Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosim o kontrolu logu - Prioritni problem je nefunkcnost wi

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
ixbrotyx
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 06 srp 2017 19:25

Prosim o kontrolu logu - Prioritni problem je nefunkcnost wi

#1 Příspěvek od ixbrotyx »

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-11-2017 02
Ran by Špelec (administrator) on ŠPELEC-PC (07-11-2017 21:57:28)
Running from C:\Users\Špelec\Desktop
Loaded Profiles: Špelec (Available Profiles: Špelec & antoninwojcik1 & tonylee)
Platform: Microsoft Windows 10 Home Version 1607 14393.1770 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(ZSMCSNAP) C:\WINDOWS\ZSSnp211.exe
() C:\WINDOWS\Domino.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Facebook) C:\Users\Špelec\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Microsoft Corporation) C:\WINDOWS\System32\wermgr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\WINDOWS\System32\browser_broker.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Opera Software) C:\Program Files\Opera\48.0.2685.52\opera_autoupdate.exe
(Opera Software) C:\Program Files\Opera\launcher.exe
(Opera Software) C:\Program Files\Opera\48.0.2685.52\opera_autoupdate.exe
(Microsoft Corporation) C:\WINDOWS\System32\backgroundTaskHost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ZSSnp211] => C:\WINDOWS\ZSSnp211.exe [57344 2007-04-06] (ZSMCSNAP)
HKLM\...\Run: [Domino] => C:\WINDOWS\Domino.exe [49152 2006-08-18] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-11] (AVAST Software)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2017-04-28] (Microsoft Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2906948890-3372974042-1230140830-1000\...\MountPoints2: {443bf757-65ae-11e6-89be-806e6f6e6963} - "D:\autorun.exe"
Startup: C:\Users\Špelec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-06-17]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Špelec\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume1autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{528ba2a0-7302-474c-9b64-373e69dd118d}: [DhcpNameServer] 192.168.44.1
Tcpip\..\Interfaces\{8f1e7342-e256-4485-af39-0fdf97a43b5d}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-2906948890-3372974042-1230140830-1000 -> hxxp://seznam.cz/

FireFox:
========
FF DefaultProfile: kd9csxxj.default
FF ProfilePath: C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default [2017-10-21]
FF Extension: (Avast SafePrice) - C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default\Extensions\sp@avast.com.xpi [2017-07-03]
FF Extension: (Avast Online Security) - C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default\Extensions\wrc@avast.com.xpi [2017-09-04]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default [2017-11-07]
CHR Extension: (Prezentace) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-28]
CHR Extension: (Dokumenty) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-28]
CHR Extension: (Disk Google) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-19]
CHR Extension: (YouTube) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-19]
CHR Extension: (Avast SafePrice) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-11-07]
CHR Extension: (Tabulky) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-07]
CHR Extension: (Filmy Google Play) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdijeikdkaembjbdobgfkoidjkpbmlkd [2016-08-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-07]
CHR Extension: (Gmail) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-19]
CHR Extension: (Chrome Media Router) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-07]
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-10-28]
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-28]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5828816 2017-10-11] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-11] (AVAST Software)
S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\W32X86\3\PrintConfig.dll [2717184 2017-03-28] (Microsoft Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2017-08-08] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [255624 2017-10-11] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [157416 2017-10-11] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [276736 2017-10-11] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [50384 2017-10-11] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [42856 2017-10-11] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [124952 2017-10-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [99560 2017-10-11] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [70864 2017-10-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [783648 2017-11-07] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [499560 2017-10-11] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [149824 2017-10-11] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [297840 2017-10-11] (AVAST Software)
S3 BthMtpEnum; C:\WINDOWS\system32\DRIVERS\BthMtpEnum.sys [53248 2016-07-16] (Microsoft Corporation)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 LVUSBSta; C:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [22016 2005-01-19] (Labtec Inc.)
S3 NdisImPlatformMp; C:\WINDOWS\System32\drivers\NdisImPlatform.sys [109568 2016-07-16] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2016-07-16] (Intel Corporation)
S3 PID_0928; C:\WINDOWS\system32\DRIVERS\LV561AV.SYS [211712 2005-01-19] (Labtec Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [16384 2016-07-16] (Microsoft Corporation)
S3 vvftav211; C:\WINDOWS\system32\drivers\vvftav211.sys [480128 2007-12-10] (Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
S3 ZSMC30x; C:\WINDOWS\System32\Drivers\ZS211.sys [1472000 2007-12-13] (ZSMC.Corporation)
S3 MBAMProtection; \??\C:\WINDOWS\system32\drivers\mbam.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-07 21:57 - 2017-11-07 21:58 - 000011511 _____ C:\Users\Špelec\Desktop\FRST.txt
2017-11-07 21:51 - 2017-11-07 21:51 - 000112640 _____ (forum.viry.cz) C:\Users\Špelec\Downloads\FRSTLauncher.exe
2017-11-07 21:39 - 2017-11-07 21:57 - 000000000 ____D C:\FRST
2017-11-07 21:38 - 2017-11-07 21:39 - 001799680 _____ (Farbar) C:\Users\Špelec\Desktop\FRST.exe
2017-11-07 21:24 - 2017-11-07 21:24 - 000000000 ____D C:\Program Files\DIFX
2017-11-07 21:21 - 2017-11-07 21:22 - 038189742 _____ C:\Users\Špelec\Desktop\ASUS_WiFi_XP_32_z13215.zip
2017-11-07 21:21 - 2017-11-07 21:21 - 000132406 _____ C:\Users\Špelec\Desktop\3b7ce358bcfee7a581768514cc0ca78e (1).zip
2017-11-07 21:20 - 2017-11-07 21:20 - 000132406 _____ C:\Users\Špelec\Desktop\3b7ce358bcfee7a581768514cc0ca78e.zip
2017-11-03 21:46 - 2017-11-03 21:46 - 000007614 _____ C:\Users\Špelec\AppData\Local\Resmon.ResmonCfg
2017-11-03 21:12 - 2017-11-03 21:12 - 000001975 _____ C:\Users\Špelec\Desktop\Seznam.cz.lnk
2017-11-03 21:12 - 2017-11-03 21:12 - 000001955 _____ C:\Users\Špelec\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2017-11-03 20:21 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater (2).settings
2017-11-02 00:08 - 2017-11-02 00:22 - 000000000 ____D C:\Users\tonylee\AppData\LocalLow\Mozilla
2017-11-02 00:07 - 2017-11-02 00:08 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\Mozilla
2017-11-02 00:07 - 2017-11-02 00:07 - 000000000 ____D C:\Users\tonylee\AppData\Local\Mozilla
2017-10-25 17:50 - 2017-10-25 17:50 - 000000000 ____D C:\Users\Public\Documents\MDMDiagnostics
2017-10-22 00:55 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater (1).settings
2017-10-22 00:54 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater.settings
2017-10-21 22:44 - 2017-10-21 22:44 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\AVAST Software
2017-10-21 22:44 - 2017-10-21 22:44 - 000000000 ____D C:\Users\tonylee\AppData\Local\CEF
2017-10-21 22:37 - 2017-10-28 22:04 - 000000000 ____D C:\Users\tonylee\AppData\Local\ConnectedDevicesPlatform
2017-10-21 22:37 - 2017-10-25 01:37 - 000000000 ____D C:\Users\tonylee
2017-10-21 22:37 - 2017-10-21 23:03 - 000002282 _____ C:\Users\tonylee\Desktop\Google Chrome.lnk
2017-10-21 22:37 - 2017-10-21 22:39 - 000000000 ____D C:\Users\tonylee\AppData\Local\Packages
2017-10-21 22:37 - 2017-10-21 22:37 - 000000020 ___SH C:\Users\tonylee\ntuser.ini
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Šablony
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Soubory cookie
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Poslední
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Okolní tiskárny
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Okolní síť
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Nabídka Start
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Dokumenty
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Obrázky
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Hudba
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Filmy
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Data aplikací
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\AppData\Local\Data aplikací
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\Adobe
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\VirtualStore
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\TileDataLayer
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\Google
2017-10-21 02:33 - 2017-10-21 02:33 - 000000000 ____D C:\$WINDOWS.~BT
2017-10-21 02:32 - 2017-10-21 02:34 - 000000000 ___HD C:\$SysReset
2017-10-18 22:03 - 2017-10-18 22:03 - 000017408 _____ C:\WINDOWS\system32\rpcnetp.exe
2017-10-18 22:03 - 2017-10-18 22:03 - 000017408 _____ C:\WINDOWS\system32\rpcnetp.dll
2017-10-12 14:10 - 2017-10-12 14:10 - 000000000 _____ C:\WINDOWS\system32\MRT-KB890830.exe
2017-10-11 09:39 - 2017-09-18 04:04 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-10-11 09:39 - 2017-09-18 03:52 - 006672680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-10-11 09:39 - 2017-09-18 03:33 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-10-11 09:39 - 2017-09-18 03:32 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-10-11 09:39 - 2017-09-18 03:31 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-10-11 09:39 - 2017-09-18 03:29 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-10-11 09:39 - 2017-09-18 03:23 - 000857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-10-11 09:39 - 2017-09-18 03:23 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-10-11 09:39 - 2017-09-18 03:23 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 001323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 001137664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-11 09:39 - 2017-09-18 03:22 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-11 09:39 - 2017-09-18 03:22 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-11 09:39 - 2017-09-18 03:20 - 002641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-10-11 09:39 - 2017-09-18 03:18 - 007470592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-10-11 09:39 - 2017-09-18 03:15 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 001988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 001890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-10-11 09:39 - 2017-09-18 03:13 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-10-11 09:39 - 2017-09-18 03:13 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-10-11 09:39 - 2017-09-18 03:11 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-10-11 09:39 - 2017-09-14 23:52 - 001431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-10-11 09:39 - 2017-09-14 23:33 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-10-11 09:39 - 2017-09-14 23:25 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-10-11 09:39 - 2017-09-14 23:22 - 003520512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-10-11 09:39 - 2017-09-14 23:18 - 000846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-10-11 09:39 - 2017-09-14 23:15 - 003106304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-10-11 09:39 - 2017-09-14 23:15 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2017-10-11 09:39 - 2017-03-04 07:23 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2017-10-11 09:39 - 2017-03-04 07:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-10-11 09:39 - 2017-03-04 06:57 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-10-11 09:39 - 2016-08-06 05:06 - 000023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-10-11 09:38 - 2017-09-18 04:04 - 001725144 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-10-11 09:38 - 2017-09-18 04:01 - 000798512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2017-10-11 09:38 - 2017-09-18 03:55 - 005722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 020967840 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 004023560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001845512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001360464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 000981888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-10-11 09:38 - 2017-09-18 03:37 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-10-11 09:38 - 2017-09-18 03:27 - 004615168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-10-11 09:38 - 2017-09-18 03:27 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-10-11 09:38 - 2017-09-18 03:26 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-10-11 09:38 - 2017-09-18 03:26 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-10-11 09:38 - 2017-09-18 03:25 - 002333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-10-11 09:38 - 2017-09-18 03:23 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-10-11 09:38 - 2017-09-18 03:21 - 018364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-10-11 09:38 - 2017-09-18 03:20 - 019414016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-10-11 09:38 - 2017-09-18 03:15 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-10-11 09:38 - 2017-09-18 03:14 - 003663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-10-11 09:38 - 2017-09-18 03:14 - 001997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-10-11 09:38 - 2017-09-14 23:49 - 001202936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-10-11 09:38 - 2017-09-14 23:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-11 09:38 - 2017-09-14 23:27 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-10-11 09:38 - 2017-09-14 23:18 - 001104896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-10-11 09:37 - 2017-09-18 04:05 - 000497424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-11 09:37 - 2017-09-18 04:05 - 000102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-10-11 09:37 - 2017-09-18 04:04 - 005994848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-10-11 09:37 - 2017-09-18 04:04 - 001953632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-10-11 09:37 - 2017-09-18 04:01 - 000133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-10-11 09:37 - 2017-09-18 03:54 - 000355168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-10-11 09:37 - 2017-09-18 03:54 - 000186208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-10-11 09:37 - 2017-09-18 03:48 - 000043952 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-10-11 09:37 - 2017-09-18 03:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmojiDS.dll
2017-10-11 09:37 - 2017-09-18 03:33 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransliterationRanker.dll
2017-10-11 09:37 - 2017-09-18 03:33 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpninputrouter.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000138752 _____ C:\WINDOWS\system32\IHDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StaticDictDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuleBasedDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-11 09:37 - 2017-09-18 03:31 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpndecoder.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VocabRoamingHandler.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxranker.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtCangjieDS.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsPinyinRanker.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxinputrouter.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpnranker.dll
2017-10-11 09:37 - 2017-09-18 03:29 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-11 09:37 - 2017-09-18 03:29 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtfDecoder.dll
2017-10-11 09:37 - 2017-09-18 03:27 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtQuickDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxAPDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimeChsPinyinMainDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxHAPDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtHkStrokeDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-10-11 09:37 - 2017-09-18 03:25 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsStrokeDS.dll
2017-10-11 09:37 - 2017-09-18 03:24 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2017-10-11 09:37 - 2017-09-18 03:23 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-10-11 09:37 - 2017-09-18 03:22 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-10-11 09:37 - 2017-09-18 03:20 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-10-11 09:37 - 2017-09-18 03:18 - 012204032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 002649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\trie.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFFuzzyDS.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFSpellcheckDS.dll
2017-10-11 09:37 - 2017-09-14 23:18 - 002682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-10-11 09:37 - 2017-09-14 23:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-10-11 09:37 - 2017-03-04 07:23 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-10-11 09:37 - 2017-03-04 07:16 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 001336160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 000218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 000113504 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-10-11 09:36 - 2017-09-18 04:01 - 000145760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2017-10-11 09:36 - 2017-09-18 03:59 - 000341344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-10-11 09:36 - 2017-09-18 03:54 - 000523792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-10-11 09:36 - 2017-09-18 03:52 - 001384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-10-11 09:36 - 2017-09-18 03:51 - 000198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-10-11 09:36 - 2017-09-18 03:51 - 000178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-11 09:36 - 2017-09-18 03:50 - 001409024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-10-11 09:36 - 2017-09-18 03:50 - 001344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-10-11 09:36 - 2017-09-18 03:49 - 001260784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-11 09:36 - 2017-09-18 03:33 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-11 09:36 - 2017-09-18 03:31 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-10-11 09:36 - 2017-09-18 03:30 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-11 09:36 - 2017-09-18 03:30 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-10-11 09:36 - 2017-09-18 03:29 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-10-11 09:36 - 2017-09-18 03:29 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-10-11 09:36 - 2017-09-18 03:28 - 000406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-10-11 09:36 - 2017-09-18 03:28 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-10-11 09:36 - 2017-09-18 03:27 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2017-10-11 09:36 - 2017-09-18 03:25 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-10-11 09:36 - 2017-09-18 03:22 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-11 09:36 - 2017-09-18 03:21 - 001584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-10-11 09:36 - 2017-09-18 03:20 - 003774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-10-11 09:36 - 2017-09-18 03:19 - 002750976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-10-11 09:36 - 2017-09-18 03:19 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-10-11 09:36 - 2017-09-18 03:19 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2017-10-11 09:36 - 2017-09-18 03:18 - 000734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 006474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-10-11 09:36 - 2017-09-18 03:14 - 002997760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-10-11 09:36 - 2017-09-18 03:14 - 002740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 002483712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001599488 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001116672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-11 09:36 - 2017-09-18 03:13 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-10-11 09:36 - 2017-09-18 03:13 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-10-11 09:36 - 2017-09-18 03:13 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-10-11 09:36 - 2017-09-14 23:59 - 000096064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-10-11 09:36 - 2017-09-14 23:52 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-10-11 09:36 - 2017-09-14 23:51 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-10-11 09:36 - 2017-09-14 23:31 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollUI.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 007626240 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-10-11 09:36 - 2017-09-14 23:27 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-10-11 09:36 - 2017-09-14 23:26 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2017-10-11 09:36 - 2017-09-14 23:17 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-10-11 09:36 - 2017-09-14 23:14 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2017-10-11 09:36 - 2017-09-14 03:04 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswstr10.dll
2017-10-11 09:36 - 2017-09-14 03:04 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-10-11 09:36 - 2017-09-14 03:04 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjint40.dll
2017-10-11 09:36 - 2017-03-04 07:24 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-10-11 09:36 - 2017-03-04 07:22 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-10-11 09:36 - 2017-03-04 07:00 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-10-11 03:02 - 2017-10-11 03:02 - 000304816 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-10-11 03:00 - 2017-10-11 03:00 - 005490688 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-07 21:57 - 2016-08-19 08:14 - 000000000 ____D C:\Program Files\Opera
2017-11-07 21:24 - 2016-07-16 09:28 - 000000000 ____D C:\WINDOWS\INF
2017-11-07 21:14 - 2016-08-24 16:36 - 000783648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2017-11-07 21:06 - 2017-01-14 06:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-07 21:05 - 2016-07-16 03:22 - 002097152 _____ C:\WINDOWS\system32\config\BBI
2017-11-07 20:44 - 2017-07-03 18:14 - 000001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2017-11-07 20:42 - 2016-08-19 07:53 - 004350710 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-07 20:42 - 2016-07-16 18:01 - 001948184 _____ C:\WINDOWS\system32\perfh005.dat
2017-11-07 20:42 - 2016-07-16 18:01 - 000527844 _____ C:\WINDOWS\system32\perfc005.dat
2017-11-07 20:25 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-11-07 19:51 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-07 04:58 - 2017-01-14 05:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-06 23:55 - 2017-04-06 13:48 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-11-06 23:55 - 2017-04-06 13:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-11-06 23:52 - 2017-09-09 15:11 - 000000000 ____D C:\Users\antoninwojcik1\AppData\LocalLow\Mozilla
2017-11-03 21:35 - 2016-07-16 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-03 21:12 - 2016-08-27 07:16 - 000000000 ____D C:\Users\Špelec\AppData\Roaming\Seznam Browser
2017-11-03 21:12 - 2016-08-27 07:16 - 000000000 ____D C:\Users\Špelec\AppData\Local\Seznam.cz
2017-10-29 22:31 - 2017-07-24 19:57 - 000000000 ____D C:\Program Files\UNP
2017-10-29 22:29 - 2016-07-16 09:26 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-10-28 19:42 - 2016-08-19 08:02 - 000000176 _____ C:\WINDOWS\win.ini
2017-10-28 19:09 - 2016-09-05 18:55 - 000000375 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2017-10-28 11:08 - 2017-01-14 05:47 - 000000000 ____D C:\Users\Špelec
2017-10-21 23:54 - 2017-09-09 16:35 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-21 23:54 - 2017-09-09 16:35 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-21 22:37 - 2016-02-13 14:21 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-20 19:38 - 2017-02-06 22:19 - 000000000 ____D C:\Users\Špelec\Desktop\DCIM
2017-10-18 23:35 - 2017-09-09 16:28 - 066347240 _____ (Malwarebytes ) C:\Users\antoninwojcik1\Downloads\mb3-setup-consumer-3.2.2.2018(1).exe
2017-10-18 01:58 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\rescache
2017-10-16 17:19 - 2017-01-14 05:38 - 000000000 ___DC C:\WINDOWS\Panther
2017-10-16 17:16 - 2016-07-16 03:22 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-10-16 17:16 - 2016-01-16 17:16 - 000008192 __RSH C:\BOOTSECT.BAK
2017-10-16 17:06 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\Registration
2017-10-16 17:03 - 2017-01-14 06:09 - 000015903 _____ C:\WINDOWS\diagwrn.xml
2017-10-16 17:03 - 2017-01-14 06:09 - 000015833 _____ C:\WINDOWS\diagerr.xml
2017-10-13 23:12 - 2016-07-16 09:29 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-13 14:07 - 2017-01-14 05:39 - 000193128 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-13 14:03 - 2016-07-16 09:29 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-10-13 14:03 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-10-13 13:27 - 2017-09-29 20:00 - 000000000 ____D C:\Program Files\rempl
2017-10-12 14:14 - 2016-08-19 18:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-12 14:09 - 2016-08-19 18:49 - 124059592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-10-12 13:59 - 2016-09-28 20:41 - 000068072 _____ (Absolute Software Corp.) C:\WINDOWS\system32\agremove.exe
2017-10-11 03:03 - 2017-06-06 14:37 - 000055160 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000777952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.151008566331203
2017-10-11 03:02 - 2016-08-24 16:36 - 000499560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000297840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000149824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000124952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000099560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000070864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000042856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-10-11 03:02 - 2016-08-24 16:30 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-11 03:01 - 2017-03-15 14:42 - 000276736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000255624 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000157416 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000050384 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-10-11 03:00 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\Macromed

==================== Files in the root of some directories =======

2017-11-03 21:46 - 2017-11-03 21:46 - 000007614 _____ () C:\Users\Špelec\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
2017-07-27 00:33 - 2017-07-27 00:34 - 018309328 _____ (Microsoft Corporation) C:\Users\Špelec\AppData\Local\Temp\MediaCreationTool.exe
2016-08-16 08:48 - 2016-08-16 08:48 - 000488960 _____ () C:\Users\Špelec\AppData\Local\Temp\sqlite3.exe
2017-05-12 04:04 - 2017-05-12 08:14 - 000000000 _____ () C:\Users\Špelec\AppData\Local\Temp\{57800645-8DB2-4E5F-B580-A949E6F2D3F7}-58.0.3029.110_57.0.2987.133_chrome_updater.exe

Some zero byte size files/folders:
==========================
C:\Windows\System32\BackgroundMediaPolicy.dll
C:\Windows\System32\MRT-KB890830.exe
C:\Windows\System32\msxml6r.dll
C:\Windows\System32\wpnprv.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-11-03 20:15

==================== End of FRST.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

ixbrotyx
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 06 srp 2017 19:25

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos

#3 Příspěvek od ixbrotyx »

# AdwCleaner 7.0.4.0 - Logfile created on Tue Nov 07 21:31:11 2017
# Updated on 2017/27/10 by Malwarebytes
# Database: 11-07-2017.1
# Running on Windows 10 Home (X86)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

PUP.Optional.Reimage, C:\Windows\Reimage.ini


***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\d19h7q92ya6ec9.cloudfront.net
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\d19h7q92ya6ec9.cloudfront.net
PUP.Optional.Reimage, [Key] - HKLM\SOFTWARE\Reimage


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

PUP.Optional.MindSpark, Plugin found: FromDocToPDF -
PUP.Optional.MindSpark, Plugin found: EasyPDFCombine -
PUP.Optional.MindSpark, Plugin found: Search Extension by Ask -

/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271


*************************



########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos

#4 Příspěvek od Rudy »

Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

ixbrotyx
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 06 srp 2017 19:25

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos

#5 Příspěvek od ixbrotyx »

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-11-2017 02
Ran by Špelec (administrator) on ŠPELEC-PC (07-11-2017 23:57:32)
Running from C:\Users\Špelec\Desktop
Loaded Profiles: Špelec (Available Profiles: Špelec & antoninwojcik1 & tonylee)
Platform: Microsoft Windows 10 Home Version 1607 14393.1770 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(ZSMCSNAP) C:\WINDOWS\ZSSnp211.exe
() C:\WINDOWS\Domino.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Facebook) C:\Users\Špelec\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\System32\Magnify.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Malwarebytes) C:\Users\Špelec\Desktop\adwcleaner_7.0.4.0.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ZSSnp211] => C:\WINDOWS\ZSSnp211.exe [57344 2007-04-06] (ZSMCSNAP)
HKLM\...\Run: [Domino] => C:\WINDOWS\Domino.exe [49152 2006-08-18] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-11] (AVAST Software)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2017-04-28] (Microsoft Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2906948890-3372974042-1230140830-1000\...\MountPoints2: {443bf757-65ae-11e6-89be-806e6f6e6963} - "D:\autorun.exe"
Startup: C:\Users\Špelec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-06-17]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Špelec\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume1autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8f1e7342-e256-4485-af39-0fdf97a43b5d}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-2906948890-3372974042-1230140830-1000 -> hxxp://seznam.cz/

FireFox:
========
FF DefaultProfile: kd9csxxj.default
FF ProfilePath: C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default [2017-10-21]
FF Extension: (Avast SafePrice) - C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default\Extensions\sp@avast.com.xpi [2017-07-03]
FF Extension: (Avast Online Security) - C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default\Extensions\wrc@avast.com.xpi [2017-09-04]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default [2017-11-07]
CHR Extension: (Prezentace) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-28]
CHR Extension: (Dokumenty) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-28]
CHR Extension: (Disk Google) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-19]
CHR Extension: (YouTube) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-19]
CHR Extension: (Avast SafePrice) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-11-07]
CHR Extension: (Tabulky) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-07]
CHR Extension: (Filmy Google Play) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdijeikdkaembjbdobgfkoidjkpbmlkd [2016-08-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-07]
CHR Extension: (Gmail) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-19]
CHR Extension: (Chrome Media Router) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-07]
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-10-28]
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-28]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5828816 2017-10-11] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-11] (AVAST Software)
S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\W32X86\3\PrintConfig.dll [2717184 2017-03-28] (Microsoft Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2017-08-08] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [255624 2017-10-11] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [157416 2017-10-11] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [276736 2017-10-11] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [50384 2017-10-11] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [42856 2017-10-11] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [124952 2017-10-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [99560 2017-10-11] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [70864 2017-10-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [783648 2017-11-07] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [499560 2017-10-11] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [149824 2017-10-11] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [297840 2017-10-11] (AVAST Software)
S3 BthMtpEnum; C:\WINDOWS\system32\DRIVERS\BthMtpEnum.sys [53248 2016-07-16] (Microsoft Corporation)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 LVUSBSta; C:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [22016 2005-01-19] (Labtec Inc.)
S3 NdisImPlatformMp; C:\WINDOWS\System32\drivers\NdisImPlatform.sys [109568 2016-07-16] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2016-07-16] (Intel Corporation)
S3 PID_0928; C:\WINDOWS\system32\DRIVERS\LV561AV.SYS [211712 2005-01-19] (Labtec Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [16384 2016-07-16] (Microsoft Corporation)
S3 vvftav211; C:\WINDOWS\system32\drivers\vvftav211.sys [480128 2007-12-10] (Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
S3 ZSMC30x; C:\WINDOWS\System32\Drivers\ZS211.sys [1472000 2007-12-13] (ZSMC.Corporation)
S3 MBAMProtection; \??\C:\WINDOWS\system32\drivers\mbam.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-07 22:27 - 2017-11-07 23:55 - 000000000 ____D C:\AdwCleaner
2017-11-07 22:27 - 2017-11-07 22:27 - 008261584 _____ (Malwarebytes) C:\Users\Špelec\Desktop\adwcleaner_7.0.4.0.exe
2017-11-07 22:16 - 2017-11-07 22:16 - 000000000 ____D C:\rsit
2017-11-07 22:16 - 2017-11-07 22:16 - 000000000 ____D C:\Program Files\trend micro
2017-11-07 22:15 - 2017-11-07 22:16 - 001107968 _____ C:\Users\Špelec\Desktop\RSIT.exe
2017-11-07 22:00 - 2017-11-07 22:01 - 000025216 _____ C:\Users\Špelec\Desktop\Addition.txt
2017-11-07 21:57 - 2017-11-07 23:58 - 000011288 _____ C:\Users\Špelec\Desktop\FRST.txt
2017-11-07 21:51 - 2017-11-07 21:51 - 000112640 _____ (forum.viry.cz) C:\Users\Špelec\Downloads\FRSTLauncher.exe
2017-11-07 21:39 - 2017-11-07 23:57 - 000000000 ____D C:\FRST
2017-11-07 21:38 - 2017-11-07 21:39 - 001799680 _____ (Farbar) C:\Users\Špelec\Desktop\FRST.exe
2017-11-07 21:24 - 2017-11-07 21:24 - 000000000 ____D C:\Program Files\DIFX
2017-11-07 21:21 - 2017-11-07 21:22 - 038189742 _____ C:\Users\Špelec\Desktop\ASUS_WiFi_XP_32_z13215.zip
2017-11-07 21:21 - 2017-11-07 21:21 - 000132406 _____ C:\Users\Špelec\Desktop\3b7ce358bcfee7a581768514cc0ca78e (1).zip
2017-11-07 21:20 - 2017-11-07 21:20 - 000132406 _____ C:\Users\Špelec\Desktop\3b7ce358bcfee7a581768514cc0ca78e.zip
2017-11-03 21:46 - 2017-11-03 21:46 - 000007614 _____ C:\Users\Špelec\AppData\Local\Resmon.ResmonCfg
2017-11-03 21:12 - 2017-11-03 21:12 - 000001975 _____ C:\Users\Špelec\Desktop\Seznam.cz.lnk
2017-11-03 21:12 - 2017-11-03 21:12 - 000001955 _____ C:\Users\Špelec\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2017-11-03 20:21 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater (2).settings
2017-11-02 00:08 - 2017-11-02 00:22 - 000000000 ____D C:\Users\tonylee\AppData\LocalLow\Mozilla
2017-11-02 00:07 - 2017-11-02 00:08 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\Mozilla
2017-11-02 00:07 - 2017-11-02 00:07 - 000000000 ____D C:\Users\tonylee\AppData\Local\Mozilla
2017-10-25 17:50 - 2017-10-25 17:50 - 000000000 ____D C:\Users\Public\Documents\MDMDiagnostics
2017-10-22 00:55 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater (1).settings
2017-10-22 00:54 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater.settings
2017-10-21 22:44 - 2017-10-21 22:44 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\AVAST Software
2017-10-21 22:44 - 2017-10-21 22:44 - 000000000 ____D C:\Users\tonylee\AppData\Local\CEF
2017-10-21 22:37 - 2017-10-28 22:04 - 000000000 ____D C:\Users\tonylee\AppData\Local\ConnectedDevicesPlatform
2017-10-21 22:37 - 2017-10-25 01:37 - 000000000 ____D C:\Users\tonylee
2017-10-21 22:37 - 2017-10-21 23:03 - 000002282 _____ C:\Users\tonylee\Desktop\Google Chrome.lnk
2017-10-21 22:37 - 2017-10-21 22:39 - 000000000 ____D C:\Users\tonylee\AppData\Local\Packages
2017-10-21 22:37 - 2017-10-21 22:37 - 000000020 ___SH C:\Users\tonylee\ntuser.ini
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Šablony
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Soubory cookie
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Poslední
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Okolní tiskárny
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Okolní síť
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Nabídka Start
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Dokumenty
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Obrázky
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Hudba
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Filmy
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Data aplikací
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\AppData\Local\Data aplikací
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\Adobe
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\VirtualStore
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\TileDataLayer
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\Google
2017-10-21 02:33 - 2017-10-21 02:33 - 000000000 ____D C:\$WINDOWS.~BT
2017-10-21 02:32 - 2017-10-21 02:34 - 000000000 ___HD C:\$SysReset
2017-10-18 22:03 - 2017-10-18 22:03 - 000017408 _____ C:\WINDOWS\system32\rpcnetp.exe
2017-10-18 22:03 - 2017-10-18 22:03 - 000017408 _____ C:\WINDOWS\system32\rpcnetp.dll
2017-10-12 14:10 - 2017-10-12 14:10 - 000000000 _____ C:\WINDOWS\system32\MRT-KB890830.exe
2017-10-11 09:39 - 2017-09-18 04:04 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-10-11 09:39 - 2017-09-18 03:52 - 006672680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-10-11 09:39 - 2017-09-18 03:33 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-10-11 09:39 - 2017-09-18 03:32 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-10-11 09:39 - 2017-09-18 03:31 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-10-11 09:39 - 2017-09-18 03:29 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-10-11 09:39 - 2017-09-18 03:23 - 000857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-10-11 09:39 - 2017-09-18 03:23 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-10-11 09:39 - 2017-09-18 03:23 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 001323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 001137664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-11 09:39 - 2017-09-18 03:22 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-11 09:39 - 2017-09-18 03:22 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-11 09:39 - 2017-09-18 03:20 - 002641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-10-11 09:39 - 2017-09-18 03:18 - 007470592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-10-11 09:39 - 2017-09-18 03:15 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 001988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 001890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-10-11 09:39 - 2017-09-18 03:13 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-10-11 09:39 - 2017-09-18 03:13 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-10-11 09:39 - 2017-09-18 03:11 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-10-11 09:39 - 2017-09-14 23:52 - 001431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-10-11 09:39 - 2017-09-14 23:33 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-10-11 09:39 - 2017-09-14 23:25 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-10-11 09:39 - 2017-09-14 23:22 - 003520512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-10-11 09:39 - 2017-09-14 23:18 - 000846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-10-11 09:39 - 2017-09-14 23:15 - 003106304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-10-11 09:39 - 2017-09-14 23:15 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2017-10-11 09:39 - 2017-03-04 07:23 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2017-10-11 09:39 - 2017-03-04 07:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-10-11 09:39 - 2017-03-04 06:57 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-10-11 09:39 - 2016-08-06 05:06 - 000023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-10-11 09:38 - 2017-09-18 04:04 - 001725144 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-10-11 09:38 - 2017-09-18 04:01 - 000798512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2017-10-11 09:38 - 2017-09-18 03:55 - 005722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 020967840 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 004023560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001845512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001360464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 000981888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-10-11 09:38 - 2017-09-18 03:37 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-10-11 09:38 - 2017-09-18 03:27 - 004615168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-10-11 09:38 - 2017-09-18 03:27 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-10-11 09:38 - 2017-09-18 03:26 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-10-11 09:38 - 2017-09-18 03:26 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-10-11 09:38 - 2017-09-18 03:25 - 002333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-10-11 09:38 - 2017-09-18 03:23 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-10-11 09:38 - 2017-09-18 03:21 - 018364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-10-11 09:38 - 2017-09-18 03:20 - 019414016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-10-11 09:38 - 2017-09-18 03:15 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-10-11 09:38 - 2017-09-18 03:14 - 003663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-10-11 09:38 - 2017-09-18 03:14 - 001997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-10-11 09:38 - 2017-09-14 23:49 - 001202936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-10-11 09:38 - 2017-09-14 23:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-11 09:38 - 2017-09-14 23:27 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-10-11 09:38 - 2017-09-14 23:18 - 001104896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-10-11 09:37 - 2017-09-18 04:05 - 000497424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-11 09:37 - 2017-09-18 04:05 - 000102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-10-11 09:37 - 2017-09-18 04:04 - 005994848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-10-11 09:37 - 2017-09-18 04:04 - 001953632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-10-11 09:37 - 2017-09-18 04:01 - 000133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-10-11 09:37 - 2017-09-18 03:54 - 000355168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-10-11 09:37 - 2017-09-18 03:54 - 000186208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-10-11 09:37 - 2017-09-18 03:48 - 000043952 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-10-11 09:37 - 2017-09-18 03:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmojiDS.dll
2017-10-11 09:37 - 2017-09-18 03:33 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransliterationRanker.dll
2017-10-11 09:37 - 2017-09-18 03:33 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpninputrouter.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000138752 _____ C:\WINDOWS\system32\IHDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StaticDictDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuleBasedDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-11 09:37 - 2017-09-18 03:31 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpndecoder.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VocabRoamingHandler.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxranker.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtCangjieDS.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsPinyinRanker.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxinputrouter.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpnranker.dll
2017-10-11 09:37 - 2017-09-18 03:29 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-11 09:37 - 2017-09-18 03:29 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtfDecoder.dll
2017-10-11 09:37 - 2017-09-18 03:27 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtQuickDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxAPDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimeChsPinyinMainDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxHAPDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtHkStrokeDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-10-11 09:37 - 2017-09-18 03:25 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsStrokeDS.dll
2017-10-11 09:37 - 2017-09-18 03:24 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2017-10-11 09:37 - 2017-09-18 03:23 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-10-11 09:37 - 2017-09-18 03:22 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-10-11 09:37 - 2017-09-18 03:20 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-10-11 09:37 - 2017-09-18 03:18 - 012204032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 002649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\trie.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFFuzzyDS.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFSpellcheckDS.dll
2017-10-11 09:37 - 2017-09-14 23:18 - 002682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-10-11 09:37 - 2017-09-14 23:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-10-11 09:37 - 2017-03-04 07:23 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-10-11 09:37 - 2017-03-04 07:16 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 001336160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 000218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 000113504 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-10-11 09:36 - 2017-09-18 04:01 - 000145760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2017-10-11 09:36 - 2017-09-18 03:59 - 000341344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-10-11 09:36 - 2017-09-18 03:54 - 000523792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-10-11 09:36 - 2017-09-18 03:52 - 001384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-10-11 09:36 - 2017-09-18 03:51 - 000198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-10-11 09:36 - 2017-09-18 03:51 - 000178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-11 09:36 - 2017-09-18 03:50 - 001409024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-10-11 09:36 - 2017-09-18 03:50 - 001344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-10-11 09:36 - 2017-09-18 03:49 - 001260784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-11 09:36 - 2017-09-18 03:33 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-11 09:36 - 2017-09-18 03:31 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-10-11 09:36 - 2017-09-18 03:30 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-11 09:36 - 2017-09-18 03:30 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-10-11 09:36 - 2017-09-18 03:29 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-10-11 09:36 - 2017-09-18 03:29 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-10-11 09:36 - 2017-09-18 03:28 - 000406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-10-11 09:36 - 2017-09-18 03:28 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-10-11 09:36 - 2017-09-18 03:27 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2017-10-11 09:36 - 2017-09-18 03:25 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-10-11 09:36 - 2017-09-18 03:22 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-11 09:36 - 2017-09-18 03:21 - 001584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-10-11 09:36 - 2017-09-18 03:20 - 003774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-10-11 09:36 - 2017-09-18 03:19 - 002750976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-10-11 09:36 - 2017-09-18 03:19 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-10-11 09:36 - 2017-09-18 03:19 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2017-10-11 09:36 - 2017-09-18 03:18 - 000734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 006474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-10-11 09:36 - 2017-09-18 03:14 - 002997760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-10-11 09:36 - 2017-09-18 03:14 - 002740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 002483712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001599488 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001116672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-11 09:36 - 2017-09-18 03:13 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-10-11 09:36 - 2017-09-18 03:13 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-10-11 09:36 - 2017-09-18 03:13 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-10-11 09:36 - 2017-09-14 23:59 - 000096064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-10-11 09:36 - 2017-09-14 23:52 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-10-11 09:36 - 2017-09-14 23:51 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-10-11 09:36 - 2017-09-14 23:31 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollUI.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 007626240 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-10-11 09:36 - 2017-09-14 23:27 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-10-11 09:36 - 2017-09-14 23:26 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2017-10-11 09:36 - 2017-09-14 23:17 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-10-11 09:36 - 2017-09-14 23:14 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2017-10-11 09:36 - 2017-09-14 03:04 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswstr10.dll
2017-10-11 09:36 - 2017-09-14 03:04 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-10-11 09:36 - 2017-09-14 03:04 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjint40.dll
2017-10-11 09:36 - 2017-03-04 07:24 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-10-11 09:36 - 2017-03-04 07:22 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-10-11 09:36 - 2017-03-04 07:00 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-10-11 03:02 - 2017-10-11 03:02 - 000304816 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-10-11 03:00 - 2017-10-11 03:00 - 005490688 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-07 23:49 - 2016-08-19 08:14 - 000000000 ____D C:\Program Files\Opera
2017-11-07 23:36 - 2017-01-14 06:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-07 23:35 - 2016-07-16 03:22 - 002097152 _____ C:\WINDOWS\system32\config\BBI
2017-11-07 21:24 - 2016-07-16 09:28 - 000000000 ____D C:\WINDOWS\INF
2017-11-07 21:14 - 2016-08-24 16:36 - 000783648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2017-11-07 20:44 - 2017-07-03 18:14 - 000001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2017-11-07 20:42 - 2016-08-19 07:53 - 004350710 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-07 20:42 - 2016-07-16 18:01 - 001948184 _____ C:\WINDOWS\system32\perfh005.dat
2017-11-07 20:42 - 2016-07-16 18:01 - 000527844 _____ C:\WINDOWS\system32\perfc005.dat
2017-11-07 20:25 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-11-07 19:51 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-07 04:58 - 2017-01-14 05:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-06 23:55 - 2017-04-06 13:48 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-11-06 23:55 - 2017-04-06 13:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-11-06 23:52 - 2017-09-09 15:11 - 000000000 ____D C:\Users\antoninwojcik1\AppData\LocalLow\Mozilla
2017-11-03 21:35 - 2016-07-16 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-03 21:12 - 2016-08-27 07:16 - 000000000 ____D C:\Users\Špelec\AppData\Roaming\Seznam Browser
2017-11-03 21:12 - 2016-08-27 07:16 - 000000000 ____D C:\Users\Špelec\AppData\Local\Seznam.cz
2017-10-29 22:31 - 2017-07-24 19:57 - 000000000 ____D C:\Program Files\UNP
2017-10-29 22:29 - 2016-07-16 09:26 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-10-28 19:42 - 2016-08-19 08:02 - 000000176 _____ C:\WINDOWS\win.ini
2017-10-28 19:09 - 2016-09-05 18:55 - 000000375 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2017-10-28 11:08 - 2017-01-14 05:47 - 000000000 ____D C:\Users\Špelec
2017-10-21 23:54 - 2017-09-09 16:35 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-21 23:54 - 2017-09-09 16:35 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-21 22:37 - 2016-02-13 14:21 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-20 19:38 - 2017-02-06 22:19 - 000000000 ____D C:\Users\Špelec\Desktop\DCIM
2017-10-18 23:35 - 2017-09-09 16:28 - 066347240 _____ (Malwarebytes ) C:\Users\antoninwojcik1\Downloads\mb3-setup-consumer-3.2.2.2018(1).exe
2017-10-18 01:58 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\rescache
2017-10-16 17:19 - 2017-01-14 05:38 - 000000000 ___DC C:\WINDOWS\Panther
2017-10-16 17:16 - 2016-07-16 03:22 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-10-16 17:16 - 2016-01-16 17:16 - 000008192 __RSH C:\BOOTSECT.BAK
2017-10-16 17:06 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\Registration
2017-10-16 17:03 - 2017-01-14 06:09 - 000015903 _____ C:\WINDOWS\diagwrn.xml
2017-10-16 17:03 - 2017-01-14 06:09 - 000015833 _____ C:\WINDOWS\diagerr.xml
2017-10-13 23:12 - 2016-07-16 09:29 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-13 14:07 - 2017-01-14 05:39 - 000193128 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-13 14:03 - 2016-07-16 09:29 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-10-13 14:03 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-10-13 13:27 - 2017-09-29 20:00 - 000000000 ____D C:\Program Files\rempl
2017-10-12 14:14 - 2016-08-19 18:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-12 14:09 - 2016-08-19 18:49 - 124059592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-10-12 13:59 - 2016-09-28 20:41 - 000068072 _____ (Absolute Software Corp.) C:\WINDOWS\system32\agremove.exe
2017-10-11 03:03 - 2017-06-06 14:37 - 000055160 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000499560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000297840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000149824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000124952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000099560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000070864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000042856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-10-11 03:02 - 2016-08-24 16:30 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-11 03:01 - 2017-03-15 14:42 - 000276736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000255624 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000157416 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000050384 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-10-11 03:00 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\Macromed

==================== Files in the root of some directories =======

2017-11-03 21:46 - 2017-11-03 21:46 - 000007614 _____ () C:\Users\Špelec\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
2017-07-27 00:33 - 2017-07-27 00:34 - 018309328 _____ (Microsoft Corporation) C:\Users\Špelec\AppData\Local\Temp\MediaCreationTool.exe
2016-08-16 08:48 - 2016-08-16 08:48 - 000488960 _____ () C:\Users\Špelec\AppData\Local\Temp\sqlite3.exe
2017-05-12 04:04 - 2017-05-12 08:14 - 000000000 _____ () C:\Users\Špelec\AppData\Local\Temp\{57800645-8DB2-4E5F-B580-A949E6F2D3F7}-58.0.3029.110_57.0.2987.133_chrome_updater.exe

Some zero byte size files/folders:
==========================
C:\Windows\System32\BackgroundMediaPolicy.dll
C:\Windows\System32\MRT-KB890830.exe
C:\Windows\System32\msxml6r.dll
C:\Windows\System32\wpnprv.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-11-03 20:15

==================== End of FRST.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2906948890-3372974042-1230140830-1000\...\MountPoints2: {443bf757-65ae-11e6-89be-806e6f6e6963} - "D:\autorun.exe"
C:\Users\Špelec\AppData\Local\Temp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět