:15 - 000267264 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2017-10-12 18:50 - 2017-09-07 07:14 - 000451072 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2017-10-12 18:50 - 2017-09-07 07:14 - 000358400 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2017-10-12 18:50 - 2017-09-07 07:13 - 000645120 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2017-10-12 18:50 - 2017-09-07 07:12 - 000896512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2017-10-12 18:50 - 2017-09-07 07:11 - 000966144 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2017-10-12 18:50 - 2017-09-07 07:11 - 000775168 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-10-12 18:50 - 2017-09-07 07:11 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-10-12 18:50 - 2017-09-07 07:08 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2017-10-12 18:50 - 2017-09-07 07:05 - 005114368 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2017-10-12 18:50 - 2017-09-07 07:04 - 000337920 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2017-10-12 18:50 - 2017-09-07 07:04 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2017-10-12 18:50 - 2017-09-07 07:03 - 000942080 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-10-12 18:50 - 2017-09-07 07:02 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2017-10-12 18:50 - 2017-09-07 07:02 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2017-10-12 18:50 - 2017-09-07 07:00 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2017-10-12 18:50 - 2017-09-07 06:59 - 002510848 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2017-10-12 18:50 - 2017-09-07 06:59 - 001359872 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2017-10-12 18:50 - 2017-09-07 06:59 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2017-10-12 18:50 - 2017-09-07 06:59 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2017-10-12 18:50 - 2017-09-07 06:58 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2017-10-12 18:50 - 2017-09-07 06:58 - 001656320 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2017-10-12 18:50 - 2017-09-07 06:58 - 000886784 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2017-10-12 18:50 - 2017-09-07 06:58 - 000376832 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2017-10-12 18:50 - 2017-09-07 06:57 - 001586176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2017-10-12 18:50 - 2017-09-07 06:55 - 002820096 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2017-10-12 18:50 - 2017-09-07 06:55 - 002217472 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2017-10-12 18:50 - 2017-09-07 06:54 - 003542016 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2017-10-12 18:50 - 2017-09-07 06:54 - 000716800 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2017-10-12 18:50 - 2017-08-22 06:52 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2017-10-12 18:50 - 2017-08-22 06:47 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-10-12 18:50 - 2017-08-08 07:52 - 000450400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-10-12 18:50 - 2017-08-08 07:52 - 000386408 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2017-10-12 18:50 - 2017-08-08 07:52 - 000079712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys
2017-10-12 18:50 - 2017-08-08 07:20 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmclr.sys
2017-10-12 18:50 - 2017-08-08 07:17 - 000375296 _____ (Microsoft Corporation) C:\Windows\system32\rastlsext.dll
2017-10-12 18:50 - 2017-08-08 07:16 - 000121344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.XamlHost.dll
2017-10-12 18:50 - 2017-08-08 07:15 - 000556544 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-10-12 18:50 - 2017-08-08 07:13 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-10-12 18:50 - 2017-08-08 06:58 - 000304128 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2017-10-12 18:50 - 2017-08-08 06:51 - 001817088 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2017-10-12 18:50 - 2017-08-01 07:09 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2017-10-12 18:50 - 2017-03-04 09:09 - 000178520 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostUser.dll
2017-10-12 18:50 - 2017-03-04 09:07 - 000947552 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2017-10-12 18:50 - 2017-03-04 08:32 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2017-10-12 18:50 - 2017-03-04 08:11 - 001643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-10-12 18:50 - 2017-03-04 08:10 - 006664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-10-12 18:50 - 2017-03-04 08:07 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-10-12 18:49 - 2017-09-18 05:17 - 000136032 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-10-12 18:49 - 2017-09-18 04:32 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-12 18:49 - 2017-09-18 04:28 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2017-10-12 18:49 - 2017-09-18 04:27 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2017-10-12 18:49 - 2017-09-18 04:26 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\dsregcmd.exe
2017-10-12 18:49 - 2017-09-18 04:25 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2017-10-12 18:49 - 2017-09-18 04:25 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll
2017-10-12 18:49 - 2017-09-18 04:22 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2017-10-12 18:49 - 2017-09-18 04:19 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2017-10-12 18:49 - 2017-09-18 04:19 - 000519168 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2017-10-12 18:49 - 2017-09-18 04:13 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2017-10-12 18:49 - 2017-09-15 00:32 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7.dll
2017-10-12 18:49 - 2017-09-15 00:31 - 000280576 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2017-10-12 18:49 - 2017-09-15 00:29 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-10-12 18:49 - 2017-09-15 00:24 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2017-10-12 18:49 - 2017-09-15 00:19 - 001421824 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-10-12 18:49 - 2017-09-07 08:04 - 000894096 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-10-12 18:49 - 2017-09-07 07:53 - 000383776 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2017-10-12 18:49 - 2017-09-07 07:45 - 000372440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2017-10-12 18:49 - 2017-09-07 07:22 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\IconCodecService.dll
2017-10-12 18:49 - 2017-09-07 07:18 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll
2017-10-12 18:49 - 2017-09-07 07:17 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2017-10-12 18:49 - 2017-09-07 07:16 - 000781824 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2017-10-12 18:49 - 2017-09-07 07:15 - 000391168 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2017-10-12 18:49 - 2017-09-07 07:15 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2017-10-12 18:49 - 2017-09-07 07:14 - 000678912 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll
2017-10-12 18:49 - 2017-09-07 07:14 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2017-10-12 18:49 - 2017-09-07 07:14 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2017-10-12 18:49 - 2017-09-07 07:12 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2017-10-12 18:49 - 2017-09-07 07:01 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll
2017-10-12 18:49 - 2017-09-07 06:59 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2017-10-12 18:49 - 2017-08-22 07:09 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-10-12 18:49 - 2017-08-08 08:09 - 000065648 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-10-12 18:49 - 2017-08-08 07:52 - 000649568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2017-10-12 18:49 - 2017-08-08 07:52 - 000101776 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2017-10-12 18:49 - 2017-08-08 07:20 - 000173056 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2017-10-12 18:49 - 2017-08-08 07:20 - 000137216 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2017-10-12 18:49 - 2017-08-08 07:20 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\appidtel.exe
2017-10-12 18:49 - 2017-08-08 07:18 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2017-10-12 18:49 - 2017-08-08 07:16 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2017-10-12 18:49 - 2017-08-08 07:13 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2017-10-08 11:27 - 2017-10-08 11:27 - 000401488 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-08 11:14 - 2017-10-08 11:14 - 000000000 ____D C:\Users\JiĹ™Ă\Documents\FeedbackHub
2017-10-08 10:59 - 2017-10-16 21:02 - 000000000 ____D C:\AdwCleaner
2017-10-08 10:58 - 2017-10-08 10:59 - 008250832 _____ (Malwarebytes) C:\Users\JiĹ™Ă\Downloads\adwcleaner_7.0.3.1.exe
2017-10-04 21:50 - 2017-10-04 21:50 - 001783279 _____ C:\Users\JiĹ™Ă\Downloads\klapky.pdf
2017-10-03 21:30 - 2017-10-03 21:30 - 001222144 _____ C:\Users\JiĹ™Ă\Downloads\RSITx64.exe
2017-10-03 21:30 - 2017-10-03 21:30 - 000000000 ____D C:\rsit
2017-10-03 21:30 - 2017-10-03 21:30 - 000000000 ____D C:\Program Files\trend micro
2017-10-03 21:20 - 2017-10-11 21:43 - 000004506 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-03 21:00 - 2017-10-03 21:01 - 000000000 ____D C:\ProgramData\{618CCA48-D627-7DE3-89AA-FC197ACA7A0A}
2017-09-30 20:38 - 2017-10-13 20:41 - 000000000 ____D C:\Program Files\rempl
2017-09-29 18:09 - 2017-09-29 18:23 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Local\IIIQF
2017-09-29 18:08 - 2017-09-29 18:09 - 007040152 _____ (Solvusoft Corporation ) C:\Users\JiĹ™Ă\Downloads\Setup_DriverDoc_2016.exe
2017-09-21 20:30 - 2017-09-28 20:58 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-21 20:30 - 2017-09-28 20:58 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-09-21 20:29 - 2017-09-21 20:39 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Local\Google
2017-09-21 20:29 - 2017-09-21 20:30 - 000000000 ____D C:\Program Files (x86)\Google
2017-09-21 20:29 - 2017-09-21 20:29 - 000003470 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-09-21 20:29 - 2017-09-21 20:29 - 000003346 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-09-21 20:28 - 2017-09-21 20:28 - 001130328 _____ (Google Inc.) C:\Users\JiĹ™Ă\Downloads\ChromeSetup.exe
2017-09-20 22:00 - 2017-09-20 22:00 - 000000027 _____ C:\Users\JiĹ™Ă\Desktop\typ vĂ˝let.txt
2017-09-17 10:45 - 2017-09-17 10:45 - 000057186 _____ C:\Users\JiĹ™Ă\Downloads\Zlin_Z_326.igs
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-10-16 21:16 - 2016-11-19 20:43 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\LocalLow\Mozilla
2017-10-16 21:12 - 2016-07-16 13:47 - 000000265 _____ C:\Windows\win.ini
2017-10-16 21:11 - 2017-09-05 20:37 - 000003654 _____ C:\Windows\System32\Tasks\AutoKMS
2017-10-16 21:03 - 2016-10-03 20:37 - 000000000 ____D C:\Users\JiĹ™Ă
2017-10-16 21:03 - 2016-10-03 20:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-16 21:02 - 2016-07-16 08:04 - 000524288 _____ C:\Windows\system32\config\BBI
2017-10-16 20:24 - 2016-10-03 20:26 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-10-16 16:48 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-16 16:48 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-13 23:21 - 2016-10-07 18:48 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Roaming\vlc
2017-10-13 20:35 - 2016-10-03 20:42 - 001786856 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-13 20:35 - 2016-07-17 00:25 - 000624648 _____ C:\Windows\system32\perfh005.dat
2017-10-13 20:35 - 2016-07-17 00:25 - 000135630 _____ C:\Windows\system32\perfc005.dat
2017-10-13 20:34 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\AppReadiness
2017-10-13 20:32 - 2016-10-03 20:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-13 20:28 - 2016-07-16 13:45 - 000000000 ____D C:\Windows\INF
2017-10-13 20:27 - 2016-10-03 20:26 - 000386672 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ___SD C:\Windows\SysWOW64\F12
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ___SD C:\Windows\system32\F12
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ___RD C:\Program Files\Windows Defender
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\oobe
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\migwiz
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\ShellExperiences
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\Provisioning
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-10-12 21:29 - 2016-07-16 13:36 - 000000000 ____D C:\Windows\CbsTemp
2017-10-12 21:06 - 2016-10-05 17:20 - 000000000 ____D C:\Windows\system32\MRT
2017-10-12 19:03 - 2016-10-05 17:19 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-12 19:02 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-10-11 21:50 - 2016-07-16 13:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-09 16:35 - 2016-10-07 18:50 - 000000000 ____D C:\Users\JiĹ™Ă\Documents\Jura
2017-10-08 11:49 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\NDF
2017-10-08 11:28 - 2017-06-17 20:23 - 000061304 _____ () C:\Windows\system32\Drivers\lpsport.sys
2017-10-08 11:27 - 2017-09-06 15:27 - 000003994 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-10-08 11:27 - 2016-10-04 16:38 - 000587168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000363440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000201352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000147776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-08 11:27 - 2016-10-04 16:34 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-08 11:26 - 2017-02-07 18:35 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-10-08 11:26 - 2017-02-07 18:35 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-10-08 11:26 - 2017-02-07 18:35 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-10-08 11:26 - 2017-02-07 18:35 - 000057736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-10-08 11:26 - 2016-10-04 16:38 - 001020536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-10-03 21:54 - 2017-09-13 22:40 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Local\ElevatedDiagnostics
2017-10-03 21:20 - 2016-10-06 18:04 - 000001139 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-10-03 21:20 - 2016-10-04 16:42 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-03 21:19 - 2017-09-10 11:42 - 000000981 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-10-03 21:19 - 2017-09-10 11:42 - 000000981 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-09-17 11:31 - 2016-11-09 19:47 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Local\DassaultSystemes
==================== Files in the root of some directories =======
2016-10-03 21:18 - 2016-10-03 21:18 - 001136640 _____ (Mojang) C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe
2016-10-09 21:47 - 2016-10-09 22:05 - 000000837 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
2016-08-16 09:48 - 2016-08-16 09:48 - 000488960 _____ () C:\Users\JiĹ™Ă\AppData\Local\Temp\sqlite3.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-08-28 21:29
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:97.17 GB) (Free:38.12 GB) NTFS
Drive e: () (Fixed) (Total:135.23 GB) (Free:101.57 GB) NTFS
Available physical RAM: 2247.56 MB
Total physical RAM: 4061.09 MB
Percentage of memory in use: 44%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 2DDF2DDE)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=135.2 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Jiýˇ\Desktop" je 332 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
2017-10-12 18:50 - 2017-09-07 07:21 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\Family.Authentication.dll
2017-10-12 18:50 - 2017-09-07 07:20 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\Family.SyncEngine.dll
2017-10-12 18:50 - 2017-09-07 07:20 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll
2017-10-12 18:50 - 2017-09-07 07:20 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.RetailInfo.dll
2017-10-12 18:50 - 2017-09-07 07:20 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_ClosedCaptioning.dll
2017-10-12 18:50 - 2017-09-07 07:19 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2017-10-12 18:50 - 2017-09-07 07:19 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2017-10-12 18:50 - 2017-09-07 07:18 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2017-10-12 18:50 - 2017-09-07 07:18 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2017-10-12 18:50 - 2017-09-07 07:18 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2017-10-12 18:50 - 2017-09-07 07:17 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\XamlTileRender.dll
2017-10-12 18:50 - 2017-09-07 07:16 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2017-10-12 18:50 - 2017-09-07 07:16 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-10-12 18:50 - 2017-09-07 07:15 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2017-10-12 18:50 - 2017-09-07 07:15 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-10-12 18:50 - 2017-09-07 07:15 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2017-10-12 18:50 - 2017-09-07 07:15 - 000267264 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2017-10-12 18:50 - 2017-09-07 07:14 - 000451072 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2017-10-12 18:50 - 2017-09-07 07:14 - 000358400 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2017-10-12 18:50 - 2017-09-07 07:13 - 000645120 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2017-10-12 18:50 - 2017-09-07 07:12 - 000896512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2017-10-12 18:50 - 2017-09-07 07:11 - 000966144 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2017-10-12 18:50 - 2017-09-07 07:11 - 000775168 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-10-12 18:50 - 2017-09-07 07:11 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-10-12 18:50 - 2017-09-07 07:08 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2017-10-12 18:50 - 2017-09-07 07:05 - 005114368 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2017-10-12 18:50 - 2017-09-07 07:04 - 000337920 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2017-10-12 18:50 - 2017-09-07 07:04 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2017-10-12 18:50 - 2017-09-07 07:03 - 000942080 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-10-12 18:50 - 2017-09-07 07:02 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2017-10-12 18:50 - 2017-09-07 07:02 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2017-10-12 18:50 - 2017-09-07 07:00 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2017-10-12 18:50 - 2017-09-07 06:59 - 002510848 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2017-10-12 18:50 - 2017-09-07 06:59 - 001359872 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2017-10-12 18:50 - 2017-09-07 06:59 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2017-10-12 18:50 - 2017-09-07 06:59 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2017-10-12 18:50 - 2017-09-07 06:58 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2017-10-12 18:50 - 2017-09-07 06:58 - 001656320 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2017-10-12 18:50 - 2017-09-07 06:58 - 000886784 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2017-10-12 18:50 - 2017-09-07 06:58 - 000376832 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2017-10-12 18:50 - 2017-09-07 06:57 - 001586176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2017-10-12 18:50 - 2017-09-07 06:55 - 002820096 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2017-10-12 18:50 - 2017-09-07 06:55 - 002217472 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2017-10-12 18:50 - 2017-09-07 06:54 - 003542016 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2017-10-12 18:50 - 2017-09-07 06:54 - 000716800 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2017-10-12 18:50 - 2017-08-22 06:52 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2017-10-12 18:50 - 2017-08-22 06:47 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-10-12 18:50 - 2017-08-08 07:52 - 000450400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-10-12 18:50 - 2017-08-08 07:52 - 000386408 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2017-10-12 18:50 - 2017-08-08 07:52 - 000079712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys
2017-10-12 18:50 - 2017-08-08 07:20 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmclr.sys
2017-10-12 18:50 - 2017-08-08 07:17 - 000375296 _____ (Microsoft Corporation) C:\Windows\system32\rastlsext.dll
2017-10-12 18:50 - 2017-08-08 07:16 - 000121344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.XamlHost.dll
2017-10-12 18:50 - 2017-08-08 07:15 - 000556544 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-10-12 18:50 - 2017-08-08 07:13 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-10-12 18:50 - 2017-08-08 06:58 - 000304128 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2017-10-12 18:50 - 2017-08-08 06:51 - 001817088 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2017-10-12 18:50 - 2017-08-01 07:09 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2017-10-12 18:50 - 2017-03-04 09:09 - 000178520 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostUser.dll
2017-10-12 18:50 - 2017-03-04 09:07 - 000947552 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2017-10-12 18:50 - 2017-03-04 08:32 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2017-10-12 18:50 - 2017-03-04 08:11 - 001643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-10-12 18:50 - 2017-03-04 08:10 - 006664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-10-12 18:50 - 2017-03-04 08:07 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-10-12 18:49 - 2017-09-18 05:17 - 000136032 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-10-12 18:49 - 2017-09-18 04:32 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-12 18:49 - 2017-09-18 04:28 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2017-10-12 18:49 - 2017-09-18 04:27 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2017-10-12 18:49 - 2017-09-18 04:26 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\dsregcmd.exe
2017-10-12 18:49 - 2017-09-18 04:25 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2017-10-12 18:49 - 2017-09-18 04:25 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll
2017-10-12 18:49 - 2017-09-18 04:22 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2017-10-12 18:49 - 2017-09-18 04:19 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2017-10-12 18:49 - 2017-09-18 04:19 - 000519168 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2017-10-12 18:49 - 2017-09-18 04:13 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2017-10-12 18:49 - 2017-09-15 00:32 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7.dll
2017-10-12 18:49 - 2017-09-15 00:31 - 000280576 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2017-10-12 18:49 - 2017-09-15 00:29 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-10-12 18:49 - 2017-09-15 00:24 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2017-10-12 18:49 - 2017-09-15 00:19 - 001421824 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-10-12 18:49 - 2017-09-07 08:04 - 000894096 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-10-12 18:49 - 2017-09-07 07:53 - 000383776 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2017-10-12 18:49 - 2017-09-07 07:45 - 000372440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2017-10-12 18:49 - 2017-09-07 07:22 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\IconCodecService.dll
2017-10-12 18:49 - 2017-09-07 07:18 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll
2017-10-12 18:49 - 2017-09-07 07:17 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2017-10-12 18:49 - 2017-09-07 07:16 - 000781824 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2017-10-12 18:49 - 2017-09-07 07:15 - 000391168 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2017-10-12 18:49 - 2017-09-07 07:15 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2017-10-12 18:49 - 2017-09-07 07:14 - 000678912 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll
2017-10-12 18:49 - 2017-09-07 07:14 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2017-10-12 18:49 - 2017-09-07 07:14 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2017-10-12 18:49 - 2017-09-07 07:12 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2017-10-12 18:49 - 2017-09-07 07:01 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll
2017-10-12 18:49 - 2017-09-07 06:59 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2017-10-12 18:49 - 2017-08-22 07:09 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-10-12 18:49 - 2017-08-08 08:09 - 000065648 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-10-12 18:49 - 2017-08-08 07:52 - 000649568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2017-10-12 18:49 - 2017-08-08 07:52 - 000101776 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2017-10-12 18:49 - 2017-08-08 07:20 - 000173056 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2017-10-12 18:49 - 2017-08-08 07:20 - 000137216 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2017-10-12 18:49 - 2017-08-08 07:20 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\appidtel.exe
2017-10-12 18:49 - 2017-08-08 07:18 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2017-10-12 18:49 - 2017-08-08 07:16 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2017-10-12 18:49 - 2017-08-08 07:13 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2017-10-08 11:27 - 2017-10-08 11:27 - 000401488 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-08 11:14 - 2017-10-08 11:14 - 000000000 ____D C:\Users\JiĹ™Ă\Documents\FeedbackHub
2017-10-08 10:59 - 2017-10-16 21:02 - 000000000 ____D C:\AdwCleaner
2017-10-08 10:58 - 2017-10-08 10:59 - 008250832 _____ (Malwarebytes) C:\Users\JiĹ™Ă\Downloads\adwcleaner_7.0.3.1.exe
2017-10-04 21:50 - 2017-10-04 21:50 - 001783279 _____ C:\Users\JiĹ™Ă\Downloads\klapky.pdf
2017-10-03 21:30 - 2017-10-03 21:30 - 001222144 _____ C:\Users\JiĹ™Ă\Downloads\RSITx64.exe
2017-10-03 21:30 - 2017-10-03 21:30 - 000000000 ____D C:\rsit
2017-10-03 21:30 - 2017-10-03 21:30 - 000000000 ____D C:\Program Files\trend micro
2017-10-03 21:20 - 2017-10-11 21:43 - 000004506 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-03 21:00 - 2017-10-03 21:01 - 000000000 ____D C:\ProgramData\{618CCA48-D627-7DE3-89AA-FC197ACA7A0A}
2017-09-30 20:38 - 2017-10-13 20:41 - 000000000 ____D C:\Program Files\rempl
2017-09-29 18:09 - 2017-09-29 18:23 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Local\IIIQF
2017-09-29 18:08 - 2017-09-29 18:09 - 007040152 _____ (Solvusoft Corporation ) C:\Users\JiĹ™Ă\Downloads\Setup_DriverDoc_2016.exe
2017-09-21 20:30 - 2017-09-28 20:58 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-21 20:30 - 2017-09-28 20:58 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-09-21 20:29 - 2017-09-21 20:39 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Local\Google
2017-09-21 20:29 - 2017-09-21 20:30 - 000000000 ____D C:\Program Files (x86)\Google
2017-09-21 20:29 - 2017-09-21 20:29 - 000003470 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-09-21 20:29 - 2017-09-21 20:29 - 000003346 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-09-21 20:28 - 2017-09-21 20:28 - 001130328 _____ (Google Inc.) C:\Users\JiĹ™Ă\Downloads\ChromeSetup.exe
2017-09-20 22:00 - 2017-09-20 22:00 - 000000027 _____ C:\Users\JiĹ™Ă\Desktop\typ vĂ˝let.txt
2017-09-17 10:45 - 2017-09-17 10:45 - 000057186 _____ C:\Users\JiĹ™Ă\Downloads\Zlin_Z_326.igs
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-10-16 21:16 - 2016-11-19 20:43 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\LocalLow\Mozilla
2017-10-16 21:12 - 2016-07-16 13:47 - 000000265 _____ C:\Windows\win.ini
2017-10-16 21:11 - 2017-09-05 20:37 - 000003654 _____ C:\Windows\System32\Tasks\AutoKMS
2017-10-16 21:03 - 2016-10-03 20:37 - 000000000 ____D C:\Users\JiĹ™Ă
2017-10-16 21:03 - 2016-10-03 20:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-16 21:02 - 2016-07-16 08:04 - 000524288 _____ C:\Windows\system32\config\BBI
2017-10-16 20:24 - 2016-10-03 20:26 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-10-16 16:48 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-16 16:48 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-13 23:21 - 2016-10-07 18:48 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Roaming\vlc
2017-10-13 20:35 - 2016-10-03 20:42 - 001786856 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-13 20:35 - 2016-07-17 00:25 - 000624648 _____ C:\Windows\system32\perfh005.dat
2017-10-13 20:35 - 2016-07-17 00:25 - 000135630 _____ C:\Windows\system32\perfc005.dat
2017-10-13 20:34 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\AppReadiness
2017-10-13 20:32 - 2016-10-03 20:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-13 20:28 - 2016-07-16 13:45 - 000000000 ____D C:\Windows\INF
2017-10-13 20:27 - 2016-10-03 20:26 - 000386672 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ___SD C:\Windows\SysWOW64\F12
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ___SD C:\Windows\system32\F12
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ___RD C:\Program Files\Windows Defender
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\oobe
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\migwiz
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\ShellExperiences
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\Provisioning
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-10-12 22:04 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-10-12 21:29 - 2016-07-16 13:36 - 000000000 ____D C:\Windows\CbsTemp
2017-10-12 21:06 - 2016-10-05 17:20 - 000000000 ____D C:\Windows\system32\MRT
2017-10-12 19:03 - 2016-10-05 17:19 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-12 19:02 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-10-11 21:50 - 2016-07-16 13:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-09 16:35 - 2016-10-07 18:50 - 000000000 ____D C:\Users\JiĹ™Ă\Documents\Jura
2017-10-08 11:49 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\NDF
2017-10-08 11:28 - 2017-06-17 20:23 - 000061304 _____ () C:\Windows\system32\Drivers\lpsport.sys
2017-10-08 11:27 - 2017-09-06 15:27 - 000003994 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-10-08 11:27 - 2016-10-04 16:38 - 000587168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000363440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000201352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000147776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-08 11:27 - 2016-10-04 16:38 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-08 11:27 - 2016-10-04 16:34 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-08 11:26 - 2017-02-07 18:35 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-10-08 11:26 - 2017-02-07 18:35 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-10-08 11:26 - 2017-02-07 18:35 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-10-08 11:26 - 2017-02-07 18:35 - 000057736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-10-08 11:26 - 2016-10-04 16:38 - 001020536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-10-03 21:54 - 2017-09-13 22:40 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Local\ElevatedDiagnostics
2017-10-03 21:20 - 2016-10-06 18:04 - 000001139 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-10-03 21:20 - 2016-10-04 16:42 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-03 21:19 - 2017-09-10 11:42 - 000000981 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-10-03 21:19 - 2017-09-10 11:42 - 000000981 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-09-17 11:31 - 2016-11-09 19:47 - 000000000 ____D C:\Users\JiĹ™Ă\AppData\Local\DassaultSystemes
==================== Files in the root of some directories =======
2016-10-03 21:18 - 2016-10-03 21:18 - 001136640 _____ (Mojang) C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe
2016-10-09 21:47 - 2016-10-09 22:05 - 000000837 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
2016-08-16 09:48 - 2016-08-16 09:48 - 000488960 _____ () C:\Users\JiĹ™Ă\AppData\Local\Temp\sqlite3.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-08-28 21:29
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:97.17 GB) (Free:38.12 GB) NTFS
Drive e: () (Fixed) (Total:135.23 GB) (Free:101.57 GB) NTFS
Available physical RAM: 2247.56 MB
Total physical RAM: 4061.09 MB
Percentage of memory in use: 44%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 2DDF2DDE)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=135.2 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Jiýˇ\Desktop" je 332 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Re: Pop Up reklama, nefunkční klávesnice
Mate vypnutou funkci bodu obnoveni - velice doporucuji tuto funkci zapnout.
- Kliknete pravym na Tento pocitac -> Vlastnosti -> Upresnit nastaveni systemu -> nahore zalozka Ochrana systemu -> oznacte systemovy disk (vetsinou C: ) -> Konfigurovat -> vyberte Obnovit nastaveni systemu a predchozi verze souboru a ulozte klikem na Pouzit.
- Pokud si chcete hrat s velikosti mista na disku, ktere je vyuzito body obnoveni, nedoporucuji tuto hranici snizovat pod 1 GB. Pokud mate mista na disku dost, ponechte defaultni 5-10% vyuziti disku.
- Znovu spustte FRST.exe/FRST64.exe
- stisknete Ctrl + y (obe klavesy zaroven)
- otevre se fixlist.txt, do nejz vlozte obsah bileho pole nize
- stisknete Ctrl + s (ulozite zmeny), pote fixlist zavrete
- kliknete na tlacitko Fix
- po restartu bude vedle FRST vytvoren fixlog, jehoz obsah vlozte do pristi odpovedi
Kód: Vybrat vše
Start CreateRestorePoint: CloseProcesses: HKLM-x32\...\Run: [] => [X] HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION HKU\S-1-5-21-234085966-1151612453-4061763284-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4557504 2016-10-06] (Disc Soft Ltd) GroupPolicy: Restriction - Windows Defender <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings) ProxyEnable: [HKLM] => Proxy is enabled. ProxyEnable: [HKLM-x32] => Proxy is enabled. ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080 ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080 FF DefaultSearchUrl: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006 FF Homepage: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/?bcutc=sp-006 FF Keyword.URL: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006 Folder: C:\Program Files\rempl File: C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe 2016-10-03 21:18 - 2016-10-03 21:18 - 001136640 _____ (Mojang) C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe Task: {59A67BDC-C4AC-484F-87C4-FD53F629E5A1} - \{B422A92D-9EF1-B03B-ADD2-FC3AADCE5324} -> No File <==== ATTENTION Task: {61CC810F-CC06-4A19-9EF7-DA3859ECE1D5} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-09-05] () Task: {96C65807-198A-4605-AEE2-880E9B92A83F} - \{C4445294-73EF-E53F-AE3C-D84BB2AED29D} -> No File <==== ATTENTION Task: {C355E7EF-582D-4CA6-AB2B-B10131FB1149} - \{0E087E47-7D0E-0E05-7811-05797A0D117E} -> No File <==== ATTENTION FirewallRules: [TCP Query User{54C3086D-9B3B-4F63-A6CE-10955D57AEAB}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe] => (Allow) C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe FirewallRules: [UDP Query User{59C741B1-F158-4863-B0C9-8506E922B903}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe] => (Allow) C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe CMD: dir "C:\Windows\Inf" /AD CMD: dir "C:\PROGRA~1" CMD: dir "C:\PROGRA~2" CMD: dir "C:\PROGRA~3" CMD: dir "%localappdata%" CMD: dir "%appdata%" Hosts: EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
-
Rakosnik517
- Návštěvník
- Příspěvky: 10
- Registrován: 18 říj 2006 15:25
- Kontaktovat uživatele:
Re: Pop Up reklama, nefunkční klávesnice
Fix result of Farbar Recovery Scan Tool (x64) Version: 16-10-2017
Ran by Jiří (18-10-2017 20:13:21) Run:1
Running from C:\Users\Jiří\Desktop
Loaded Profiles: Jiří (Available Profiles: defaultuser0 & Jiří)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-234085966-1151612453-4061763284-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4557504 2016-10-06] (Disc Soft Ltd)
GroupPolicy: Restriction - Windows Defender <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
ProxyEnable: [HKLM] => Proxy is enabled.
ProxyEnable: [HKLM-x32] => Proxy is enabled.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006
FF Homepage: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/?bcutc=sp-006
FF Keyword.URL: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006
Folder: C:\Program Files\rempl
File: C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe
2016-10-03 21:18 - 2016-10-03 21:18 - 001136640 _____ (Mojang) C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe
Task: {59A67BDC-C4AC-484F-87C4-FD53F629E5A1} - \{B422A92D-9EF1-B03B-ADD2-FC3AADCE5324} -> No File <==== ATTENTION
Task: {61CC810F-CC06-4A19-9EF7-DA3859ECE1D5} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-09-05] ()
Task: {96C65807-198A-4605-AEE2-880E9B92A83F} - \{C4445294-73EF-E53F-AE3C-D84BB2AED29D} -> No File <==== ATTENTION
Task: {C355E7EF-582D-4CA6-AB2B-B10131FB1149} - \{0E087E47-7D0E-0E05-7811-05797A0D117E} -> No File <==== ATTENTION
FirewallRules: [TCP Query User{54C3086D-9B3B-4F63-A6CE-10955D57AEAB}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe] => (Allow) C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe
FirewallRules: [UDP Query User{59C741B1-F158-4863-B0C9-8506E922B903}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe] => (Allow) C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe
CMD: dir "C:\Windows\Inf" /AD
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKU\S-1-5-21-234085966-1151612453-4061763284-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite Automount => value removed successfully
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxySettingsPerUser => value removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
Firefox DefaultSearchUrl removed successfully
Firefox "homepage" removed successfully
Firefox "Keyword.URL" removed successfully
========================= Folder: C:\Program Files\rempl ========================
2017-09-29 11:28 - 2017-09-29 11:28 - 000370168 ____A [BEA7C958B57607ACEDA85C515D8F1936] (Microsoft Corporation) C:\Program Files\rempl\drvdbfix.exe
2017-06-19 18:31 - 2017-06-19 18:31 - 000003884 ____A [E0DE4C5A0CB4A1B3DE9243BBE3766AE9] () C:\Program Files\rempl\rempl.xml
2017-09-29 11:28 - 2017-09-29 11:28 - 000707064 ____A [501EE9F49000480AE903FE4B9C620551] (Microsoft Corporation) C:\Program Files\rempl\remsh.exe
2017-09-23 23:51 - 2017-09-23 23:51 - 000001931 ____A [466E91272228F070AF7E3C6B4BE50FEB] () C:\Program Files\rempl\Unlock.xml
2017-09-30 20:48 - 2017-10-18 20:07 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Program Files\rempl\Logs
2017-09-30 20:48 - 2017-10-18 20:09 - 000131072 ____A [78D9CF08FFADEF9C077DD2EBBAB8A7D8] () C:\Program Files\rempl\Logs\Remediation.001.etl
2017-09-30 20:48 - 2017-10-18 20:05 - 000131072 ____A [A5869E731F85B5FF8876BF1370FCE2F7] () C:\Program Files\rempl\Logs\Remediation.002.etl
2017-09-30 20:48 - 2017-10-17 21:58 - 000131072 ____A [121356F2A4029F202F29A530D9A9CD8E] () C:\Program Files\rempl\Logs\Remediation.003.etl
2017-09-30 20:48 - 2017-10-17 21:58 - 000131072 ____A [C9473921BD0440269EA73FD3A1D2940B] () C:\Program Files\rempl\Logs\Remediation.004.etl
2017-09-30 20:48 - 2017-10-17 21:58 - 000131072 ____A [DAC3E8AB51E35A42A7A1E89BC61F19E5] () C:\Program Files\rempl\Logs\Remediation.005.etl
2017-09-30 20:48 - 2017-10-17 20:45 - 000131072 ____A [C2569B7E8B355D97D5B2F1209BFC2278] () C:\Program Files\rempl\Logs\Remediation.006.etl
2017-09-30 20:48 - 2017-10-17 20:38 - 000131072 ____A [BC706D2A59FB6783FEB68D35B0D57053] () C:\Program Files\rempl\Logs\Remediation.007.etl
2017-09-30 20:48 - 2017-10-16 21:03 - 000131072 ____A [F57685BCCA779EB00F2B5AEC63359985] () C:\Program Files\rempl\Logs\Remediation.008.etl
2017-09-30 20:48 - 2017-10-16 20:24 - 000131072 ____A [12E7777E609D5DCDD3626F4FE9BA6EEA] () C:\Program Files\rempl\Logs\Remediation.009.etl
2017-09-30 20:48 - 2017-10-16 20:24 - 000131072 ____A [6FF3DB536A354DC65CE43A2A4A0DB93E] () C:\Program Files\rempl\Logs\Remediation.010.etl
2017-09-30 20:48 - 2017-10-16 18:24 - 000131072 ____A [46FF29401F558AAF33125DACEC140328] () C:\Program Files\rempl\Logs\Remediation.011.etl
2017-09-30 20:48 - 2017-10-16 18:24 - 000131072 ____A [8901E8CEBFF4DBBBFB11C15C5824BB76] () C:\Program Files\rempl\Logs\Remediation.012.etl
2017-09-30 20:48 - 2017-10-16 16:53 - 000131072 ____A [BA4DE18FAC9CF000E022EFFFD893ADDE] () C:\Program Files\rempl\Logs\Remediation.013.etl
2017-09-30 20:48 - 2017-10-16 16:48 - 000131072 ____A [90A61E9CB88EBC113F306835B868CBB5] () C:\Program Files\rempl\Logs\Remediation.014.etl
2017-09-30 20:48 - 2017-10-15 21:48 - 000131072 ____A [2043EB8EBB5390608EFB37D3BCD56E5B] () C:\Program Files\rempl\Logs\Remediation.015.etl
2017-09-30 20:48 - 2017-10-15 21:38 - 000131072 ____A [EDEC86939E0446106F0ECFCFD2C5A329] () C:\Program Files\rempl\Logs\Remediation.016.etl
2017-09-30 20:48 - 2017-10-15 03:09 - 000131072 ____A [0724B315E51206F1338FD99805AEC37B] () C:\Program Files\rempl\Logs\Remediation.017.etl
2017-09-30 20:48 - 2017-10-15 03:04 - 000131072 ____A [953B207B14E041B535E66F4A55819A43] () C:\Program Files\rempl\Logs\Remediation.018.etl
2017-09-30 20:48 - 2017-10-13 20:53 - 000131072 ____A [97AC21ADEB01FE39A1A51861180B6A03] () C:\Program Files\rempl\Logs\Remediation.019.etl
2017-09-30 20:48 - 2017-10-13 20:33 - 000131072 ____A [C32994C06D982278860F86AB1CCE7D27] () C:\Program Files\rempl\Logs\Remediation.020.etl
2017-09-30 20:48 - 2017-10-12 21:04 - 000131072 ____A [C0C749ECBD6573D3C06F91E4868810E8] () C:\Program Files\rempl\Logs\Remediation.021.etl
2017-09-30 20:48 - 2017-10-12 17:46 - 000131072 ____A [BDB50B484F091D73787F33B564E4790F] () C:\Program Files\rempl\Logs\Remediation.022.etl
2017-09-30 20:48 - 2017-10-11 21:43 - 000131072 ____A [01E3B7A39A80C4B149074CE4E6B696C2] () C:\Program Files\rempl\Logs\Remediation.023.etl
2017-09-30 20:48 - 2017-10-11 21:40 - 000131072 ____A [A72C8D1577F2EDEFBA259D6A96246754] () C:\Program Files\rempl\Logs\Remediation.024.etl
2017-09-30 20:48 - 2017-10-09 17:35 - 000131072 ____A [8DBBFB635C7864FC1963C6F434C843D8] () C:\Program Files\rempl\Logs\Remediation.025.etl
2017-09-30 20:48 - 2017-10-09 15:21 - 000131072 ____A [686954AC18DF9A5DB5411322E5107AA3] () C:\Program Files\rempl\Logs\Remediation.026.etl
2017-09-30 20:48 - 2017-10-09 15:18 - 000131072 ____A [AC249A0730F09C33731C6582A19D4095] () C:\Program Files\rempl\Logs\Remediation.027.etl
2017-09-30 20:48 - 2017-10-08 14:26 - 000131072 ____A [99463B6251B2546200771D9169B016AB] () C:\Program Files\rempl\Logs\Remediation.028.etl
2017-09-30 20:48 - 2017-10-08 10:58 - 000131072 ____A [3E05C39EC5F25E6D76BA0AD081642F0B] () C:\Program Files\rempl\Logs\Remediation.029.etl
2017-09-30 20:48 - 2017-10-07 23:19 - 000131072 ____A [0C2143FF66BD71BD643E6C36510DC957] () C:\Program Files\rempl\Logs\Remediation.030.etl
2017-09-30 20:48 - 2017-10-04 20:46 - 000131072 ____A [19A6BEF721932BC42D8F8BF6683DE121] () C:\Program Files\rempl\Logs\Remediation.031.etl
2017-09-30 20:48 - 2017-10-04 20:02 - 000065536 ____A [BA1C554B0E2F4282EEB6435D517DABD9] () C:\Program Files\rempl\Logs\Remediation.032.etl
2017-09-30 20:48 - 2017-10-03 21:00 - 000131072 ____A [385CDF86DABDF238C58EA13F3EE48809] () C:\Program Files\rempl\Logs\Remediation.033.etl
2017-09-30 20:48 - 2017-10-03 17:31 - 000131072 ____A [F88BEDED335EF00EE2CBFE24AD3DB23C] () C:\Program Files\rempl\Logs\Remediation.034.etl
2017-09-30 20:48 - 2017-10-02 21:11 - 000131072 ____A [BECB698D5047C603B875ADC2F6104370] () C:\Program Files\rempl\Logs\Remediation.035.etl
2017-09-30 20:48 - 2017-10-02 21:05 - 000131072 ____A [3F2F435A073739C5742DCF6DB7D24F00] () C:\Program Files\rempl\Logs\Remediation.036.etl
2017-09-30 20:48 - 2017-10-01 10:57 - 000131072 ____A [42FF93044BB8F2C481D2D9D8CE37D570] () C:\Program Files\rempl\Logs\Remediation.037.etl
2017-09-30 20:48 - 2017-10-01 10:42 - 000131072 ____A [9F3D8C624A9C2DC27A17DBE04C757670] () C:\Program Files\rempl\Logs\Remediation.038.etl
2017-09-30 20:48 - 2017-09-30 20:51 - 000131072 ____A [8DAF892B75AD9952EB09B604E2580638] () C:\Program Files\rempl\Logs\Remediation.039.etl
====== End of Folder: ======
========================= File: C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe ========================
"C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe" => not found.
====== End of File: ======
"C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{59A67BDC-C4AC-484F-87C4-FD53F629E5A1} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59A67BDC-C4AC-484F-87C4-FD53F629E5A1} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B422A92D-9EF1-B03B-ADD2-FC3AADCE5324} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{61CC810F-CC06-4A19-9EF7-DA3859ECE1D5} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{61CC810F-CC06-4A19-9EF7-DA3859ECE1D5} => key removed successfully
C:\Windows\System32\Tasks\AutoKMS => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{96C65807-198A-4605-AEE2-880E9B92A83F} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{96C65807-198A-4605-AEE2-880E9B92A83F} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C4445294-73EF-E53F-AE3C-D84BB2AED29D} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C355E7EF-582D-4CA6-AB2B-B10131FB1149} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C355E7EF-582D-4CA6-AB2B-B10131FB1149} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0E087E47-7D0E-0E05-7811-05797A0D117E} => key removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{54C3086D-9B3B-4F63-A6CE-10955D57AEAB}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{59C741B1-F158-4863-B0C9-8506E922B903}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe => value removed successfully
========= dir "C:\Windows\Inf" /AD =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\Windows\Inf
16.10.2017 21:22 <DIR> .
16.10.2017 21:22 <DIR> ..
17.07.2016 00:25 <DIR> .NET CLR Data
17.07.2016 00:25 <DIR> .NET CLR Networking
17.07.2016 00:25 <DIR> .NET CLR Networking 4.0.0.0
17.07.2016 00:25 <DIR> .NET Data Provider for Oracle
17.07.2016 00:25 <DIR> .NET Data Provider for SqlServer
17.07.2016 00:25 <DIR> .NET Memory Cache 4.0
03.08.2017 21:57 <DIR> .NETFramework
17.07.2016 00:25 <DIR> BITS
17.07.2016 00:25 <DIR> en-US
17.07.2016 00:25 <DIR> ESENT
17.07.2016 00:25 <DIR> MSDTC
03.10.2016 21:24 <DIR> MSDTC Bridge 3.0.0.0
17.07.2016 00:25 <DIR> MSDTC Bridge 4.0.0.0
17.07.2016 00:25 <DIR> PERFLIB
17.07.2016 00:25 <DIR> PNRPSvc
17.07.2016 00:25 <DIR> rdyboost
17.07.2016 00:25 <DIR> RemoteAccess
03.10.2016 21:24 <DIR> ServiceModelEndpoint 3.0.0.0
03.10.2016 21:24 <DIR> ServiceModelOperation 3.0.0.0
03.10.2016 21:24 <DIR> ServiceModelService 3.0.0.0
03.10.2016 21:24 <DIR> SMSvcHost 3.0.0.0
17.07.2016 00:25 <DIR> SMSvcHost 4.0.0.0
17.07.2016 00:25 <DIR> TAPISRV
17.07.2016 00:25 <DIR> TermService
17.07.2016 00:25 <DIR> UGatherer
17.07.2016 00:25 <DIR> UGTHRSVC
17.07.2016 00:25 <DIR> usbhub
03.10.2016 21:24 <DIR> Windows Workflow Foundation 3.0.0.0
17.07.2016 00:25 <DIR> Windows Workflow Foundation 4.0.0.0
13.10.2017 20:35 <DIR> WmiApRpl
17.07.2016 00:25 <DIR> wsearchidxpi
0 File(s) 0 bytes
33 Dir(s) 40˙545˙501˙184 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~1" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\PROGRA~1
03.10.2017 21:30 <DIR> .
03.10.2017 21:30 <DIR> ..
04.10.2016 16:40 <DIR> AVAST Software
07.02.2017 18:35 <DIR> Common Files
09.11.2016 19:35 <DIR> DAEMON Tools Lite
03.10.2016 20:42 <DIR> Elantech
12.10.2017 22:04 <DIR> Internet Explorer
03.10.2016 21:26 <DIR> Microsoft Analysis Services
03.10.2016 21:29 <DIR> Microsoft Office
01.09.2017 23:25 <DIR> Microsoft Silverlight
03.10.2016 21:29 <DIR> Microsoft Sync Framework
03.10.2017 21:20 <DIR> Mozilla Firefox
03.10.2016 21:24 <DIR> MSBuild
03.10.2016 21:24 <DIR> Reference Assemblies
13.10.2017 20:41 <DIR> rempl
03.10.2017 21:30 <DIR> trend micro
07.07.2017 21:16 <DIR> UNP
03.10.2016 20:45 <DIR> VIA
12.10.2017 22:04 <DIR> Windows Defender
12.10.2017 22:04 <DIR> Windows Mail
27.10.2016 23:36 <DIR> Windows Media Player
16.07.2016 13:47 <DIR> Windows Multimedia Platform
03.10.2016 20:34 <DIR> Windows NT
12.10.2017 22:04 <DIR> Windows Photo Viewer
16.07.2016 13:47 <DIR> Windows Portable Devices
16.07.2016 13:47 <DIR> WindowsPowerShell
03.10.2016 21:07 <DIR> WinRAR
0 File(s) 0 bytes
27 Dir(s) 40˙545˙501˙184 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~2" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\PROGRA~2
08.10.2017 11:08 <DIR> .
08.10.2017 11:08 <DIR> ..
04.10.2016 18:07 <DIR> Adobe
07.10.2016 18:40 <DIR> ASUS
05.09.2017 20:33 <DIR> Common Files
08.11.2016 19:05 <DIR> Corel
09.11.2016 19:49 <DIR> Dassault Systemes
21.09.2017 20:30 <DIR> Google
09.10.2016 21:54 <DIR> HP
12.10.2017 22:04 <DIR> Internet Explorer
03.10.2016 21:26 <DIR> Microsoft Analysis Services
09.11.2016 19:49 <DIR> Microsoft Office
08.11.2016 19:13 <DIR> Microsoft SDKs
01.09.2017 23:25 <DIR> Microsoft Silverlight
31.08.2017 17:37 <DIR> Microsoft Toolkit Final
03.10.2016 21:27 <DIR> Microsoft Visual Studio 8
08.11.2016 19:13 <DIR> Microsoft Visual Studio 9.0
03.10.2016 21:29 <DIR> Microsoft.NET
10.09.2017 11:38 <DIR> Mozilla Firefox
10.09.2017 11:42 <DIR> Mozilla Maintenance Service
03.10.2016 21:29 <DIR> MSBuild
03.10.2016 21:24 <DIR> Reference Assemblies
12.10.2016 21:13 <DIR> totalcmd
06.10.2016 18:04 <DIR> VideoLAN
12.10.2017 22:04 <DIR> Windows Defender
12.10.2017 22:04 <DIR> Windows Mail
27.10.2016 23:36 <DIR> Windows Media Player
16.07.2016 13:47 <DIR> Windows Multimedia Platform
16.07.2016 13:47 <DIR> Windows NT
12.10.2017 22:04 <DIR> Windows Photo Viewer
16.07.2016 13:47 <DIR> Windows Portable Devices
16.07.2016 13:47 <DIR> WindowsPowerShell
0 File(s) 0 bytes
32 Dir(s) 40˙545˙423˙360 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~3" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\PROGRA~3
07.11.2016 22:18 <DIR> Adobe
08.10.2017 11:27 <DIR> AVAST Software
16.07.2016 13:47 <DIR> Comms
08.11.2016 19:11 <DIR> Corel
08.11.2016 19:16 <DIR> CorelDRAW Graphics Suite X5
12.10.2016 20:56 <DIR> DAEMON Tools Lite
09.11.2016 19:49 <DIR> DassaultSystemes
09.10.2016 22:03 <DIR> Hewlett-Packard
09.10.2016 22:06 <DIR> HP
09.10.2016 21:53 <DIR> HP Product Assistant
09.10.2016 22:05 837 hpzinstall.log
05.09.2017 20:33 <DIR> InstallShield
12.10.2017 21:29 <DIR> Microsoft Help
03.10.2016 20:40 <DIR> Microsoft OneDrive
05.09.2017 20:33 <DIR> Microsoft Toolkit
01.09.2017 23:14 <DIR> Package Cache
08.11.2016 19:17 <DIR> Protexis
03.10.2016 20:35 <DIR> regid.1991-06.com.microsoft
16.07.2016 13:47 <DIR> SoftwareDistribution
03.10.2016 20:28 <DIR> USOPrivate
03.10.2016 20:28 <DIR> USOShared
09.10.2016 22:08 <DIR> WEBREG
03.10.2017 21:01 <DIR> {618CCA48-D627-7DE3-89AA-FC197ACA7A0A}
1 File(s) 837 bytes
22 Dir(s) 40˙545˙423˙360 bytes free
========= End of CMD: =========
========= dir "%localappdata%" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\Users\Jiýˇ\AppData\Local
17.10.2017 20:38 <DIR> .
17.10.2017 20:38 <DIR> ..
20.03.2017 22:26 <DIR> Adobe
04.10.2016 16:38 <DIR> CEF
03.10.2016 20:55 <DIR> Comms
17.09.2017 11:31 <DIR> DassaultSystemes
03.10.2017 21:53 <DIR> Diagnostics
05.09.2017 20:02 <DIR> Disc_Soft_Ltd
03.10.2017 21:54 <DIR> ElevatedDiagnostics
13.08.2017 14:25 <DIR> GHISLER
21.09.2017 20:39 <DIR> Google
29.09.2017 18:23 <DIR> IIIQF
07.10.2016 20:46 <DIR> Macromedia
13.09.2017 22:35 <DIR> Microsoft
03.10.2016 21:26 <DIR> Microsoft Help
03.10.2016 20:51 <DIR> MicrosoftEdge
04.10.2016 16:43 <DIR> Mozilla
02.05.2017 21:25 <DIR> Packages
31.08.2017 17:39 <DIR> Programs
03.10.2016 20:38 <DIR> Publishers
18.10.2017 20:14 <DIR> Temp
03.10.2016 20:37 <DIR> TileDataLayer
07.07.2017 23:03 <DIR> UNP
09.11.2016 22:07 <DIR> VirtualStore
0 File(s) 0 bytes
24 Dir(s) 40˙545˙423˙360 bytes free
========= End of CMD: =========
========= dir "%appdata%" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\Users\Jiýˇ\AppData\Roaming
08.10.2017 11:08 <DIR> .
08.10.2017 11:08 <DIR> ..
03.10.2016 21:18 1˙136˙640 08dd8baad6d3032ca893079235a88ce0.exe
07.11.2016 22:18 <DIR> Adobe
04.10.2016 16:38 <DIR> AVAST Software
08.11.2016 19:17 <DIR> Corel
05.09.2017 20:25 <DIR> DAEMON Tools Lite
09.11.2016 19:47 <DIR> DassaultSystemes
16.10.2016 15:37 <DIR> GHISLER
09.10.2016 22:08 <DIR> HP
17.10.2016 15:56 <DIR> HpUpdate
03.10.2016 20:57 <DIR> Macromedia
04.10.2016 16:43 <DIR> Mozilla
04.10.2016 20:43 <DIR> Skype
13.10.2017 23:21 <DIR> vlc
03.10.2016 21:07 <DIR> WinRAR
1 File(s) 1˙136˙640 bytes
15 Dir(s) 40˙545˙419˙264 bytes free
========= End of CMD: =========
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 639510 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 75604396 B
Java, Flash, Steam htmlcache => 4968 B
Windows/system/drivers => 129900862 B
Edge => 125415560 B
Chrome => 511382859 B
Firefox => 399256253 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 46864 B
NetworkService => 12658 B
defaultuser0 => 587916 B
Jiří => 5303093954 B
RecycleBin => 249495414 B
EmptyTemp: => 6.3 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:19:20 ====
Ran by Jiří (18-10-2017 20:13:21) Run:1
Running from C:\Users\Jiří\Desktop
Loaded Profiles: Jiří (Available Profiles: defaultuser0 & Jiří)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-234085966-1151612453-4061763284-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4557504 2016-10-06] (Disc Soft Ltd)
GroupPolicy: Restriction - Windows Defender <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
ProxyEnable: [HKLM] => Proxy is enabled.
ProxyEnable: [HKLM-x32] => Proxy is enabled.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006
FF Homepage: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/?bcutc=sp-006
FF Keyword.URL: Mozilla\Firefox\Profiles\f0cnkvkk.default-1505036589501 -> hxxps://www.google.com/search?bcutc=sp-006
Folder: C:\Program Files\rempl
File: C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe
2016-10-03 21:18 - 2016-10-03 21:18 - 001136640 _____ (Mojang) C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe
Task: {59A67BDC-C4AC-484F-87C4-FD53F629E5A1} - \{B422A92D-9EF1-B03B-ADD2-FC3AADCE5324} -> No File <==== ATTENTION
Task: {61CC810F-CC06-4A19-9EF7-DA3859ECE1D5} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-09-05] ()
Task: {96C65807-198A-4605-AEE2-880E9B92A83F} - \{C4445294-73EF-E53F-AE3C-D84BB2AED29D} -> No File <==== ATTENTION
Task: {C355E7EF-582D-4CA6-AB2B-B10131FB1149} - \{0E087E47-7D0E-0E05-7811-05797A0D117E} -> No File <==== ATTENTION
FirewallRules: [TCP Query User{54C3086D-9B3B-4F63-A6CE-10955D57AEAB}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe] => (Allow) C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe
FirewallRules: [UDP Query User{59C741B1-F158-4863-B0C9-8506E922B903}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe] => (Allow) C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe
CMD: dir "C:\Windows\Inf" /AD
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKU\S-1-5-21-234085966-1151612453-4061763284-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite Automount => value removed successfully
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxySettingsPerUser => value removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
Firefox DefaultSearchUrl removed successfully
Firefox "homepage" removed successfully
Firefox "Keyword.URL" removed successfully
========================= Folder: C:\Program Files\rempl ========================
2017-09-29 11:28 - 2017-09-29 11:28 - 000370168 ____A [BEA7C958B57607ACEDA85C515D8F1936] (Microsoft Corporation) C:\Program Files\rempl\drvdbfix.exe
2017-06-19 18:31 - 2017-06-19 18:31 - 000003884 ____A [E0DE4C5A0CB4A1B3DE9243BBE3766AE9] () C:\Program Files\rempl\rempl.xml
2017-09-29 11:28 - 2017-09-29 11:28 - 000707064 ____A [501EE9F49000480AE903FE4B9C620551] (Microsoft Corporation) C:\Program Files\rempl\remsh.exe
2017-09-23 23:51 - 2017-09-23 23:51 - 000001931 ____A [466E91272228F070AF7E3C6B4BE50FEB] () C:\Program Files\rempl\Unlock.xml
2017-09-30 20:48 - 2017-10-18 20:07 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Program Files\rempl\Logs
2017-09-30 20:48 - 2017-10-18 20:09 - 000131072 ____A [78D9CF08FFADEF9C077DD2EBBAB8A7D8] () C:\Program Files\rempl\Logs\Remediation.001.etl
2017-09-30 20:48 - 2017-10-18 20:05 - 000131072 ____A [A5869E731F85B5FF8876BF1370FCE2F7] () C:\Program Files\rempl\Logs\Remediation.002.etl
2017-09-30 20:48 - 2017-10-17 21:58 - 000131072 ____A [121356F2A4029F202F29A530D9A9CD8E] () C:\Program Files\rempl\Logs\Remediation.003.etl
2017-09-30 20:48 - 2017-10-17 21:58 - 000131072 ____A [C9473921BD0440269EA73FD3A1D2940B] () C:\Program Files\rempl\Logs\Remediation.004.etl
2017-09-30 20:48 - 2017-10-17 21:58 - 000131072 ____A [DAC3E8AB51E35A42A7A1E89BC61F19E5] () C:\Program Files\rempl\Logs\Remediation.005.etl
2017-09-30 20:48 - 2017-10-17 20:45 - 000131072 ____A [C2569B7E8B355D97D5B2F1209BFC2278] () C:\Program Files\rempl\Logs\Remediation.006.etl
2017-09-30 20:48 - 2017-10-17 20:38 - 000131072 ____A [BC706D2A59FB6783FEB68D35B0D57053] () C:\Program Files\rempl\Logs\Remediation.007.etl
2017-09-30 20:48 - 2017-10-16 21:03 - 000131072 ____A [F57685BCCA779EB00F2B5AEC63359985] () C:\Program Files\rempl\Logs\Remediation.008.etl
2017-09-30 20:48 - 2017-10-16 20:24 - 000131072 ____A [12E7777E609D5DCDD3626F4FE9BA6EEA] () C:\Program Files\rempl\Logs\Remediation.009.etl
2017-09-30 20:48 - 2017-10-16 20:24 - 000131072 ____A [6FF3DB536A354DC65CE43A2A4A0DB93E] () C:\Program Files\rempl\Logs\Remediation.010.etl
2017-09-30 20:48 - 2017-10-16 18:24 - 000131072 ____A [46FF29401F558AAF33125DACEC140328] () C:\Program Files\rempl\Logs\Remediation.011.etl
2017-09-30 20:48 - 2017-10-16 18:24 - 000131072 ____A [8901E8CEBFF4DBBBFB11C15C5824BB76] () C:\Program Files\rempl\Logs\Remediation.012.etl
2017-09-30 20:48 - 2017-10-16 16:53 - 000131072 ____A [BA4DE18FAC9CF000E022EFFFD893ADDE] () C:\Program Files\rempl\Logs\Remediation.013.etl
2017-09-30 20:48 - 2017-10-16 16:48 - 000131072 ____A [90A61E9CB88EBC113F306835B868CBB5] () C:\Program Files\rempl\Logs\Remediation.014.etl
2017-09-30 20:48 - 2017-10-15 21:48 - 000131072 ____A [2043EB8EBB5390608EFB37D3BCD56E5B] () C:\Program Files\rempl\Logs\Remediation.015.etl
2017-09-30 20:48 - 2017-10-15 21:38 - 000131072 ____A [EDEC86939E0446106F0ECFCFD2C5A329] () C:\Program Files\rempl\Logs\Remediation.016.etl
2017-09-30 20:48 - 2017-10-15 03:09 - 000131072 ____A [0724B315E51206F1338FD99805AEC37B] () C:\Program Files\rempl\Logs\Remediation.017.etl
2017-09-30 20:48 - 2017-10-15 03:04 - 000131072 ____A [953B207B14E041B535E66F4A55819A43] () C:\Program Files\rempl\Logs\Remediation.018.etl
2017-09-30 20:48 - 2017-10-13 20:53 - 000131072 ____A [97AC21ADEB01FE39A1A51861180B6A03] () C:\Program Files\rempl\Logs\Remediation.019.etl
2017-09-30 20:48 - 2017-10-13 20:33 - 000131072 ____A [C32994C06D982278860F86AB1CCE7D27] () C:\Program Files\rempl\Logs\Remediation.020.etl
2017-09-30 20:48 - 2017-10-12 21:04 - 000131072 ____A [C0C749ECBD6573D3C06F91E4868810E8] () C:\Program Files\rempl\Logs\Remediation.021.etl
2017-09-30 20:48 - 2017-10-12 17:46 - 000131072 ____A [BDB50B484F091D73787F33B564E4790F] () C:\Program Files\rempl\Logs\Remediation.022.etl
2017-09-30 20:48 - 2017-10-11 21:43 - 000131072 ____A [01E3B7A39A80C4B149074CE4E6B696C2] () C:\Program Files\rempl\Logs\Remediation.023.etl
2017-09-30 20:48 - 2017-10-11 21:40 - 000131072 ____A [A72C8D1577F2EDEFBA259D6A96246754] () C:\Program Files\rempl\Logs\Remediation.024.etl
2017-09-30 20:48 - 2017-10-09 17:35 - 000131072 ____A [8DBBFB635C7864FC1963C6F434C843D8] () C:\Program Files\rempl\Logs\Remediation.025.etl
2017-09-30 20:48 - 2017-10-09 15:21 - 000131072 ____A [686954AC18DF9A5DB5411322E5107AA3] () C:\Program Files\rempl\Logs\Remediation.026.etl
2017-09-30 20:48 - 2017-10-09 15:18 - 000131072 ____A [AC249A0730F09C33731C6582A19D4095] () C:\Program Files\rempl\Logs\Remediation.027.etl
2017-09-30 20:48 - 2017-10-08 14:26 - 000131072 ____A [99463B6251B2546200771D9169B016AB] () C:\Program Files\rempl\Logs\Remediation.028.etl
2017-09-30 20:48 - 2017-10-08 10:58 - 000131072 ____A [3E05C39EC5F25E6D76BA0AD081642F0B] () C:\Program Files\rempl\Logs\Remediation.029.etl
2017-09-30 20:48 - 2017-10-07 23:19 - 000131072 ____A [0C2143FF66BD71BD643E6C36510DC957] () C:\Program Files\rempl\Logs\Remediation.030.etl
2017-09-30 20:48 - 2017-10-04 20:46 - 000131072 ____A [19A6BEF721932BC42D8F8BF6683DE121] () C:\Program Files\rempl\Logs\Remediation.031.etl
2017-09-30 20:48 - 2017-10-04 20:02 - 000065536 ____A [BA1C554B0E2F4282EEB6435D517DABD9] () C:\Program Files\rempl\Logs\Remediation.032.etl
2017-09-30 20:48 - 2017-10-03 21:00 - 000131072 ____A [385CDF86DABDF238C58EA13F3EE48809] () C:\Program Files\rempl\Logs\Remediation.033.etl
2017-09-30 20:48 - 2017-10-03 17:31 - 000131072 ____A [F88BEDED335EF00EE2CBFE24AD3DB23C] () C:\Program Files\rempl\Logs\Remediation.034.etl
2017-09-30 20:48 - 2017-10-02 21:11 - 000131072 ____A [BECB698D5047C603B875ADC2F6104370] () C:\Program Files\rempl\Logs\Remediation.035.etl
2017-09-30 20:48 - 2017-10-02 21:05 - 000131072 ____A [3F2F435A073739C5742DCF6DB7D24F00] () C:\Program Files\rempl\Logs\Remediation.036.etl
2017-09-30 20:48 - 2017-10-01 10:57 - 000131072 ____A [42FF93044BB8F2C481D2D9D8CE37D570] () C:\Program Files\rempl\Logs\Remediation.037.etl
2017-09-30 20:48 - 2017-10-01 10:42 - 000131072 ____A [9F3D8C624A9C2DC27A17DBE04C757670] () C:\Program Files\rempl\Logs\Remediation.038.etl
2017-09-30 20:48 - 2017-09-30 20:51 - 000131072 ____A [8DAF892B75AD9952EB09B604E2580638] () C:\Program Files\rempl\Logs\Remediation.039.etl
====== End of Folder: ======
========================= File: C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe ========================
"C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe" => not found.
====== End of File: ======
"C:\Users\JiĹ™Ă\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{59A67BDC-C4AC-484F-87C4-FD53F629E5A1} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59A67BDC-C4AC-484F-87C4-FD53F629E5A1} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B422A92D-9EF1-B03B-ADD2-FC3AADCE5324} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{61CC810F-CC06-4A19-9EF7-DA3859ECE1D5} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{61CC810F-CC06-4A19-9EF7-DA3859ECE1D5} => key removed successfully
C:\Windows\System32\Tasks\AutoKMS => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{96C65807-198A-4605-AEE2-880E9B92A83F} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{96C65807-198A-4605-AEE2-880E9B92A83F} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C4445294-73EF-E53F-AE3C-D84BB2AED29D} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C355E7EF-582D-4CA6-AB2B-B10131FB1149} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C355E7EF-582D-4CA6-AB2B-B10131FB1149} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0E087E47-7D0E-0E05-7811-05797A0D117E} => key removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{54C3086D-9B3B-4F63-A6CE-10955D57AEAB}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{59C741B1-F158-4863-B0C9-8506E922B903}C:\users\jiří\appdata\local\temp\is-3sjso.tmp\_setup.exe => value removed successfully
========= dir "C:\Windows\Inf" /AD =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\Windows\Inf
16.10.2017 21:22 <DIR> .
16.10.2017 21:22 <DIR> ..
17.07.2016 00:25 <DIR> .NET CLR Data
17.07.2016 00:25 <DIR> .NET CLR Networking
17.07.2016 00:25 <DIR> .NET CLR Networking 4.0.0.0
17.07.2016 00:25 <DIR> .NET Data Provider for Oracle
17.07.2016 00:25 <DIR> .NET Data Provider for SqlServer
17.07.2016 00:25 <DIR> .NET Memory Cache 4.0
03.08.2017 21:57 <DIR> .NETFramework
17.07.2016 00:25 <DIR> BITS
17.07.2016 00:25 <DIR> en-US
17.07.2016 00:25 <DIR> ESENT
17.07.2016 00:25 <DIR> MSDTC
03.10.2016 21:24 <DIR> MSDTC Bridge 3.0.0.0
17.07.2016 00:25 <DIR> MSDTC Bridge 4.0.0.0
17.07.2016 00:25 <DIR> PERFLIB
17.07.2016 00:25 <DIR> PNRPSvc
17.07.2016 00:25 <DIR> rdyboost
17.07.2016 00:25 <DIR> RemoteAccess
03.10.2016 21:24 <DIR> ServiceModelEndpoint 3.0.0.0
03.10.2016 21:24 <DIR> ServiceModelOperation 3.0.0.0
03.10.2016 21:24 <DIR> ServiceModelService 3.0.0.0
03.10.2016 21:24 <DIR> SMSvcHost 3.0.0.0
17.07.2016 00:25 <DIR> SMSvcHost 4.0.0.0
17.07.2016 00:25 <DIR> TAPISRV
17.07.2016 00:25 <DIR> TermService
17.07.2016 00:25 <DIR> UGatherer
17.07.2016 00:25 <DIR> UGTHRSVC
17.07.2016 00:25 <DIR> usbhub
03.10.2016 21:24 <DIR> Windows Workflow Foundation 3.0.0.0
17.07.2016 00:25 <DIR> Windows Workflow Foundation 4.0.0.0
13.10.2017 20:35 <DIR> WmiApRpl
17.07.2016 00:25 <DIR> wsearchidxpi
0 File(s) 0 bytes
33 Dir(s) 40˙545˙501˙184 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~1" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\PROGRA~1
03.10.2017 21:30 <DIR> .
03.10.2017 21:30 <DIR> ..
04.10.2016 16:40 <DIR> AVAST Software
07.02.2017 18:35 <DIR> Common Files
09.11.2016 19:35 <DIR> DAEMON Tools Lite
03.10.2016 20:42 <DIR> Elantech
12.10.2017 22:04 <DIR> Internet Explorer
03.10.2016 21:26 <DIR> Microsoft Analysis Services
03.10.2016 21:29 <DIR> Microsoft Office
01.09.2017 23:25 <DIR> Microsoft Silverlight
03.10.2016 21:29 <DIR> Microsoft Sync Framework
03.10.2017 21:20 <DIR> Mozilla Firefox
03.10.2016 21:24 <DIR> MSBuild
03.10.2016 21:24 <DIR> Reference Assemblies
13.10.2017 20:41 <DIR> rempl
03.10.2017 21:30 <DIR> trend micro
07.07.2017 21:16 <DIR> UNP
03.10.2016 20:45 <DIR> VIA
12.10.2017 22:04 <DIR> Windows Defender
12.10.2017 22:04 <DIR> Windows Mail
27.10.2016 23:36 <DIR> Windows Media Player
16.07.2016 13:47 <DIR> Windows Multimedia Platform
03.10.2016 20:34 <DIR> Windows NT
12.10.2017 22:04 <DIR> Windows Photo Viewer
16.07.2016 13:47 <DIR> Windows Portable Devices
16.07.2016 13:47 <DIR> WindowsPowerShell
03.10.2016 21:07 <DIR> WinRAR
0 File(s) 0 bytes
27 Dir(s) 40˙545˙501˙184 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~2" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\PROGRA~2
08.10.2017 11:08 <DIR> .
08.10.2017 11:08 <DIR> ..
04.10.2016 18:07 <DIR> Adobe
07.10.2016 18:40 <DIR> ASUS
05.09.2017 20:33 <DIR> Common Files
08.11.2016 19:05 <DIR> Corel
09.11.2016 19:49 <DIR> Dassault Systemes
21.09.2017 20:30 <DIR> Google
09.10.2016 21:54 <DIR> HP
12.10.2017 22:04 <DIR> Internet Explorer
03.10.2016 21:26 <DIR> Microsoft Analysis Services
09.11.2016 19:49 <DIR> Microsoft Office
08.11.2016 19:13 <DIR> Microsoft SDKs
01.09.2017 23:25 <DIR> Microsoft Silverlight
31.08.2017 17:37 <DIR> Microsoft Toolkit Final
03.10.2016 21:27 <DIR> Microsoft Visual Studio 8
08.11.2016 19:13 <DIR> Microsoft Visual Studio 9.0
03.10.2016 21:29 <DIR> Microsoft.NET
10.09.2017 11:38 <DIR> Mozilla Firefox
10.09.2017 11:42 <DIR> Mozilla Maintenance Service
03.10.2016 21:29 <DIR> MSBuild
03.10.2016 21:24 <DIR> Reference Assemblies
12.10.2016 21:13 <DIR> totalcmd
06.10.2016 18:04 <DIR> VideoLAN
12.10.2017 22:04 <DIR> Windows Defender
12.10.2017 22:04 <DIR> Windows Mail
27.10.2016 23:36 <DIR> Windows Media Player
16.07.2016 13:47 <DIR> Windows Multimedia Platform
16.07.2016 13:47 <DIR> Windows NT
12.10.2017 22:04 <DIR> Windows Photo Viewer
16.07.2016 13:47 <DIR> Windows Portable Devices
16.07.2016 13:47 <DIR> WindowsPowerShell
0 File(s) 0 bytes
32 Dir(s) 40˙545˙423˙360 bytes free
========= End of CMD: =========
========= dir "C:\PROGRA~3" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\PROGRA~3
07.11.2016 22:18 <DIR> Adobe
08.10.2017 11:27 <DIR> AVAST Software
16.07.2016 13:47 <DIR> Comms
08.11.2016 19:11 <DIR> Corel
08.11.2016 19:16 <DIR> CorelDRAW Graphics Suite X5
12.10.2016 20:56 <DIR> DAEMON Tools Lite
09.11.2016 19:49 <DIR> DassaultSystemes
09.10.2016 22:03 <DIR> Hewlett-Packard
09.10.2016 22:06 <DIR> HP
09.10.2016 21:53 <DIR> HP Product Assistant
09.10.2016 22:05 837 hpzinstall.log
05.09.2017 20:33 <DIR> InstallShield
12.10.2017 21:29 <DIR> Microsoft Help
03.10.2016 20:40 <DIR> Microsoft OneDrive
05.09.2017 20:33 <DIR> Microsoft Toolkit
01.09.2017 23:14 <DIR> Package Cache
08.11.2016 19:17 <DIR> Protexis
03.10.2016 20:35 <DIR> regid.1991-06.com.microsoft
16.07.2016 13:47 <DIR> SoftwareDistribution
03.10.2016 20:28 <DIR> USOPrivate
03.10.2016 20:28 <DIR> USOShared
09.10.2016 22:08 <DIR> WEBREG
03.10.2017 21:01 <DIR> {618CCA48-D627-7DE3-89AA-FC197ACA7A0A}
1 File(s) 837 bytes
22 Dir(s) 40˙545˙423˙360 bytes free
========= End of CMD: =========
========= dir "%localappdata%" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\Users\Jiýˇ\AppData\Local
17.10.2017 20:38 <DIR> .
17.10.2017 20:38 <DIR> ..
20.03.2017 22:26 <DIR> Adobe
04.10.2016 16:38 <DIR> CEF
03.10.2016 20:55 <DIR> Comms
17.09.2017 11:31 <DIR> DassaultSystemes
03.10.2017 21:53 <DIR> Diagnostics
05.09.2017 20:02 <DIR> Disc_Soft_Ltd
03.10.2017 21:54 <DIR> ElevatedDiagnostics
13.08.2017 14:25 <DIR> GHISLER
21.09.2017 20:39 <DIR> Google
29.09.2017 18:23 <DIR> IIIQF
07.10.2016 20:46 <DIR> Macromedia
13.09.2017 22:35 <DIR> Microsoft
03.10.2016 21:26 <DIR> Microsoft Help
03.10.2016 20:51 <DIR> MicrosoftEdge
04.10.2016 16:43 <DIR> Mozilla
02.05.2017 21:25 <DIR> Packages
31.08.2017 17:39 <DIR> Programs
03.10.2016 20:38 <DIR> Publishers
18.10.2017 20:14 <DIR> Temp
03.10.2016 20:37 <DIR> TileDataLayer
07.07.2017 23:03 <DIR> UNP
09.11.2016 22:07 <DIR> VirtualStore
0 File(s) 0 bytes
24 Dir(s) 40˙545˙423˙360 bytes free
========= End of CMD: =========
========= dir "%appdata%" =========
Volume in drive C has no label.
Volume Serial Number is 8A64-BD7D
Directory of C:\Users\Jiýˇ\AppData\Roaming
08.10.2017 11:08 <DIR> .
08.10.2017 11:08 <DIR> ..
03.10.2016 21:18 1˙136˙640 08dd8baad6d3032ca893079235a88ce0.exe
07.11.2016 22:18 <DIR> Adobe
04.10.2016 16:38 <DIR> AVAST Software
08.11.2016 19:17 <DIR> Corel
05.09.2017 20:25 <DIR> DAEMON Tools Lite
09.11.2016 19:47 <DIR> DassaultSystemes
16.10.2016 15:37 <DIR> GHISLER
09.10.2016 22:08 <DIR> HP
17.10.2016 15:56 <DIR> HpUpdate
03.10.2016 20:57 <DIR> Macromedia
04.10.2016 16:43 <DIR> Mozilla
04.10.2016 20:43 <DIR> Skype
13.10.2017 23:21 <DIR> vlc
03.10.2016 21:07 <DIR> WinRAR
1 File(s) 1˙136˙640 bytes
15 Dir(s) 40˙545˙419˙264 bytes free
========= End of CMD: =========
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 639510 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 75604396 B
Java, Flash, Steam htmlcache => 4968 B
Windows/system/drivers => 129900862 B
Edge => 125415560 B
Chrome => 511382859 B
Firefox => 399256253 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 46864 B
NetworkService => 12658 B
defaultuser0 => 587916 B
Jiří => 5303093954 B
RecycleBin => 249495414 B
EmptyTemp: => 6.3 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:19:20 ====
Re: Pop Up reklama, nefunkční klávesnice
Otestujte na virustotal.com C:\Users\Jiýˇ\AppData\Roaming\08dd8baad6d3032ca893079235a88ce0.exe - pokud uz byl soubor otestovany, zvolte Reanalyse. Do pristiho prispevku dejte link (odkaz) s vysledky analyzy. Jake problemy na PC pozorujete ted?Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Přispějete na provoz fóra?