Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola viru, malweru

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
maruse1994
Návštěvník
Návštěvník
Příspěvky: 77
Registrován: 04 srp 2012 23:30
Kontaktovat uživatele:

Kontrola viru, malweru

#1 Příspěvek od maruse1994 »

Dobrý den,
zdá se mi, že mám poslední dobou zabrždený PC. Prosím o prohlédnutí ohledně virů, malweru apod. hovadin. A take nechápu, proč tam mám tolik uživatelů... ? Mája, Guest, default atd... Zkoušela jsem dát bod obnovení, ale nechtělo mi to pustit s chybovou hláškou.
Přikladám FRST a Addition podle návodu.
Předem děkuji za pomoc.
Mája

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11.11.2018
Ran by Mája (administrator) on ASUS (11-11-2018 23:44:53)
Running from C:\Users\Mája\Desktop
Loaded Profiles: Mája (Available Profiles: defaultuser0 & Mája)
Platform: Windows 10 Enterprise 2016 LTSB Version 1607 14393.2551 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Bandisoft.com) C:\Users\Mája\Documents\Portable\HONEYVIEW-PORTABLE\Honeyview32.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2018-08-23] (Microsoft Corporation)
HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE*
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [57954808 2018-02-05] (Discord Inc.)
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\Run: [Discord] => C:\Users\Mája\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\Run: [CCleaner Monitoring] => C:\Users\Mája\Documents\Portable\CCleaner\CCleaner64.exe [10024624 2017-11-08] (Piriform Ltd)
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\MountPoints2: {2acb91ce-38d2-11e8-a80f-f4f26d23f3e7} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\MountPoints2: {3752d549-5c55-11e8-a814-f4f26d23f3e7} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\MountPoints2: {3ef651cf-d822-11e7-a7e4-0018f3fea91b} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\MountPoints2: {59e90c6a-30c6-11e8-a80f-f4f26d23f3e7} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\MountPoints2: {a0aaebc3-4ccf-11e8-a810-f4f26d23f3e7} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [CtxfiReg] => CTXFIREG.exe /FAIL1

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{5987af7f-2d1d-477d-a5f4-a7c53ad07f3a}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{ad1368ca-78f2-4380-b49a-e37a3c127a12}: [DhcpNameServer] 192.168.8.1

Internet Explorer:
==================
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: jaaeve47.default
FF ProfilePath: C:\Users\Mája\AppData\Roaming\Mozilla\Firefox\Profiles\jaaeve47.default [2018-11-11]
FF Homepage: Mozilla\Firefox\Profiles\jaaeve47.default -> hxxps://www.seznam.cz/
FF Extension: (YouTube MP4 Downloader) - C:\Users\Mája\AppData\Roaming\Mozilla\Firefox\Profiles\jaaeve47.default\Extensions\@youtube-mp4-downloader.xpi [2018-09-12]
FF Extension: (uBlock Origin) - C:\Users\Mája\AppData\Roaming\Mozilla\Firefox\Profiles\jaaeve47.default\Extensions\uBlock0@raymondhill.net.xpi [2018-10-18]
FF Extension: (Zoom Page WE) - C:\Users\Mája\AppData\Roaming\Mozilla\Firefox\Profiles\jaaeve47.default\Extensions\zoompage-we@DW-dev.xpi [2018-08-19]
FF Extension: (Tap Translate) - C:\Users\Mája\AppData\Roaming\Mozilla\Firefox\Profiles\jaaeve47.default\Extensions\{8a802b5a-eeab-11e2-a41d-b0096288709b}.xpi [2018-09-29]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7252656 2018-09-03] ()
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2018-03-18] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-04-29] (EasyAntiCheat Ltd)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889856 2018-04-28] (Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\NisSrv.exe [3917016 2018-10-23] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe [114208 2018-10-23] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46184 2018-10-23] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [328696 2018-10-23] (Microsoft Corporation)
S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (MBB)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [60408 2018-10-23] (Microsoft Corporation)
R3 yukonw8; C:\Windows\System32\drivers\yk63x64.sys [288768 2016-07-16] (Marvell)
S3 ALSysIO; \??\C:\Users\MJA~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-11 23:44 - 2018-11-11 23:45 - 000008252 _____ C:\Users\Mája\Desktop\FRST.txt
2018-11-11 23:42 - 2018-11-11 23:44 - 000000000 ____D C:\FRST
2018-11-11 23:39 - 2018-11-11 23:42 - 002415616 _____ (Farbar) C:\Users\Mája\Desktop\FRST64.exe
2018-11-11 23:38 - 2018-11-11 23:41 - 000000000 ____D C:\Users\Mája\Desktop\forum
2018-11-11 22:21 - 2018-11-11 22:21 - 000000552 _____ C:\Users\Mája\Desktop\youtube.txt
2018-11-11 07:42 - 2018-11-11 07:42 - 000000000 ____D C:\Users\Mája\Documents\My Games
2018-11-10 20:37 - 2018-11-10 20:37 - 000000000 ____D C:\Users\Mája\Documents\Activision
2018-11-10 19:49 - 2018-11-11 22:31 - 000001363 _____ C:\Users\Mája\Desktop\CCleaner.lnk
2018-11-10 19:28 - 2018-11-10 20:27 - 000002252 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-11-10 18:53 - 2018-11-11 23:30 - 000000000 ____D C:\Users\Mája\Documents\Zaloha registru
2018-11-10 18:12 - 2018-11-10 18:12 - 000000222 _____ C:\Users\Mája\Desktop\PROTOTYPE 2.url
2018-11-10 18:08 - 2018-11-10 18:08 - 000000222 _____ C:\Users\Mája\Desktop\Path of Exile.url
2018-10-27 17:23 - 2018-10-27 17:23 - 019736772 _____ C:\Users\Mája\Desktop\Tony Anderson - Immanuel.mp4
2018-10-25 15:03 - 2018-10-25 15:03 - 000000015 _____ C:\Users\Mája\Desktop\Legacies.txt
2018-10-23 15:59 - 2018-11-10 18:29 - 000000000 ____D C:\Users\Mája\AppData\Local\Warframe
2018-10-23 10:44 - 2018-10-23 10:44 - 000000222 _____ C:\Users\Mája\Desktop\Warframe.url
2018-10-23 10:17 - 2018-10-23 10:17 - 000000222 _____ C:\Users\Mája\Desktop\Dead Frontier 2.url
2018-10-23 01:10 - 2018-10-23 01:10 - 000000000 ____D C:\Users\Mája\AppData\LocalLow\Creaky Corpse Ltd
2018-10-22 23:55 - 2018-10-22 23:55 - 000000000 ____D C:\Users\Mája\Documents\mp3recorder
2018-10-22 23:54 - 2018-10-22 23:54 - 000000000 ____D C:\ProgramData\cokrecorder
2018-10-22 23:53 - 2018-10-22 23:53 - 000001248 _____ C:\Users\Mája\Desktop\Free PC Audio Recorder.lnk
2018-10-22 23:53 - 2018-10-22 23:53 - 000000000 ____D C:\Program Files (x86)\Free PC Audio Recorder
2018-10-22 23:52 - 2018-10-22 23:52 - 000000000 ____D C:\Users\Mája\Downloads\Nová složka
2018-10-22 18:01 - 2018-10-22 18:01 - 014953879 _____ C:\Users\Mája\Desktop\linkin park.mp4
2018-10-14 10:50 - 2018-10-05 00:17 - 000263568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2018-10-14 10:50 - 2018-10-05 00:16 - 005726824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2018-10-14 10:50 - 2018-10-05 00:16 - 001981696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-10-14 10:50 - 2018-10-05 00:14 - 020954536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-10-14 10:50 - 2018-10-05 00:13 - 001412544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2018-10-14 10:50 - 2018-10-05 00:02 - 000313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2018-10-14 10:50 - 2018-10-05 00:00 - 007627264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2018-10-14 10:50 - 2018-10-04 23:59 - 000034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2018-10-14 10:50 - 2018-10-04 23:58 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollCtrl.exe
2018-10-14 10:50 - 2018-10-04 23:56 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2018-10-14 10:50 - 2018-10-04 23:56 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2018-10-14 10:50 - 2018-10-04 23:54 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2018-10-14 10:50 - 2018-10-04 23:50 - 000417280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2018-10-14 10:50 - 2018-10-04 23:50 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2018-10-14 10:50 - 2018-10-04 23:49 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2018-10-14 10:50 - 2018-10-04 23:47 - 007470592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2018-10-14 10:50 - 2018-10-04 23:47 - 000596480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-10-14 10:50 - 2018-10-04 23:46 - 002682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2018-10-14 10:50 - 2018-10-04 23:45 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2018-10-14 10:50 - 2018-10-04 23:45 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2018-10-14 10:50 - 2018-10-04 23:44 - 002649600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2018-10-14 10:50 - 2018-10-04 23:44 - 001572864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-10-14 10:50 - 2018-10-04 23:44 - 000695808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2018-10-14 10:50 - 2018-10-04 23:43 - 002999296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2018-10-14 10:50 - 2018-10-04 23:43 - 002813952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2018-10-14 10:50 - 2018-10-04 23:42 - 000783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2018-10-14 10:50 - 2018-09-18 02:35 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2018-10-14 10:50 - 2018-08-30 22:18 - 000576424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2018-10-14 10:50 - 2018-08-30 22:00 - 000218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2018-10-14 10:50 - 2018-08-30 21:43 - 002050936 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2018-10-14 10:50 - 2018-08-30 21:42 - 000482464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-10-14 10:50 - 2018-08-30 21:42 - 000255240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2018-10-14 10:50 - 2018-08-30 21:41 - 001505992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2018-10-14 10:50 - 2018-08-30 21:41 - 001432920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2018-10-14 10:50 - 2018-08-30 21:40 - 000975816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2018-10-14 10:50 - 2018-08-30 21:40 - 000861096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2018-10-14 10:50 - 2018-08-30 21:39 - 002170728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2018-10-14 10:50 - 2018-08-30 21:39 - 000847976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2018-10-14 10:50 - 2018-08-30 21:38 - 006679480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-10-14 10:50 - 2018-08-30 21:38 - 004312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2018-10-14 10:50 - 2018-08-30 21:38 - 004024136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2018-10-14 10:50 - 2018-08-30 21:38 - 000641560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2018-10-14 10:50 - 2018-08-30 21:38 - 000121440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2018-10-14 10:50 - 2018-08-30 21:37 - 000238080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2018-10-14 10:50 - 2018-08-30 21:37 - 000178088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2018-10-14 10:50 - 2018-08-30 21:36 - 000467968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2018-10-14 10:50 - 2018-08-30 21:35 - 004596736 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2018-10-14 10:50 - 2018-08-30 21:34 - 000963072 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2018-10-14 10:50 - 2018-08-30 21:34 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2018-10-14 10:50 - 2018-08-30 21:34 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2018-10-14 10:50 - 2018-08-30 21:33 - 000561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2018-10-14 10:50 - 2018-08-30 21:33 - 000245760 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2018-10-14 10:50 - 2018-08-30 21:32 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2018-10-14 10:50 - 2018-08-30 21:31 - 005690368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2018-10-14 10:50 - 2018-08-30 21:31 - 001424896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2018-10-14 10:50 - 2018-08-30 21:30 - 001369088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2018-10-14 10:50 - 2018-08-30 21:30 - 001266176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2018-10-14 10:50 - 2018-08-30 21:29 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2018-10-14 10:50 - 2018-08-30 21:27 - 000095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2018-10-14 10:50 - 2018-08-30 21:27 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.proxy.dll
2018-10-14 10:50 - 2018-08-30 21:27 - 000038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTypeHelperUtil.dll
2018-10-14 10:50 - 2018-08-30 21:27 - 000037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataLanguageUtil.dll
2018-10-14 10:50 - 2018-08-30 21:26 - 004615168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2018-10-14 10:50 - 2018-08-30 21:26 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\POSyncServices.dll
2018-10-14 10:50 - 2018-08-30 21:26 - 000039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInputUap.dll
2018-10-14 10:50 - 2018-08-30 21:26 - 000019968 _____ C:\Windows\SysWOW64\GamePanelExternalHook.dll
2018-10-14 10:50 - 2018-08-30 21:25 - 000229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2018-10-14 10:50 - 2018-08-30 21:25 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2018-10-14 10:50 - 2018-08-30 21:25 - 000151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-10-14 10:50 - 2018-08-30 21:25 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2018-10-14 10:50 - 2018-08-30 21:25 - 000055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2018-10-14 10:50 - 2018-08-30 21:25 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactActivation.dll
2018-10-14 10:50 - 2018-08-30 21:24 - 000175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2018-10-14 10:50 - 2018-08-30 21:24 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2018-10-14 10:50 - 2018-08-30 21:24 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRHelper.dll
2018-10-14 10:50 - 2018-08-30 21:24 - 000138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2018-10-14 10:50 - 2018-08-30 21:23 - 000231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000169472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppCapture.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.UserDeviceAssociation.dll
2018-10-14 10:50 - 2018-08-30 21:23 - 000055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataPlatformHelperUtil.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000528896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StateRepository.Core.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000505856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2018-10-14 10:50 - 2018-08-30 21:22 - 000392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2018-10-14 10:50 - 2018-08-30 21:22 - 000171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentActivation.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2018-10-14 10:50 - 2018-08-30 21:22 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2018-10-14 10:50 - 2018-08-30 21:21 - 000670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2018-10-14 10:50 - 2018-08-30 21:21 - 000557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2018-10-14 10:50 - 2018-08-30 21:21 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2018-10-14 10:50 - 2018-08-30 21:21 - 000288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2018-10-14 10:50 - 2018-08-30 21:21 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 003307520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 001326592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000389120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2018-10-14 10:50 - 2018-08-30 21:20 - 000218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2018-10-14 10:50 - 2018-08-30 21:20 - 000114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe
2018-10-14 10:50 - 2018-08-30 21:19 - 000355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2018-10-14 10:50 - 2018-08-30 21:19 - 000343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2018-10-14 10:50 - 2018-08-30 21:19 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetailsUpdate.dll
2018-10-14 10:50 - 2018-08-30 21:18 - 002750976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2018-10-14 10:50 - 2018-08-30 21:18 - 001255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2018-10-14 10:50 - 2018-08-30 21:18 - 000795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2018-10-14 10:50 - 2018-08-30 21:18 - 000713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2018-10-14 10:50 - 2018-08-30 21:18 - 000572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2018-10-14 10:50 - 2018-08-30 21:18 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dialclient.dll
2018-10-14 10:50 - 2018-08-30 21:17 - 000895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2018-10-14 10:50 - 2018-08-30 21:17 - 000220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll
2018-10-14 10:50 - 2018-08-30 21:17 - 000090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 001221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 000325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 000298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 000198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 000134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2018-10-14 10:50 - 2018-08-30 21:16 - 000085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2018-10-14 10:50 - 2018-08-30 21:15 - 000821760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2018-10-14 10:50 - 2018-08-30 21:15 - 000431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2018-10-14 10:50 - 2018-08-30 21:15 - 000415232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2018-10-14 10:50 - 2018-08-30 21:15 - 000400384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2018-10-14 10:50 - 2018-08-30 21:15 - 000357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2018-10-14 10:50 - 2018-08-30 21:15 - 000103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2018-10-14 10:50 - 2018-08-30 21:14 - 001247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2018-10-14 10:50 - 2018-08-30 21:14 - 000819200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2018-10-14 10:50 - 2018-08-30 21:14 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2018-10-14 10:50 - 2018-08-30 21:14 - 000466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2018-10-14 10:50 - 2018-08-30 21:14 - 000463360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2018-10-14 10:50 - 2018-08-30 21:14 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2018-10-14 10:50 - 2018-08-30 21:14 - 000262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 005398016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 000846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 000788480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 000754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 000592384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2018-10-14 10:50 - 2018-08-30 21:13 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 000368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 000314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2018-10-14 10:50 - 2018-08-30 21:13 - 000238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2018-10-14 10:50 - 2018-08-30 21:12 - 006474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2018-10-14 10:50 - 2018-08-30 21:12 - 005062144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2018-10-14 10:50 - 2018-08-30 21:12 - 003521536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2018-10-14 10:50 - 2018-08-30 21:12 - 001228288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2018-10-14 10:50 - 2018-08-30 21:12 - 000288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2018-10-14 10:50 - 2018-08-30 21:11 - 003369984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2018-10-14 10:50 - 2018-08-30 21:11 - 002748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2018-10-14 10:50 - 2018-08-30 21:11 - 001574912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2018-10-14 10:50 - 2018-08-30 21:11 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2018-10-14 10:50 - 2018-08-30 21:11 - 000653312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2018-10-14 10:50 - 2018-08-30 21:11 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.InkControls.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 003736064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 001886720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 001232384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 001013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 001004544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 000901632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 000751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 000654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 000598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 000566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2018-10-14 10:50 - 2018-08-30 21:10 - 000443904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2018-10-14 10:50 - 2018-08-30 21:09 - 000709632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2018-10-14 10:50 - 2018-08-30 21:09 - 000621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2018-10-14 10:50 - 2018-08-30 21:09 - 000199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2018-10-14 10:50 - 2018-08-30 21:08 - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-10-14 10:50 - 2018-08-30 20:51 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2018-10-14 10:50 - 2018-08-07 05:10 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll
2018-10-14 10:49 - 2018-10-05 00:31 - 007787456 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-10-14 10:49 - 2018-10-05 00:29 - 000409848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2018-10-14 10:49 - 2018-10-05 00:28 - 007217176 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2018-10-14 10:49 - 2018-10-05 00:28 - 002182392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-10-14 10:49 - 2018-10-05 00:28 - 000658368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2018-10-14 10:49 - 2018-10-05 00:28 - 000402168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2018-10-14 10:49 - 2018-10-05 00:28 - 000328104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2018-10-14 10:49 - 2018-10-05 00:27 - 000447224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-10-14 10:49 - 2018-10-05 00:26 - 022208048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-10-14 10:49 - 2018-10-05 00:25 - 001600728 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2018-10-14 10:49 - 2018-10-05 00:25 - 001568232 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2018-10-14 10:49 - 2018-10-05 00:25 - 000752624 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2018-10-14 10:49 - 2018-10-05 00:25 - 000241600 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2018-10-14 10:49 - 2018-10-05 00:24 - 002534648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-10-14 10:49 - 2018-10-05 00:24 - 000292768 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2018-10-14 10:49 - 2018-10-05 00:12 - 000254560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2018-10-14 10:49 - 2018-10-05 00:01 - 022577152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2018-10-14 10:49 - 2018-10-04 23:55 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll
2018-10-14 10:49 - 2018-10-04 23:54 - 000823808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2018-10-14 10:49 - 2018-10-04 23:53 - 018371584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2018-10-14 10:49 - 2018-10-04 23:51 - 019419648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-10-14 10:49 - 2018-10-04 23:51 - 012358144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-10-14 10:49 - 2018-10-04 23:51 - 001640448 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2018-10-14 10:49 - 2018-10-04 23:50 - 001605120 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2018-10-14 10:49 - 2018-10-04 23:50 - 000193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unregmp2.exe
2018-10-14 10:49 - 2018-10-04 23:48 - 000493056 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2018-10-14 10:49 - 2018-10-04 23:48 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2018-10-14 10:49 - 2018-10-04 23:47 - 023682560 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-10-14 10:49 - 2018-10-04 23:47 - 000199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\indexeddbserver.dll
2018-10-14 10:49 - 2018-10-04 23:45 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\unregmp2.exe
2018-10-14 10:49 - 2018-10-04 23:45 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2018-10-14 10:49 - 2018-10-04 23:44 - 013448192 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-10-14 10:49 - 2018-10-04 23:44 - 006075392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2018-10-14 10:49 - 2018-10-04 23:44 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2018-10-14 10:49 - 2018-10-04 23:44 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
2018-10-14 10:49 - 2018-10-04 23:43 - 008078336 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2018-10-14 10:49 - 2018-10-04 23:43 - 001081856 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2018-10-14 10:49 - 2018-10-04 23:43 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2018-10-14 10:49 - 2018-10-04 23:43 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-10-14 10:49 - 2018-10-04 23:42 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\indexeddbserver.dll
2018-10-14 10:49 - 2018-10-04 23:42 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2018-10-14 10:49 - 2018-10-04 23:41 - 008136704 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2018-10-14 10:49 - 2018-10-04 23:40 - 002800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2018-10-14 10:49 - 2018-10-04 23:39 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2018-10-14 10:49 - 2018-10-04 23:38 - 001985024 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2018-10-14 10:49 - 2018-10-04 23:38 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2018-10-14 10:49 - 2018-10-04 23:37 - 001827328 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-10-14 10:49 - 2018-10-04 23:37 - 000999424 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2018-10-14 10:49 - 2018-08-30 22:28 - 000245664 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2018-10-14 10:49 - 2018-08-30 22:26 - 001357448 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2018-10-14 10:49 - 2018-08-30 22:26 - 000603560 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2018-10-14 10:49 - 2018-08-30 22:26 - 000101288 _____ (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll
2018-10-14 10:49 - 2018-08-30 22:25 - 005623512 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2018-10-14 10:49 - 2018-08-30 22:21 - 002681712 _____ C:\Windows\system32\CoreUIComponents.dll
2018-10-14 10:49 - 2018-08-30 22:20 - 001000688 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2018-10-14 10:49 - 2018-08-30 22:20 - 000359400 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2018-10-14 10:49 - 2018-08-30 22:18 - 001861976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2018-10-14 10:49 - 2018-08-30 22:18 - 001739136 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2018-10-14 10:49 - 2018-08-30 22:18 - 001293224 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2018-10-14 10:49 - 2018-08-30 22:18 - 001157080 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2018-10-14 10:49 - 2018-08-30 22:18 - 000431528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2018-10-14 10:49 - 2018-08-30 22:18 - 000221600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-10-14 10:49 - 2018-08-30 22:17 - 008176664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2018-10-14 10:49 - 2018-08-30 22:17 - 004262544 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2018-10-14 10:49 - 2018-08-30 22:17 - 000755760 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2018-10-14 10:49 - 2018-08-30 22:17 - 000525136 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2018-10-14 10:49 - 2018-08-30 22:17 - 000246240 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2018-10-14 10:49 - 2018-08-30 22:17 - 000108440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WindowsTrustedRT.sys
2018-10-14 10:49 - 2018-08-30 22:17 - 000093936 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2018-10-14 10:49 - 2018-08-30 22:15 - 001098152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2018-10-14 10:49 - 2018-08-30 21:51 - 000712192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-10-14 10:49 - 2018-08-30 21:46 - 006288896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2018-10-14 10:49 - 2018-08-30 21:45 - 003778048 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2018-10-14 10:49 - 2018-08-30 21:44 - 001921024 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2018-10-14 10:49 - 2018-08-30 21:44 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2018-10-14 10:49 - 2018-08-30 21:44 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll
2018-10-14 10:49 - 2018-08-30 21:44 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filecrypt.sys
2018-10-14 10:49 - 2018-08-30 21:44 - 000072704 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetailsUpdate.dll
2018-10-14 10:49 - 2018-08-30 21:43 - 003291648 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2018-10-14 10:49 - 2018-08-30 21:43 - 001105408 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2018-10-14 10:49 - 2018-08-30 21:43 - 000883712 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2018-10-14 10:49 - 2018-08-30 21:43 - 000862208 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2018-10-14 10:49 - 2018-08-30 21:43 - 000734208 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2018-10-14 10:49 - 2018-08-30 21:43 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2018-10-14 10:49 - 2018-08-30 21:42 - 001908736 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2018-10-14 10:49 - 2018-08-30 21:42 - 001078272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2018-10-14 10:49 - 2018-08-30 21:42 - 000627200 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2018-10-14 10:49 - 2018-08-30 21:42 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2018-10-14 10:49 - 2018-08-30 21:42 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2018-10-14 10:49 - 2018-08-30 21:42 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2018-10-14 10:49 - 2018-08-30 21:41 - 001217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2018-10-14 10:49 - 2018-08-30 21:41 - 000374784 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2018-10-14 10:49 - 2018-08-30 21:41 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2018-10-14 10:49 - 2018-08-30 21:41 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2018-10-14 10:49 - 2018-08-30 21:41 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\dialserver.dll
2018-10-14 10:49 - 2018-08-30 21:41 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\SpaceAgent.exe
2018-10-14 10:49 - 2018-08-30 21:41 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2018-10-14 10:49 - 2018-08-30 21:39 - 000539136 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2018-10-14 10:49 - 2018-08-30 21:39 - 000467456 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2018-10-14 10:49 - 2018-08-30 21:39 - 000121856 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.proxy.dll
2018-10-14 10:49 - 2018-08-30 21:39 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2018-10-14 10:49 - 2018-08-30 21:39 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTypeHelperUtil.dll
2018-10-14 10:49 - 2018-08-30 21:39 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\UserDataLanguageUtil.dll
2018-10-14 10:49 - 2018-08-30 21:39 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-10-14 10:49 - 2018-08-30 21:38 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2018-10-14 10:49 - 2018-08-30 21:38 - 000065024 _____ (Microsoft Corporation) C:\Windows\system32\POSyncServices.dll
2018-10-14 10:49 - 2018-08-30 21:37 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2018-10-14 10:49 - 2018-08-30 21:37 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2018-10-14 10:49 - 2018-08-30 21:37 - 000263680 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll
2018-10-14 10:49 - 2018-08-30 21:37 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\Family.SyncEngine.dll
2018-10-14 10:49 - 2018-08-30 21:37 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\BcastDVRHelper.dll
2018-10-14 10:49 - 2018-08-30 21:37 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2018-10-14 10:49 - 2018-08-30 21:37 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll
2018-10-14 10:49 - 2018-08-30 21:37 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2018-10-14 10:49 - 2018-08-30 21:37 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2018-10-14 10:49 - 2018-08-30 21:37 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storqosflt.sys
2018-10-14 10:49 - 2018-08-30 21:37 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2018-10-14 10:49 - 2018-08-30 21:37 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2018-10-14 10:49 - 2018-08-30 21:37 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2018-10-14 10:49 - 2018-08-30 21:37 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\UserDataPlatformHelperUtil.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000196096 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\ContactActivation.dll
2018-10-14 10:49 - 2018-08-30 21:36 - 000021576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nsi.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000691712 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000505856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2018-10-14 10:49 - 2018-08-30 21:35 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2018-10-14 10:49 - 2018-08-30 21:35 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2018-10-14 10:49 - 2018-08-30 21:35 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000558080 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000538112 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000471040 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2018-10-14 10:49 - 2018-08-30 21:34 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2018-10-14 10:49 - 2018-08-30 21:34 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2018-10-14 10:49 - 2018-08-30 21:33 - 001009664 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2018-10-14 10:49 - 2018-08-30 21:33 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2018-10-14 10:49 - 2018-08-30 21:33 - 000672256 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2018-10-14 10:49 - 2018-08-30 21:33 - 000620544 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe
2018-10-14 10:49 - 2018-08-30 21:33 - 000527872 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2018-10-14 10:49 - 2018-08-30 21:33 - 000481792 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2018-10-14 10:49 - 2018-08-30 21:33 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2018-10-14 10:49 - 2018-08-30 21:33 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2018-10-14 10:49 - 2018-08-30 21:33 - 000320000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-10-14 10:49 - 2018-08-30 21:33 - 000252416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2018-10-14 10:49 - 2018-08-30 21:33 - 000172544 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2018-10-14 10:49 - 2018-08-30 21:32 - 005611008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2018-10-14 10:49 - 2018-08-30 21:32 - 003135488 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2018-10-14 10:49 - 2018-08-30 21:32 - 000896512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2018-10-14 10:49 - 2018-08-30 21:32 - 000779776 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2018-10-14 10:49 - 2018-08-30 21:32 - 000775168 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2018-10-14 10:49 - 2018-08-30 21:32 - 000583680 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2018-10-14 10:49 - 2018-08-30 21:32 - 000540160 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2018-10-14 10:49 - 2018-08-30 21:31 - 004149760 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2018-10-14 10:49 - 2018-08-30 21:31 - 000984576 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2018-10-14 10:49 - 2018-08-30 21:31 - 000971264 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2018-10-14 10:49 - 2018-08-30 21:31 - 000932352 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-10-14 10:49 - 2018-08-30 21:31 - 000402432 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 004476416 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 002695680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 001949696 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 001328128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 001275392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 000845824 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2018-10-14 10:49 - 2018-08-30 21:30 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2018-10-14 10:49 - 2018-08-30 21:29 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\spaceman.exe
2018-10-14 10:49 - 2018-08-30 21:13 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2018-10-14 10:49 - 2018-03-06 06:13 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 002868688 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-10-14 10:48 - 2018-10-05 00:37 - 001610704 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 000792528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 000689616 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 000612304 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 000480504 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 000452048 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 000309496 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 000254712 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 000144848 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-10-14 10:48 - 2018-10-05 00:37 - 000070096 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2018-10-14 10:48 - 2018-10-05 00:37 - 000035064 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2018-10-14 10:48 - 2018-10-05 00:36 - 000211192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2018-10-14 10:48 - 2018-10-05 00:31 - 002256832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-10-14 10:48 - 2018-10-05 00:29 - 000501200 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2018-10-14 10:48 - 2018-10-05 00:27 - 002447824 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-10-14 10:48 - 2018-10-05 00:27 - 001144256 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2018-10-14 10:48 - 2018-10-05 00:27 - 001002744 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2018-10-14 10:48 - 2018-10-05 00:27 - 000948160 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2018-10-14 10:48 - 2018-10-05 00:27 - 000811968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.exe
2018-10-14 10:48 - 2018-10-05 00:27 - 000076224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2018-10-14 10:48 - 2018-10-04 23:54 - 000410112 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2018-10-14 10:48 - 2018-10-04 23:52 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2018-10-14 10:48 - 2018-10-04 23:51 - 009129984 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2018-10-14 10:48 - 2018-10-04 23:48 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2018-10-14 10:48 - 2018-10-04 23:47 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2018-10-14 10:48 - 2018-10-04 23:46 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
2018-10-14 10:48 - 2018-10-04 23:45 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollCtrl.exe
2018-10-14 10:48 - 2018-10-04 23:44 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2018-10-14 10:48 - 2018-10-04 23:43 - 004744704 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2018-10-14 10:48 - 2018-10-04 23:41 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2018-10-14 10:48 - 2018-10-04 23:39 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2018-10-14 10:48 - 2018-10-04 23:39 - 000881152 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2018-10-14 10:48 - 2018-10-04 23:39 - 000819712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2018-10-14 10:48 - 2018-10-04 23:38 - 003616768 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2018-10-14 10:48 - 2018-10-04 23:38 - 002862080 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2018-10-14 10:48 - 2018-08-30 22:27 - 000071200 _____ (Microsoft Corporation) C:\Windows\system32\winbrand.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 001670568 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 001409960 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 001045928 _____ (Microsoft Corporation) C:\Windows\system32\AppVPolicy.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000983976 _____ (Microsoft Corporation) C:\Windows\system32\AppVManifest.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000813480 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000779688 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000766888 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000704424 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000699304 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000569768 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000513440 _____ (Microsoft Corporation) C:\Windows\system32\TransportDSA.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000412584 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000241576 _____ (Microsoft Corporation) C:\Windows\system32\AppVShNotify.exe
2018-10-14 10:48 - 2018-08-30 22:26 - 000202664 _____ (Microsoft Corporation) C:\Windows\system32\AppVStreamingUX.dll
2018-10-14 10:48 - 2018-08-30 22:26 - 000187304 _____ (Microsoft Corporation) C:\Windows\system32\AppVDllSurrogate.exe
2018-10-14 10:48 - 2018-08-30 22:26 - 000035240 _____ C:\Windows\system32\SyncAppvPublishingServer.exe
2018-10-14 10:48 - 2018-08-30 22:23 - 001050120 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-10-14 10:48 - 2018-08-30 22:23 - 000893656 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-10-14 10:48 - 2018-08-30 22:22 - 001355424 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-10-14 10:48 - 2018-08-30 22:22 - 001173496 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-10-14 10:48 - 2018-08-30 22:20 - 000766328 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2018-10-14 10:48 - 2018-08-30 22:20 - 000170224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-10-14 10:48 - 2018-08-30 22:19 - 000653776 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-10-14 10:48 - 2018-08-30 22:18 - 002918144 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2018-10-14 10:48 - 2018-08-30 22:18 - 001267584 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2018-10-14 10:48 - 2018-08-30 22:18 - 000624120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-10-14 10:48 - 2018-08-30 22:18 - 000509864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2018-10-14 10:48 - 2018-08-30 22:17 - 000116648 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2018-10-14 10:48 - 2018-08-30 22:17 - 000026480 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-10-14 10:48 - 2018-08-30 22:16 - 004675784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2018-10-14 10:48 - 2018-08-30 22:16 - 000894456 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
2018-10-14 10:48 - 2018-08-30 22:16 - 000208112 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2018-10-14 10:48 - 2018-08-30 22:15 - 000456104 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2018-10-14 10:48 - 2018-08-30 21:53 - 000292864 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2018-10-14 10:48 - 2018-08-30 21:45 - 007219200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2018-10-14 10:48 - 2018-08-30 21:42 - 001550848 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2018-10-14 10:48 - 2018-08-30 21:40 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2018-10-14 10:48 - 2018-08-30 21:38 - 000173056 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-10-14 10:48 - 2018-08-30 21:38 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\VmApplicationHealthMonitorProxy.dll
2018-10-14 10:48 - 2018-08-30 21:37 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2018-10-14 10:48 - 2018-08-30 21:37 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\XInputUap.dll
2018-10-14 10:48 - 2018-08-30 21:36 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2018-10-14 10:48 - 2018-08-30 21:36 - 000201216 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll
2018-10-14 10:48 - 2018-08-30 21:36 - 000133632 _____ (Microsoft Corporation) C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2018-10-14 10:48 - 2018-08-30 21:35 - 001587200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2018-10-14 10:48 - 2018-08-30 21:35 - 000907264 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2018-10-14 10:48 - 2018-08-30 21:35 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2018-10-14 10:48 - 2018-08-30 21:35 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2018-10-14 10:48 - 2018-08-30 21:35 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2018-10-14 10:48 - 2018-08-30 21:34 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2018-10-14 10:48 - 2018-08-30 21:34 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\StateRepository.Core.dll
2018-10-14 10:48 - 2018-08-30 21:34 - 000425472 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2018-10-14 10:48 - 2018-08-30 21:34 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2018-10-14 10:48 - 2018-08-30 21:34 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2018-10-14 10:48 - 2018-08-30 21:34 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
2018-10-14 10:48 - 2018-08-30 21:33 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2018-10-14 10:48 - 2018-08-30 21:33 - 000775168 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2018-10-14 10:48 - 2018-08-30 21:33 - 000562176 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2018-10-14 10:48 - 2018-08-30 21:33 - 000391168 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2018-10-14 10:48 - 2018-08-30 21:33 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2018-10-14 10:48 - 2018-08-30 21:33 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2018-10-14 10:48 - 2018-08-30 21:32 - 006664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2018-10-14 10:48 - 2018-08-30 21:32 - 005511680 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2018-10-14 10:48 - 2018-08-30 21:32 - 004136960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2018-10-14 10:48 - 2018-08-30 21:32 - 001486848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-10-14 10:48 - 2018-08-30 21:32 - 000967168 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2018-10-14 10:48 - 2018-08-30 21:32 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2018-10-14 10:48 - 2018-08-30 21:31 - 002321408 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-10-14 10:48 - 2018-08-30 21:31 - 001745408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2018-10-14 10:48 - 2018-08-30 21:31 - 001294336 _____ (Microsoft Corporation) C:\Windows\system32\SensorDataService.exe
2018-10-14 10:48 - 2018-08-30 21:31 - 001021952 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2018-10-14 10:48 - 2018-08-30 21:31 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\deviceregistration.dll
2018-10-14 10:48 - 2018-08-30 21:30 - 000948224 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-10-14 10:48 - 2018-08-30 21:30 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-10-14 10:48 - 2018-08-30 21:30 - 000716800 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2018-10-14 10:48 - 2018-08-30 21:30 - 000376832 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2018-10-14 10:48 - 2018-08-30 21:29 - 000886784 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2018-10-14 10:48 - 2018-08-30 21:29 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2018-10-14 10:48 - 2018-08-30 21:28 - 000833024 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-10-14 10:48 - 2018-07-13 05:11 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\XamlTileRender.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-11 23:35 - 2017-12-01 18:18 - 000000000 ____D C:\Users\Mája\AppData\LocalLow\Mozilla
2018-11-11 23:35 - 2017-12-01 17:06 - 003405256 _____ C:\Windows\system32\PerfStringBackup.INI
2018-11-11 23:35 - 2016-07-16 23:26 - 001433992 _____ C:\Windows\system32\perfh005.dat
2018-11-11 23:35 - 2016-07-16 23:26 - 000386562 _____ C:\Windows\system32\perfc005.dat
2018-11-11 23:35 - 2016-07-16 12:45 - 000000000 ____D C:\Windows\INF
2018-11-11 23:33 - 2018-01-28 22:07 - 000002556 _____ C:\Windows\System32\Tasks\DllKitPRO
2018-11-11 23:33 - 2017-12-01 18:07 - 000003656 _____ C:\Windows\System32\Tasks\AutoKMS
2018-11-11 23:28 - 2017-12-01 17:00 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-11-11 23:28 - 2016-07-16 07:04 - 000032768 _____ C:\Windows\system32\config\BBI
2018-11-11 23:20 - 2018-02-04 16:25 - 000000000 ____D C:\Program Files (x86)\Steam
2018-11-11 23:20 - 2017-12-02 13:00 - 000000000 ____D C:\Users\Mája\AppData\Roaming\GHISLER
2018-11-11 23:20 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\registration
2018-11-11 23:13 - 2017-12-01 17:08 - 000000000 ____D C:\Users\Mája
2018-11-11 23:12 - 2018-02-04 16:27 - 000000000 ____D C:\Users\Mája\AppData\Roaming\Twitch
2018-11-11 23:12 - 2017-12-01 17:01 - 000000000 ____D C:\Users\defaultuser0
2018-11-11 23:12 - 2016-07-16 12:47 - 000000000 ___HD C:\Program Files\WindowsApps
2018-11-11 22:37 - 2017-12-02 13:14 - 000000000 ____D C:\Users\Mája\AppData\Roaming\MPC-HC
2018-11-11 22:01 - 2017-12-01 16:59 - 000000000 ____D C:\Windows\system32\SleepStudy
2018-11-11 09:24 - 2018-03-19 02:44 - 000062068 _____ C:\Windows\system32\BMXStateBkp-{00000004-00000000-00000000-00001102-0000000B-00431102}.rfx
2018-11-11 09:24 - 2018-03-19 02:44 - 000062068 _____ C:\Windows\system32\BMXState-{00000004-00000000-00000000-00001102-0000000B-00431102}.rfx
2018-11-11 09:24 - 2018-03-19 02:44 - 000000820 _____ C:\Windows\system32\DVCState-{00000004-00000000-00000000-00001102-0000000B-00431102}.rfx
2018-11-11 09:24 - 2017-12-01 21:24 - 000002064 _____ C:\Windows\system32\settingsbkup.sfm
2018-11-11 09:24 - 2017-12-01 21:24 - 000002064 _____ C:\Windows\system32\settings.sfm
2018-11-10 20:31 - 2018-01-17 22:19 - 000000000 ____D C:\Windows\Minidump
2018-11-10 20:31 - 2017-12-01 16:59 - 000000000 ____D C:\Windows\Panther
2018-11-10 20:31 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\LiveKernelReports
2018-11-10 20:27 - 2017-12-01 18:18 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-11-10 19:57 - 2018-09-08 15:46 - 000000000 ____D C:\Users\Mája\AppData\Roaming\TS3Client
2018-11-10 19:48 - 2017-12-01 20:09 - 000000000 ____D C:\Users\Mája\Documents\Portable
2018-11-10 18:56 - 2017-12-02 16:42 - 000000000 ____D C:\Users\Mája\AppData\Roaming\uTorrent
2018-11-10 18:36 - 2017-12-02 16:46 - 000000000 ____D C:\Users\Mája\Downloads\Torrent
2018-11-10 18:20 - 2017-12-01 18:18 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-11-10 18:12 - 2018-02-04 16:40 - 000000000 ____D C:\Users\Mája\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-10-25 13:23 - 2018-02-04 16:19 - 000002232 _____ C:\Users\Mája\Desktop\Discord.lnk
2018-10-25 13:23 - 2018-02-04 16:19 - 000000000 ____D C:\Users\Mája\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-10-25 13:23 - 2018-02-04 16:19 - 000000000 ____D C:\Users\Mája\AppData\Roaming\discord
2018-10-25 13:23 - 2018-02-04 16:19 - 000000000 ____D C:\Users\Mája\AppData\Local\Discord
2018-10-23 10:22 - 2018-02-28 09:48 - 000000000 ____D C:\Windows\system32\Drivers\wd
2018-10-22 23:30 - 2017-12-02 15:29 - 000000000 ____D C:\Users\Mája\AppData\Local\ElevatedDiagnostics
2018-10-17 16:47 - 2017-12-01 19:23 - 000559880 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-10-15 14:12 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\rescache
2018-10-15 13:00 - 2017-12-01 17:09 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-10-15 13:00 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\AppReadiness
2018-10-15 12:58 - 2017-12-01 16:59 - 000331600 _____ C:\Windows\system32\FNTCACHE.DAT
2018-10-14 11:46 - 2016-07-16 12:47 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2018-10-14 11:46 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\system32\oobe
2018-10-14 11:46 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\system32\appraiser
2018-10-14 11:46 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\ShellExperiences
2018-10-14 11:46 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\PolicyDefinitions
2018-10-14 11:46 - 2016-07-16 12:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-10-14 11:46 - 2016-07-16 12:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-10-14 11:46 - 2016-07-16 07:04 - 000000000 ____D C:\Windows\SysWOW64\Dism
2018-10-14 11:46 - 2016-07-16 07:04 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2018-10-14 11:46 - 2016-07-16 07:04 - 000000000 ____D C:\Windows\system32\Sysprep
2018-10-14 11:46 - 2016-07-16 07:04 - 000000000 ____D C:\Windows\system32\Dism
2018-10-14 11:46 - 2016-07-16 07:04 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2018-10-14 11:10 - 2016-07-16 12:36 - 000000000 ____D C:\Windows\CbsTemp
2018-10-14 10:57 - 2017-12-01 19:40 - 000000000 ____D C:\Windows\system32\MRT
2018-10-14 10:54 - 2017-12-01 19:40 - 136745976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-10-14 10:20 - 2016-07-16 12:42 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll

==================== Files in the root of some directories =======

2017-12-02 14:45 - 2018-07-11 07:46 - 000000033 _____ () C:\Users\Mája\AppData\Roaming\AdobeWLCMCache.dat
2017-12-29 04:17 - 2018-03-18 23:12 - 000007613 _____ () C:\Users\Mája\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-11-11 12:04

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11.11.2018
Ran by Mája (11-11-2018 23:46:09)
Running from C:\Users\Mája\Desktop
Windows 10 Enterprise 2016 LTSB Version 1607 14393.2551 (X64) (2017-12-01 16:07:32)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2286857590-1236030101-2471471759-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2286857590-1236030101-2471471759-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2286857590-1236030101-2471471759-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-2286857590-1236030101-2471471759-501 - Limited - Disabled)
Mája (S-1-5-21-2286857590-1236030101-2471471759-1001 - Administrator - Enabled) => C:\Users\Mája

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Bridge CC 2018 (32 Bit) (HKLM-x32\...\KBRG_8_0_32) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Illustrator CC 2018 (32 Bit) (HKLM-x32\...\ILST_22_0_1_32) (Version: 22.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (32 Bit) (HKLM-x32\...\PHSP_19_0_1_32) (Version: 19.0.1 - Adobe Systems Incorporated)
Core Temp version 0.99.8 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 0.99.8 - Arthur Liberman)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
Discord (HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.00 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Epic Games Launcher (HKLM-x32\...\{5F95C9CC-2614-4C5E-B1FC-43029FD7FD6B}) (Version: 1.1.149.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Free PC Audio Recorder 3.1 (HKLM-x32\...\Free PC Audio Recorder_is1) (Version: 3.1 - Cok Free Software)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Mass Effect (HKLM-x32\...\Mass Effect_is1) (Version: - )
Maxwell 2 (HKLM-x32\...\Maxwell 2) (Version: - )
Maxwell for Rhino x86 (HKLM-x32\...\{0A1370B3-6AF5-4D85-9CB8-714FDF2E91CD}) (Version: 2.7.20 - Next Limit Technologies)
Maxwell Shell Extension (x86) (HKLM-x32\...\{3E366CC6-D461-47FC-B143-D48A575A2D6F}) (Version: 2.7.0 - Next Limit Technologies)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{d6f233bd-3f8c-43f6-878b-07bd0568d595}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{cb7c3049-21de-415b-bd85-b65c14e547df}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 63.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 63.0.1 (x64 cs)) (Version: 63.0.1 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM\...\{90160000-001F-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM\...\{90160000-001F-041B-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
NVIDIA Ovladače grafiky 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Ovládací panel NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
Rhinoceros 4.0 (HKLM-x32\...\{5C2CBFFD-FC3B-4AA9-993B-CE2B8DA25B87}) (Version: 4.0.20118 - McNeel & Associates)
Rhinoceros 4.0 SR9 (HKLM-x32\...\{E3355E5C-965C-4f67-8A8C-E9A0FA9FD80F}) (Version: 4.0.60309 - Robert McNeel & Associates)
Rhinoceros 4.0 SR9 Hot Fix 1 (HKLM-x32\...\{AC46A19C-0D2E-4FE2-A7F3-75031C970D43}) (Version: 5.0.2011.0324 - Robert McNeel & Associates)
Splinter Cell - Blacklist 1.01 (HKLM-x32\...\{A6356F2F-D3E1-4D83-9AA2-72871DD0C298}_is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
TeamSpeak 3 Client (HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\TeamSpeak 3 Client) (Version: 3.2.1 - TeamSpeak Systems GmbH)
Tom Clancy's Splinter Cell® Blacklist™ (HKLM-x32\...\{A6356F2F-D3E1-4D83-9AA2-72871DD0C298}) (Version: 1.01 - Ubisoft)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.12 - Ghisler Software GmbH)
Twitch (HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{61702639-6539-473A-8FE5-618E194C0069}) (Version: 2.7.0.0 - Microsoft Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Základní software zařízení HP Deskjet 6520 series (HKLM\...\{E0365A88-9BCE-4E15-98C5-21F454C7479F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2286857590-1236030101-2471471759-1001_Classes\CLSID\{3D3B1846-CC43-42AE-BFF9-D914083C2BA3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfPreview.dll ()
ContextMenuHandlers1: [RhinoShExt] -> [CC]{C81DCBCA-8AE2-41FC-9C39-78B160393210} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1A37F037-AF31-419A-8651-47C61CB02F15} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {201B6687-D192-4E2A-A488-7399ACF8CC62} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {6ED3C8B7-A78B-45DB-9216-ED394BBFA1DE} - System32\Tasks\CCleanerSkipUAC => C:\Users\Mája\Documents\Portable\CCleaner\CCleaner.exe [2017-11-08] (Piriform Ltd)
Task: {83CBB685-4342-432E-A5E8-3CAA6F83C422} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-12-01] ()
Task: {B237890A-1B1B-4372-A6AB-0F4195AE9B06} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {B3D63837-5359-46B2-81DB-871BF7457CD3} - System32\Tasks\DllKitPRO => C:\Program Files (x86)\DllKitPRO\dllkitpro.exe
Task: {D382DAE9-CBB3-42D2-BBA8-9105FE9AE3F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {E7BDD7B8-9432-48A3-A892-D5749F405030} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 000231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2018-10-14 10:49 - 2018-08-30 22:21 - 002681712 _____ () C:\Windows\system32\CoreUIComponents.dll
2017-12-01 17:45 - 2016-11-14 12:15 - 000135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-12-01 17:11 - 2017-12-01 17:11 - 000959168 _____ () C:\Users\Mája\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64\ClientTelemetry.dll
2017-12-01 19:37 - 2016-09-07 05:56 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-12-01 19:36 - 2017-03-04 07:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2018-08-16 13:54 - 2018-08-07 05:12 - 009847808 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-08-16 13:54 - 2018-08-07 05:03 - 001402368 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-08-16 13:54 - 2018-08-07 05:03 - 000757760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2018-08-16 13:54 - 2018-08-07 05:04 - 002424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2018-08-16 13:54 - 2018-08-07 05:11 - 004854272 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [466]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\Control Panel\Desktop\\Wallpaper -> F:\Zaloha 07.11.2017\Obrázky\Tapety\leopard_10-wallpaper-1920x1080.jpg
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Prompt)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run32: => "CTxfiHlp"
HKLM\...\StartupApproved\Run32: => "Discord"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\StartupApproved\Run: => "AdobeBridge"
HKU\S-1-5-21-2286857590-1236030101-2471471759-1001\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{76E9435B-377C-4684-B351-99E42DF89D6F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{2393D408-BC9E-4E43-A3C0-CC71BD138E90}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{6FE4FE27-40B4-4399-80D3-D7F3C91DE5D0}] => (Allow) C:\Program Files\HP\HP Deskjet 6520 series\Bin\DeviceSetup.exe
FirewallRules: [{E82B19F8-5548-4F68-BC44-5C6BD54EC40D}] => (Allow) C:\Program Files\HP\HP Deskjet 6520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{1E5D6119-C5BF-4911-816C-FBC65AFBFF70}] => (Allow) C:\Program Files\HP\HP Deskjet 6520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{71BE14D1-FD17-4571-A49C-78769575AE8A}C:\users\mája\documents\portable\nero burning rom & nero express 2018 v19.1.1005\nero burning rom.exe] => (Block) C:\users\mája\documents\portable\nero burning rom & nero express 2018 v19.1.1005\nero burning rom.exe
FirewallRules: [UDP Query User{3F45A17E-4EF0-4B72-A6E0-AD3D2822E7B3}C:\users\mája\documents\portable\nero burning rom & nero express 2018 v19.1.1005\nero burning rom.exe] => (Block) C:\users\mája\documents\portable\nero burning rom & nero express 2018 v19.1.1005\nero burning rom.exe
FirewallRules: [TCP Query User{89246850-5CC3-4198-AF86-08F947B99A18}C:\users\mája\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\mája\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{1A318876-110B-43BA-961F-D1E3B1663B1E}C:\users\mája\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\mája\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{7BEBD88D-9769-422C-9E91-CDBACB463593}C:\program files (x86)\next limit\maxwell 2\maxwell.exe] => (Allow) C:\program files (x86)\next limit\maxwell 2\maxwell.exe
FirewallRules: [UDP Query User{D375627E-D69D-4E6B-A5C2-8859DE6F4882}C:\program files (x86)\next limit\maxwell 2\maxwell.exe] => (Allow) C:\program files (x86)\next limit\maxwell 2\maxwell.exe
FirewallRules: [TCP Query User{6A04A858-74B2-4604-8686-763526C9120E}C:\program files (x86)\next limit\maxwell 2\mxnetwork.exe] => (Allow) C:\program files (x86)\next limit\maxwell 2\mxnetwork.exe
FirewallRules: [UDP Query User{A2ED8B8A-78D3-43B7-93D3-940AB20EB79A}C:\program files (x86)\next limit\maxwell 2\mxnetwork.exe] => (Allow) C:\program files (x86)\next limit\maxwell 2\mxnetwork.exe
FirewallRules: [{C060C957-DB1A-4966-93A6-0D4D6EECE4D7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3D37FBEE-3B22-4F55-80FE-400937114835}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4F2106E7-2016-4EA0-BC63-D5D082AE097D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{50AD8296-B281-4583-90F9-34E0BB209334}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [TCP Query User{F71FCAF1-DEBD-4133-9696-277A906998E5}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{C0500E18-823D-4B6E-93C4-3E5D60A6AC67}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{A550D7F3-CB81-4679-902A-6BE2A55589E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe
FirewallRules: [{BB621E07-F9EA-4C89-A113-9731DA915AB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe
FirewallRules: [TCP Query User{BC7B4BF2-5A78-4161-B661-3020582D6FC9}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{E4C8EA75-5ED5-4F3C-A607-CA28C4A91362}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{529E6544-D485-4601-8BA7-7A6C5BAC4B06}C:\hry\splinter cell - blacklist\src\system\blacklist_game.exe] => (Allow) C:\hry\splinter cell - blacklist\src\system\blacklist_game.exe
FirewallRules: [UDP Query User{104A2C17-CD34-4F33-8C0A-5985F11DE66F}C:\hry\splinter cell - blacklist\src\system\blacklist_game.exe] => (Allow) C:\hry\splinter cell - blacklist\src\system\blacklist_game.exe
FirewallRules: [{1B7F9F4D-4B6A-4253-AD64-FDAC32B5F251}] => (Block) C:\hry\splinter cell - blacklist\src\system\blacklist_game.exe
FirewallRules: [{3457B424-72CB-40AD-8D97-3DAD3705F2D1}] => (Block) C:\hry\splinter cell - blacklist\src\system\blacklist_game.exe
FirewallRules: [{54200A2F-5205-4EC1-B830-9E078CD191D7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{6BEA8E7F-C9E4-4E99-8EDF-FC2AF43A6532}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{39F2C1F2-E60E-46AA-B484-F291FB8DCFC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe
FirewallRules: [{949BF976-E502-45CE-9C49-D99FAF84221E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe
FirewallRules: [{056D6718-264F-4966-8969-95BACE77D1F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{B3F504B0-EE51-4F3D-8B43-19DC6573DC0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A1CEB246-D62A-4968-A1E0-0D1ED94E5FD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{6737BB68-0997-4A17-9EEA-7F60BD78CF58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{F2E332BA-2CFF-4B88-B3CF-048DE07D0FC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{C145D4C9-FB61-4A28-9F82-33F846EDCB49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{E8B7464D-2DEF-430D-9A32-88F014408590}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{FDCF99C1-9560-482B-8EDB-E8F4ED11B21B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{08E5EC3E-E717-428D-B848-071D6D53E200}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{B7126C7C-D611-4BFE-9915-B72630650AC7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{570DC856-48D9-408E-A3B2-338903D62AB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{872DA57F-1BFD-4F84-A8A9-328F06E5C8B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{E591B557-0C73-4002-804A-5E0175B63C55}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [{87287BB7-7FB9-4CF6-8313-EBEC06A571C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [{40FDBF32-3B24-4A2D-B5BB-59D01E3ACF3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prototype 2\prototype2.exe
FirewallRules: [{28887C42-FC9E-46D9-A77B-C325DF0886B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prototype 2\prototype2.exe
FirewallRules: [{37E94275-6AB6-4802-891B-1E54CEA92D44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{BE574A07-F0A1-4DE5-8EDA-83B30D5782CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe

==================== Restore Points =========================

22-10-2018 17:18:58 Naplánovaný kontrolní bod
02-11-2018 19:12:16 Naplánovaný kontrolní bod
10-11-2018 19:13:29 10.11.2018
10-11-2018 20:23:02 10.11.2018_2
11-11-2018 22:10:15 11.11.2018
11-11-2018 23:05:20 Operace obnovení

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/11/2018 11:22:11 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Během obnovení systému došlo k nespecifikované chybě: (10.11.2018_2). Další informace: 0x80070005.

Error: (11/11/2018 11:05:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/11/2018 10:11:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/11/2018 07:34:04 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.

Error: (11/11/2018 07:34:04 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (11/10/2018 08:23:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/10/2018 07:13:40 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/10/2018 06:56:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.14393.2485, časové razítko: 0x5b84c5a0
Kód výjimky: 0xc000041d
Posun chyby: 0x00003e82
ID chybujícího procesu: 0x1478
Čas spuštění chybující aplikace: 0x01d4791db82a1d3f
Cesta k chybující aplikaci: C:\Users\Mája\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\Windows\System32\GDI32.dll
ID zprávy: 1535df6f-8ffb-42b7-b1d9-227adfbd3e84
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (11/11/2018 11:28:59 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba IKE and AuthIP IPsec Keying Modules byla ukončena s následující chybou:
Datová oblast předaná systémové službě je příliš malá.

Error: (11/11/2018 11:28:58 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba CDPUserSvc_1d2d9 byla ukončena s následující chybou:
Nespecifikovaná chyba

Error: (11/11/2018 11:28:03 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/11/2018 11:22:03 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba CDPUserSvc_1ed69 byla ukončena s následující chybou:
Nespecifikovaná chyba

Error: (11/11/2018 11:15:36 PM) (Source: DCOM) (EventID: 10010) (User: ASUS)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/11/2018 11:15:35 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/11/2018 11:13:40 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba CDPUserSvc_219d0 byla ukončena s následující chybou:
Nespecifikovaná chyba

Error: (11/11/2018 11:11:38 PM) (Source: DCOM) (EventID: 10010) (User: ASUS)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2018-10-26 14:35:17.378
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {5AF3018C-1B72-420A-94B1-A06C4211AE18}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-10-23 11:56:44.303
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {7E9FD93A-3C87-4B1F-ADAC-27F1C52C5768}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-10-20 15:16:53.007
Description:
Prohledávání Windows Defender zjistilo podezřelé chování.
Název: Informational:Behavior/ModifiedKernel
ID: 3798753341
Závažnost: Nízké
Kategorie: Podezřelé chování
Nalezená cesta: process:_0
Původ zjištění: Neznámý
Typ zjištění: Podezřelý
Zdroj zjištění: Ochrana v reálném čase
Stav: Provádění
Uživatel: Unknown\Unknown
Název procesu: Unknown
ID podpisu: 717259538435
Verze podpisu: AV: 1.279.166.0, AS: 1.279.166.0
Verze modulu: 1.1.15400.4
Štítek věrnosti: Nízké
Název cílového souboru:

Date: 2018-10-18 15:51:04.665
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {45630DB6-A7A5-4370-84ED-85D79391832E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-10-18 00:57:13.126
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {D0A93E16-5188-47FE-A76B-9589F001FE04}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-11-10 20:50:13.059
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.279.1575.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15400.4
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2018-11-10 20:50:12.992
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.279.1575.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15400.4
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2018-11-10 20:50:12.991
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.279.1575.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15400.4
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2018-11-03 16:03:37.717
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.279.1030.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15400.4
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2018-11-03 16:03:37.716
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.279.1030.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15400.4
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2018-11-11 12:05:08.031
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-11-03 16:00:48.084
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-11-02 19:04:42.728
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-29 00:04:53.921
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-27 15:04:50.607
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-26 14:33:45.150
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-23 11:56:19.466
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-20 15:14:48.095
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
Percentage of memory in use: 16%
Total physical RAM: 7167.18 MB
Available physical RAM: 5967.47 MB
Total Virtual: 8319.18 MB
Available Virtual: 7180.36 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.02 GB) (Free:359.85 GB) NTFS

\\?\Volume{c61bd2c6-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: C61BD2C6)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Kontrola viru, malweru

#2 Příspěvek od Rudy »

Zdravím!
Tento PC je buď služební, nebo nemáte legální oper. systém. Zároveň přesouvám vlákno do správné sekce.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět