Kontrola logu

Zpráva

burrry · #1 Příspěvek od **burrry** » 21 srp 2017 14:55

Dobrý den,
poprosím o kontrolu logu. Nevím ale, zda ho mám správně, psalo mi to, že FRST64.exe nebyl nalezen,přesto, že na ploše byl uložený.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2017
Ran by Gabriela (administrator) on DESKTOP-AKNEE8R (21-08-2017 15:51:39)
Running from D:\Gabriela\Desktop
Loaded Profiles: Gabriela (Available Profiles: defaultuser0 & Gabriela)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Electronic Arts) D:\FIFA 16\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.13610.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.BingWeather_4.20.1102.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213832 2017-07-23] (AVAST Software)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [26814632 2015-07-31] (Microsoft Corporation)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [EADM] => D:\FIFA 16\Origin\Origin.exe [3046264 2017-04-23] (Electronic Arts)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [OV2_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 2\OV2Monitor.exe [231784 2013-01-10] (OLYMPUS IMAGING CORP.)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\MountPoints2: {380b215c-2141-11e7-989f-40167e694903} - "H:\Setup.exe"
BootExecute: autocheck autochk * aswBoot.exe /A:"* " /L:"1029" /heur:80 /RA:fix /pup /archives /IA:0 /KBD:1 /wow /dir:"C:\Program Files\AVAST Software\Avast"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{cdef9176-437f-4956-9513-56d6355d4cad}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: nz8kucmr.default-1502578141481
FF ProfilePath: C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341 [2017-07-23]
FF Extension: (Avast SafePrice) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341\Extensions\sp@avast.com.xpi [2017-06-29]
FF Extension: (Avast Online Security) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341\Extensions\wrc@avast.com.xpi [2017-06-29]
FF ProfilePath: C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\nz8kucmr.default-1502578141481 [2017-08-21]
FF Homepage: Mozilla\Firefox\Profiles\nz8kucmr.default-1502578141481 -> hxxps://www.seznam.cz/
FF Extension: (AdBlock) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\nz8kucmr.default-1502578141481\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2017-08-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_151.dll [2017-08-12] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-12] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] ()
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7430992 2017-07-23] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263312 2017-07-23] (AVAST Software)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-07-19] (NVIDIA Corporation)
S3 Origin Client Service; D:\FIFA 16\Origin\OriginClientService.exe [2146704 2017-04-23] (Electronic Arts)
R2 Origin Web Helper Service; D:\FIFA 16\Origin\OriginWebHelperService.exe [3115928 2017-04-23] (Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889888 2017-08-01] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-08-01] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] ()
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-07-23] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-07-23] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-07-23] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-07-23] (AVAST Software s.r.o.)
S3 aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [91304 2017-04-14] (AVAST Software)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-06-29] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41800 2017-06-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146704 2017-08-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-06-29] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-06-29] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015880 2017-08-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-06-29] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-06-29] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-07-01] (AVAST Software)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_c0f7a2f5b2e4e6e0\nvlddmkm.sys [15668664 2017-08-03] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-21 15:09 - 2017-08-21 15:51 - 000000000 ____D C:\FRST
2017-08-21 14:56 - 2017-08-21 14:56 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-08-21 11:39 - 2017-08-21 11:39 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-21 11:39 - 2017-08-21 11:39 - 000000993 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-21 11:39 - 2017-08-21 11:39 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-21 11:39 - 2017-08-21 11:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-20 07:32 - 2017-08-20 07:34 - 000000000 ___HD C:\$WINDOWS.~BT
2017-08-16 18:27 - 2017-08-21 15:49 - 000029696 _____ C:\Users\Gabriela\AppData\Local\MSGBOX.EXE
2017-08-12 23:11 - 2017-08-12 23:11 - 000000000 ____D C:\Users\Gabriela\AppData\Roaming\Macromedia
2017-08-12 20:05 - 2017-08-12 20:05 - 000000000 ____D C:\Users\Gabriela\AppData\Local\Opera Software
2017-08-12 15:39 - 2017-08-12 15:39 - 000000000 ____D C:\Windows\LastGood.Tmp
2017-08-11 11:32 - 2017-08-11 11:32 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-08-09 20:30 - 2017-08-09 20:30 - 004696960 _____ (PS Media s.r.o.) C:\Windows\SysWOW64\ssins.exe
2017-08-09 20:30 - 2017-08-09 20:30 - 001363456 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2017-08-09 20:30 - 2017-08-09 20:30 - 000359936 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2017-08-09 20:30 - 2017-08-09 20:30 - 000002824 _____ C:\Windows\SysWOW64\ca.pem
2017-08-09 20:30 - 2017-08-09 20:30 - 000002269 _____ C:\Windows\SysWOW64\cert.crt
2017-08-09 20:30 - 2017-08-09 20:30 - 000001679 _____ C:\Windows\SysWOW64\keyfile.key
2017-08-09 20:30 - 2017-08-09 20:30 - 000000079 _____ C:\Windows\SysWOW64\ssinstall-uninstall.bat
2017-08-09 00:32 - 2017-08-09 00:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-08-09 00:31 - 2017-08-09 00:31 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-08-09 00:31 - 2017-07-19 00:38 - 000135800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-08-09 00:31 - 2017-03-10 23:17 - 000536864 _____ C:\Windows\system32\vulkan-1.dll
2017-08-09 00:31 - 2017-03-10 23:17 - 000525600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-08-09 00:31 - 2017-03-10 23:17 - 000254240 _____ C:\Windows\system32\vulkaninfo.exe
2017-08-09 00:31 - 2017-03-10 23:17 - 000233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-08-09 00:25 - 2017-08-09 20:53 - 000007598 _____ C:\Users\Gabriela\AppData\Local\resmon.resmoncfg
2017-08-08 22:19 - 2017-08-01 21:32 - 000133984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-08-08 22:19 - 2017-08-01 21:29 - 000376672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2017-08-08 22:19 - 2017-08-01 21:27 - 000118112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-08-08 22:19 - 2017-08-01 21:22 - 001860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-08-08 22:19 - 2017-08-01 21:22 - 000360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-08-08 22:19 - 2017-08-01 21:21 - 000857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-08-08 22:19 - 2017-08-01 21:20 - 000557408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-08-08 22:19 - 2017-08-01 21:18 - 008169536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-08-08 22:19 - 2017-08-01 21:18 - 004260064 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-08-08 22:19 - 2017-08-01 21:18 - 001983408 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-08-08 22:19 - 2017-08-01 21:18 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-08-08 22:19 - 2017-08-01 21:18 - 000092512 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-08-08 22:19 - 2017-08-01 21:17 - 022220856 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-08-08 22:19 - 2017-08-01 21:17 - 001072248 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-08-08 22:19 - 2017-08-01 21:17 - 000244816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-08-08 22:19 - 2017-08-01 21:13 - 002532192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-08-08 22:19 - 2017-08-01 21:13 - 000387872 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-08-08 22:19 - 2017-08-01 20:58 - 000299008 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2017-08-08 22:19 - 2017-08-01 20:57 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2017-08-08 22:19 - 2017-08-01 20:57 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-08-08 22:19 - 2017-08-01 20:53 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-08-08 22:19 - 2017-08-01 20:52 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-08-08 22:19 - 2017-08-01 20:51 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-08-08 22:19 - 2017-08-01 20:50 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2017-08-08 22:19 - 2017-08-01 20:48 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-08-08 22:19 - 2017-08-01 20:48 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-08-08 22:19 - 2017-08-01 20:47 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-08-08 22:19 - 2017-08-01 20:47 - 000691200 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2017-08-08 22:19 - 2017-08-01 20:46 - 000590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-08-08 22:19 - 2017-08-01 20:46 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-08-08 22:19 - 2017-08-01 20:46 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\Phoneutil.dll
2017-08-08 22:19 - 2017-08-01 20:46 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-08-08 22:19 - 2017-08-01 20:45 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-08-08 22:19 - 2017-08-01 20:45 - 000561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-08-08 22:19 - 2017-08-01 20:45 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-08-08 22:19 - 2017-08-01 20:44 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2017-08-08 22:19 - 2017-08-01 20:43 - 000963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2017-08-08 22:19 - 2017-08-01 20:42 - 006288384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-08-08 22:19 - 2017-08-01 20:38 - 013441536 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-08-08 22:19 - 2017-08-01 20:37 - 013091328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-08-08 22:19 - 2017-08-01 20:35 - 001908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-08-08 22:19 - 2017-08-01 20:32 - 008114688 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-08-08 22:19 - 2017-08-01 20:32 - 004596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2017-08-08 22:19 - 2017-08-01 20:32 - 003401216 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-08-08 22:19 - 2017-08-01 20:29 - 004743680 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-08-08 22:19 - 2017-08-01 20:29 - 002852864 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 008076288 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 004149248 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 002538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 001984000 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 000903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-08-08 22:19 - 2017-08-01 20:27 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2017-08-08 22:19 - 2017-08-01 20:26 - 001949696 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll
2017-08-08 22:19 - 2017-08-01 20:26 - 001513472 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-08-08 22:19 - 2017-08-01 20:24 - 003299840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-08-08 22:19 - 2017-08-01 20:24 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-08-08 22:19 - 2017-08-01 19:20 - 002264344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-08-08 22:19 - 2017-08-01 19:20 - 001431232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-08-08 22:19 - 2017-08-01 19:20 - 000781144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-08-08 22:19 - 2017-08-01 19:20 - 000116576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2017-08-08 22:19 - 2017-08-01 19:19 - 001980776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-08-08 22:19 - 2017-08-01 19:19 - 000577976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-08-08 22:19 - 2017-08-01 19:19 - 000339896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2017-08-08 22:19 - 2017-08-01 19:19 - 000266080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2017-08-08 22:19 - 2017-08-01 19:19 - 000120416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2017-08-08 22:19 - 2017-08-01 19:18 - 000139104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2017-08-08 22:19 - 2017-08-01 19:16 - 006665952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-08-08 22:19 - 2017-08-01 19:16 - 004023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-08-08 22:19 - 2017-08-01 19:16 - 001845512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-08-08 22:19 - 2017-08-01 19:15 - 020967840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-08-08 22:19 - 2017-08-01 19:15 - 001360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-08-08 22:19 - 2017-08-01 19:15 - 001277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-08-08 22:19 - 2017-08-01 19:15 - 000981888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-08-08 22:19 - 2017-08-01 19:10 - 000306800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2017-08-08 22:19 - 2017-08-01 19:07 - 005686784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-08-08 22:19 - 2017-08-01 18:59 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tokenbinding.dll
2017-08-08 22:19 - 2017-08-01 18:58 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerUI.dll
2017-08-08 22:19 - 2017-08-01 18:56 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-08-08 22:19 - 2017-08-01 18:56 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2017-08-08 22:19 - 2017-08-01 18:55 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-08-08 22:19 - 2017-08-01 18:54 - 000505856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2017-08-08 22:19 - 2017-08-01 18:54 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-08-08 22:19 - 2017-08-01 18:54 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-08-08 22:19 - 2017-08-01 18:53 - 000557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-08-08 22:19 - 2017-08-01 18:52 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2017-08-08 22:19 - 2017-08-01 18:52 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000306688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-08-08 22:19 - 2017-08-01 18:51 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2017-08-08 22:19 - 2017-08-01 18:50 - 000431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2017-08-08 22:19 - 2017-08-01 18:50 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-08-08 22:19 - 2017-08-01 18:50 - 000260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Phoneutil.dll
2017-08-08 22:19 - 2017-08-01 18:50 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-08-08 22:19 - 2017-08-01 18:49 - 004615168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-08-08 22:19 - 2017-08-01 18:48 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-08-08 22:19 - 2017-08-01 18:48 - 000267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000787968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000396288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2017-08-08 22:19 - 2017-08-01 18:45 - 002333184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-08-08 22:19 - 2017-08-01 18:45 - 001985536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll
2017-08-08 22:19 - 2017-08-01 18:42 - 018364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-08-08 22:19 - 2017-08-01 18:41 - 000248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2017-08-08 22:19 - 2017-08-01 18:40 - 019415040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-08-08 22:19 - 2017-08-01 18:40 - 012187136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-08-08 22:19 - 2017-08-01 18:39 - 007626240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-08-08 22:19 - 2017-08-01 18:39 - 001255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-08-08 22:19 - 2017-08-01 18:38 - 000458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2017-08-08 22:19 - 2017-08-01 18:37 - 012349440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-08-08 22:19 - 2017-08-01 18:37 - 003520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2017-08-08 22:19 - 2017-08-01 18:37 - 002641920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-08-08 22:19 - 2017-08-01 18:37 - 000647168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comuid.dll
2017-08-08 22:19 - 2017-08-01 18:37 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.InkControls.dll
2017-08-08 22:19 - 2017-08-01 18:36 - 007468544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-08-08 22:19 - 2017-08-01 18:35 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2017-08-08 22:19 - 2017-08-01 18:34 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2017-08-08 22:19 - 2017-08-01 18:34 - 000886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-08-08 22:19 - 2017-08-01 18:34 - 000709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2017-08-08 22:19 - 2017-08-01 18:33 - 006031872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-08-08 22:19 - 2017-08-01 18:33 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2017-08-08 22:19 - 2017-08-01 18:32 - 002682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2017-08-08 22:19 - 2017-08-01 18:32 - 002648576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 003664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 000773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-08-08 22:19 - 2017-08-01 18:31 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 000598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 000566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 000542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 002997248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-08-08 22:19 - 2017-08-01 18:30 - 002482688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 001886720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 001013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 000751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 000711168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-08-08 22:19 - 2017-08-01 18:29 - 003106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-08-08 22:19 - 2017-08-01 18:28 - 000783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswdat10.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000616448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrepl40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjtes40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjter40.dll
2017-08-08 22:19 - 2017-07-12 08:17 - 000081760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2017-08-08 22:19 - 2017-07-12 08:15 - 002213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-08-08 22:19 - 2017-07-12 08:15 - 000496872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-08-08 22:19 - 2017-07-12 08:12 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-08-08 22:19 - 2017-07-12 08:12 - 001573280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-08-08 22:19 - 2017-07-12 08:09 - 001181024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-08-08 22:19 - 2017-07-12 08:02 - 000402776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-08-08 22:19 - 2017-07-12 08:01 - 000715104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2017-08-08 22:19 - 2017-07-12 08:01 - 000156000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2017-08-08 22:19 - 2017-07-12 08:00 - 000223072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-08-08 22:19 - 2017-07-12 08:00 - 000160608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2017-08-08 22:19 - 2017-07-12 08:00 - 000095584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys
2017-08-08 22:19 - 2017-07-12 07:59 - 000857952 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2017-08-08 22:19 - 2017-07-12 07:59 - 000148832 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2017-08-08 22:19 - 2017-07-12 07:56 - 000277856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2017-08-08 22:19 - 2017-07-12 07:55 - 000607072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2017-08-08 22:19 - 2017-07-12 07:55 - 000111968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2017-08-08 22:19 - 2017-07-12 07:52 - 004312760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-08-08 22:19 - 2017-07-12 07:35 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dabapi.dll
2017-08-08 22:19 - 2017-07-12 07:32 - 000227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\container.dll
2017-08-08 22:19 - 2017-07-12 07:32 - 000068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\frprov.dll
2017-08-08 22:19 - 2017-07-12 07:31 - 000130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll
2017-08-08 22:19 - 2017-07-12 07:31 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll
2017-08-08 22:19 - 2017-07-12 07:30 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshhttp.dll
2017-08-08 22:19 - 2017-07-12 07:29 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-08-08 22:19 - 2017-07-12 07:29 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\httpapi.dll
2017-08-08 22:19 - 2017-07-12 07:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2017-08-08 22:19 - 2017-07-12 07:24 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmdisk0101.sys
2017-08-08 22:19 - 2017-07-12 07:24 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll
2017-08-08 22:19 - 2017-07-12 07:23 - 000671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2017-08-08 22:19 - 2017-07-12 07:23 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-08-08 22:19 - 2017-07-12 07:23 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll
2017-08-08 22:19 - 2017-07-12 07:23 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-08-08 22:19 - 2017-07-12 07:23 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2017-08-08 22:19 - 2017-07-12 07:21 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-08-08 22:19 - 2017-07-12 07:21 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2017-08-08 22:19 - 2017-07-12 07:19 - 006474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-08-08 22:19 - 2017-07-12 07:18 - 000525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-08-08 22:19 - 2017-07-12 07:17 - 000552960 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-08-08 22:19 - 2017-07-12 07:15 - 000893440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2017-08-08 22:19 - 2017-07-12 07:15 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll
2017-08-08 22:19 - 2017-07-12 07:14 - 000536064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2017-08-08 22:19 - 2017-07-12 07:13 - 000855040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe
2017-08-08 22:19 - 2017-07-12 07:12 - 002750464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-08-08 22:19 - 2017-07-12 07:11 - 002154496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2017-08-08 22:19 - 2017-07-12 07:10 - 000878592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2017-08-08 22:19 - 2017-07-12 07:10 - 000546304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2017-08-08 22:19 - 2017-07-12 07:09 - 000641024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-08-08 22:19 - 2017-07-12 07:07 - 001572352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-08-08 22:19 - 2017-07-12 07:06 - 000549376 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-08-08 22:19 - 2017-07-12 07:05 - 000565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2017-08-08 22:19 - 2017-07-12 07:03 - 000779776 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2017-08-08 22:19 - 2017-07-12 07:01 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2017-08-08 22:19 - 2017-07-12 07:00 - 002370048 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-08-08 22:19 - 2017-07-12 06:58 - 001130496 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-08-08 22:19 - 2017-07-12 06:58 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-08-08 22:19 - 2017-07-12 04:49 - 000448629 _____ C:\Windows\system32\ApnDatabase.xml
2017-08-08 22:19 - 2017-03-04 08:05 - 000134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2017-08-08 22:19 - 2016-09-07 07:24 - 000057400 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-08-08 22:19 - 2016-08-02 10:13 - 001081856 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2017-08-08 22:18 - 2017-08-01 21:31 - 007780192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-08-08 22:18 - 2017-08-01 21:25 - 000168800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-08-08 22:18 - 2017-08-01 21:21 - 002759712 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-08-08 22:18 - 2017-08-01 21:21 - 000624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-08-08 22:18 - 2017-08-01 21:21 - 000295264 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2017-08-08 22:18 - 2017-08-01 21:21 - 000146784 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2017-08-08 22:18 - 2017-08-01 21:21 - 000124072 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2017-08-08 22:18 - 2017-08-01 21:21 - 000026976 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2017-08-08 22:18 - 2017-08-01 21:20 - 002446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-08-08 22:18 - 2017-08-01 21:20 - 000684344 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-08-08 22:18 - 2017-08-01 21:20 - 000383776 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2017-08-08 22:18 - 2017-08-01 21:20 - 000144736 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-08-08 22:18 - 2017-08-01 21:20 - 000079712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys
2017-08-08 22:18 - 2017-08-01 21:17 - 001600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-08-08 22:18 - 2017-08-01 21:17 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-08-08 22:18 - 2017-08-01 21:13 - 001102176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-08-08 22:18 - 2017-08-01 21:01 - 007218176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-08-08 22:18 - 2017-08-01 20:54 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\tokenbinding.dll
2017-08-08 22:18 - 2017-08-01 20:52 - 022569472 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-08-08 22:18 - 2017-08-01 20:52 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmclr.sys
2017-08-08 22:18 - 2017-08-01 20:48 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-08-08 22:18 - 2017-08-01 20:47 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2017-08-08 22:18 - 2017-08-01 20:47 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2017-08-08 22:18 - 2017-08-01 20:47 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll
2017-08-08 22:18 - 2017-08-01 20:47 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerUI.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000094720 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2017-08-08 22:18 - 2017-08-01 20:45 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-08-08 22:18 - 2017-08-01 20:45 - 000451072 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2017-08-08 22:18 - 2017-08-01 20:45 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-08-08 22:18 - 2017-08-01 20:45 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2017-08-08 22:18 - 2017-08-01 20:44 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2017-08-08 22:18 - 2017-08-01 20:43 - 000966144 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2017-08-08 22:18 - 2017-08-01 20:43 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-08-08 22:18 - 2017-08-01 20:43 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2017-08-08 22:18 - 2017-08-01 20:42 - 000775168 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-08-08 22:18 - 2017-08-01 20:41 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2017-08-08 22:18 - 2017-08-01 20:40 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-08-08 22:18 - 2017-08-01 20:40 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-08-08 22:18 - 2017-08-01 20:40 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2017-08-08 22:18 - 2017-08-01 20:39 - 009129984 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-08-08 22:18 - 2017-08-01 20:39 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2017-08-08 22:18 - 2017-08-01 20:39 - 000353280 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2017-08-08 22:18 - 2017-08-01 20:39 - 000323072 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2017-08-08 22:18 - 2017-08-01 20:38 - 001589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2017-08-08 22:18 - 2017-08-01 20:36 - 023677440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-08-08 22:18 - 2017-08-01 20:36 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2017-08-08 22:18 - 2017-08-01 20:34 - 001837056 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2017-08-08 22:18 - 2017-08-01 20:33 - 004749824 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-08-08 22:18 - 2017-08-01 20:33 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\windowslivelogin.dll
2017-08-08 22:18 - 2017-08-01 20:33 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2017-08-08 22:18 - 2017-08-01 20:32 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2017-08-08 22:18 - 2017-08-01 20:30 - 002916864 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-08-08 22:18 - 2017-08-01 20:30 - 001643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-08-08 22:18 - 2017-08-01 20:30 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-08-08 22:18 - 2017-08-01 20:30 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2017-08-08 22:18 - 2017-08-01 20:29 - 000874496 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2017-08-08 22:18 - 2017-08-01 20:28 - 002895360 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-08-08 22:18 - 2017-08-01 20:28 - 001490432 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-08-08 22:18 - 2017-08-01 20:27 - 002695680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-08-08 22:18 - 2017-08-01 20:27 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2017-08-08 22:18 - 2017-08-01 20:27 - 000716800 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2017-08-08 22:18 - 2017-08-01 20:26 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2017-08-08 22:18 - 2017-08-01 20:25 - 001726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-08-08 22:18 - 2017-08-01 20:24 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-08-08 22:18 - 2017-08-01 20:24 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-08-08 22:18 - 2017-08-01 20:23 - 003615744 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-08-08 22:18 - 2017-08-01 20:23 - 000886784 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2017-08-08 22:18 - 2017-08-01 18:47 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-08-08 22:18 - 2017-07-12 08:16 - 000646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-08-08 22:18 - 2017-07-12 08:15 - 000101216 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-08-08 22:18 - 2017-07-12 08:14 - 001886896 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-08-08 22:18 - 2017-07-12 08:13 - 002253664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-08-08 22:18 - 2017-07-12 08:02 - 002186592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-08-08 22:18 - 2017-07-12 07:59 - 001100128 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2017-08-08 22:18 - 2017-07-12 07:59 - 000989024 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2017-08-08 22:18 - 2017-07-12 07:59 - 000947040 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2017-08-08 22:18 - 2017-07-12 07:55 - 004674872 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-08-08 22:18 - 2017-07-12 07:25 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcnfs.sys
2017-08-08 22:18 - 2017-07-12 07:24 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\dabapi.dll
2017-08-08 22:18 - 2017-07-12 07:23 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\container.dll
2017-08-08 22:18 - 2017-07-12 07:23 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\frprov.dll
2017-08-08 22:18 - 2017-07-12 07:22 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
2017-08-08 22:18 - 2017-07-12 07:21 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2017-08-08 22:18 - 2017-07-12 07:21 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2017-08-08 22:18 - 2017-07-12 07:20 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2017-08-08 22:18 - 2017-07-12 07:19 - 000488960 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2017-08-08 22:18 - 2017-07-12 07:19 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-08-08 22:18 - 2017-07-12 07:19 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2017-08-08 22:18 - 2017-07-12 07:17 - 000252416 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2017-08-08 22:18 - 2017-07-12 07:16 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2017-08-08 22:18 - 2017-07-12 07:16 - 000142848 _____ (Microsoft Corporation) C:\Windows\system32\profsvcext.dll
2017-08-08 22:18 - 2017-07-12 07:15 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-08-08 22:18 - 2017-07-12 07:13 - 001478656 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2017-08-08 22:18 - 2017-07-12 07:12 - 000970240 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2017-08-08 22:18 - 2017-07-12 07:12 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2017-08-08 22:18 - 2017-07-12 07:12 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
2017-08-08 22:18 - 2017-07-12 07:11 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2017-08-08 22:18 - 2017-07-12 07:10 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2017-08-08 22:18 - 2017-07-12 07:09 - 003291136 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-08-08 22:18 - 2017-07-12 07:08 - 002861056 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2017-08-08 22:18 - 2017-07-12 07:07 - 000954880 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2017-08-08 22:18 - 2017-07-12 07:07 - 000629248 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2017-08-08 22:18 - 2017-07-12 07:06 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-08-08 22:18 - 2017-07-12 07:06 - 000937984 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-08-08 22:18 - 2017-07-12 07:03 - 001692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-08-08 22:18 - 2017-07-12 07:03 - 000826880 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2017-08-08 22:18 - 2017-07-12 07:02 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-08-08 22:18 - 2017-07-12 07:01 - 002279424 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-08-08 22:18 - 2017-07-12 06:59 - 006664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-08-08 22:18 - 2017-07-12 06:59 - 002318336 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-08-08 22:18 - 2017-07-12 06:59 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2017-08-08 22:18 - 2017-07-12 06:58 - 001231872 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-08-08 22:18 - 2017-07-12 06:57 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-08-08 22:18 - 2017-07-12 06:56 - 001826816 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-08-08 22:18 - 2017-03-04 08:57 - 000372432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2017-08-08 22:18 - 2017-03-04 08:16 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2017-08-08 22:18 - 2017-03-04 08:14 - 000588288 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2017-08-08 22:18 - 2017-03-04 08:07 - 000909312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-08-08 22:18 - 2017-03-04 08:05 - 001328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 035853432 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 028969080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000981616 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000932984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000618616 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000507840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000054680 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 040248440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 035323000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 004172224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 003604600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 001996920 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438494.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 001606776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438494.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 001076848 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 001013696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 000733816 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 000593016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2017-08-03 16:01 - 2017-08-03 16:01 - 012569200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-08-03 16:01 - 2017-08-03 16:01 - 012248048 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-08-03 16:01 - 2017-08-03 16:01 - 010079112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 010588440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 001298728 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 001014408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 000797392 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 000704936 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 000631784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 000592032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-08-03 15:59 - 2017-08-03 15:59 - 013783968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-08-03 15:59 - 2017-08-03 15:59 - 011701872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-08-03 15:59 - 2017-08-03 15:59 - 003752696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-08-03 11:44 - 2017-08-03 11:44 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-08-03 11:44 - 2017-08-03 11:44 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2017-07-27 10:55 - 2017-07-27 10:55 - 000003382 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-553626503-1851697530-1516296009-1001
2017-07-23 01:18 - 2017-07-23 01:18 - 000400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-21 15:37 - 2017-04-13 08:03 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-08-21 14:40 - 2017-04-16 17:40 - 000004216 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E921B203-2F95-4B24-A80A-3532FE4CC68F}
2017-08-21 12:13 - 2017-04-13 08:08 - 004130426 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-21 12:13 - 2016-07-17 00:25 - 001807338 _____ C:\Windows\system32\perfh005.dat
2017-08-21 12:13 - 2016-07-17 00:25 - 000503750 _____ C:\Windows\system32\perfc005.dat
2017-08-21 12:06 - 2017-04-13 08:51 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-21 12:06 - 2017-04-13 08:22 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-08-21 12:06 - 2017-04-13 08:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-21 11:54 - 2017-04-13 08:09 - 000000000 ____D C:\Users\Gabriela
2017-08-21 11:54 - 2016-07-16 08:04 - 000262144 _____ C:\Windows\system32\config\BBI
2017-08-21 11:30 - 2016-07-16 13:45 - 000000000 ____D C:\Windows\INF
2017-08-21 08:04 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\AppReadiness
2017-08-21 00:53 - 2017-07-02 16:39 - 000000000 ____D C:\Users\Gabriela\AppData\Roaming\vlc
2017-08-20 14:07 - 2017-04-20 00:36 - 000000000 ____D C:\Users\Gabriela\AppData\Local\ElevatedDiagnostics
2017-08-20 14:07 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\NDF
2017-08-20 07:32 - 2017-04-13 09:03 - 000000000 ____D C:\Windows\Panther
2017-08-20 07:31 - 2017-07-10 08:22 - 000000036 _____ C:\Windows\progress.ini
2017-08-20 07:31 - 2017-07-10 07:51 - 000000000 ____D C:\Windows10Upgrade
2017-08-20 07:31 - 2017-04-14 04:55 - 000001890 _____ C:\Windows\diagwrn.xml
2017-08-20 07:31 - 2017-04-14 04:55 - 000001890 _____ C:\Windows\diagerr.xml
2017-08-20 07:28 - 2017-07-10 07:51 - 000000000 ___HD C:\$GetCurrent
2017-08-20 07:07 - 2016-07-16 13:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-20 00:53 - 2017-04-13 11:56 - 000544424 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2017-08-20 00:37 - 2017-04-13 08:59 - 000000000 ____D C:\Users\Gabriela\AppData\Local\CrashDumps
2017-08-20 00:26 - 2017-04-14 11:59 - 000000000 ____D C:\Users\Gabriela\AppData\LocalLow\Mozilla
2017-08-17 09:45 - 2017-04-16 12:51 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-12 22:33 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-08-12 22:33 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\Macromed
2017-08-12 22:32 - 2017-04-14 12:10 - 000000000 ____D C:\Users\Gabriela\AppData\Local\Adobe
2017-08-12 20:26 - 2017-04-30 15:16 - 000000000 ____D C:\Program Files (x86)\Adobe
2017-08-12 17:05 - 2017-04-14 20:34 - 000004022 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1492194840
2017-08-12 17:05 - 2017-04-14 20:34 - 000001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-08-12 14:12 - 2017-04-13 08:09 - 000000000 ____D C:\Users\Gabriela\AppData\Roaming\Adobe
2017-08-11 21:26 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\LiveKernelReports
2017-08-11 09:59 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\rescache
2017-08-10 01:18 - 2017-04-14 20:32 - 001015880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2017-08-10 01:18 - 2017-04-14 20:32 - 000146704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2017-08-09 18:28 - 2016-07-16 08:04 - 000032768 _____ C:\Windows\system32\config\ELAM
2017-08-09 08:44 - 2017-04-13 08:09 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-08-09 08:43 - 2017-04-13 08:03 - 000332304 _____ C:\Windows\system32\FNTCACHE.DAT
2017-08-09 02:38 - 2016-07-17 00:30 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ___RD C:\Program Files\Windows Defender
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\oobe
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\ShellExperiences
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\Provisioning
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\PolicyDefinitions
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\bcastdvr
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Common Files\System
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-08-09 01:55 - 2016-07-16 13:36 - 000000000 ____D C:\Windows\CbsTemp
2017-08-09 01:30 - 2017-04-13 11:53 - 000000000 ____D C:\Windows\system32\MRT
2017-08-09 01:29 - 2017-04-13 11:53 - 140394280 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-08-09 00:32 - 2017-04-13 08:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-08-09 00:30 - 2017-04-13 08:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-08-03 16:08 - 2017-03-23 15:40 - 001624152 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-08-03 16:08 - 2017-03-23 15:40 - 000227416 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-08-03 15:59 - 2017-01-04 15:02 - 004255760 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-08-03 11:44 - 2017-01-04 10:07 - 000046463 _____ C:\Windows\system32\nvinfo.pb
2017-07-31 17:14 - 2016-07-16 13:49 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-07-31 17:14 - 2016-07-16 13:49 - 000177648 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-07-27 10:55 - 2017-04-13 08:11 - 000002396 _____ C:\Users\Gabriela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-07-27 10:55 - 2017-04-13 08:11 - 000000000 ___RD C:\Users\Gabriela\OneDrive
2017-07-24 21:04 - 2017-07-08 20:25 - 000000000 ____D C:\Users\Gabriela\AppData\Roaming\Pro Cycling Manager 2017
2017-07-23 01:18 - 2017-06-07 09:05 - 000061304 _____ () C:\Windows\system32\Drivers\lpsport.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.150076550601503
2017-07-23 01:18 - 2017-04-14 20:32 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000003994 _____ C:\Windows\System32\Tasks\Avast Emergency Update

==================== Files in the root of some directories =======

2017-08-16 18:27 - 2017-08-21 15:49 - 000029696 _____ () C:\Users\Gabriela\AppData\Local\MSGBOX.EXE
2017-08-09 00:25 - 2017-08-09 20:53 - 000007598 _____ () C:\Users\Gabriela\AppData\Local\resmon.resmoncfg
2017-04-14 20:52 - 2017-04-14 20:52 - 000000003 _____ () C:\Users\Gabriela\AppData\Local\updater.log
2017-04-14 20:52 - 2017-05-06 20:13 - 000000425 _____ () C:\Users\Gabriela\AppData\Local\UserProducts.xml
2017-04-13 08:21 - 2017-04-13 08:21 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-08-18 10:15

==================== End of FRST.txt ============================

#2 Příspěvek od **Rudy** » 22 srp 2017 16:04

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

burrry · #3 Příspěvek od **burrry** » 22 srp 2017 18:17

# AdwCleaner 7.0.1.0 - Logfile created on Tue Aug 22 17:14:35 2017
# Updated on 2017/05/08 by Malwarebytes
# Database: 07-31-2017.1
# Running on Windows 10 Pro (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

PUP.Optional.Reimage, C:\Windows\Reimage.ini

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
PUP.Optional.Reimage, [Key] - HKU\S-1-5-21-553626503-1851697530-1516296009-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
PUP.Optional.Reimage, [Key] - HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
PUP.Optional.Reimage, [Key] - HKLM\SOFTWARE\Reimage
PUP.Optional.Reimage, [Key] - HKU\S-1-5-21-553626503-1851697530-1516296009-1001\Software\Reimage
PUP.Optional.Reimage, [Key] - HKCU\Software\Reimage

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

burrry · #4 Příspěvek od **burrry** » 22 srp 2017 18:25

Asi to měl být log potom čištění, njn 2x čti jednou konej, jinak ještě jednou děkuji za pomoc s přihlášením

# AdwCleaner 7.0.1.0 - Logfile created on Tue Aug 22 17:15:58 2017
# Updated on 2017/05/08 by Malwarebytes
# Running on Windows 10 Pro (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

Deleted: C:\Windows\Reimage.ini

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Deleted: [Key] - HKU\S-1-5-21-553626503-1851697530-1516296009-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Deleted: [Key] - HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Deleted: [Key] - HKLM\SOFTWARE\Reimage
Deleted: [Key] - HKU\S-1-5-21-553626503-1851697530-1516296009-1001\Software\Reimage
Deleted: [Key] - HKCU\Software\Reimage

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [2017 B] - [2017/8/22 17:14:35]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

#5 Příspěvek od **Rudy** » 22 srp 2017 18:58

Dejte nový log FRST.

burrry · #6 Příspěvek od **burrry** » 22 srp 2017 19:50

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2017
Ran by Gabriela (administrator) on DESKTOP-AKNEE8R (22-08-2017 20:46:10)
Running from D:\Gabriela\Desktop
Loaded Profiles: Gabriela (Available Profiles: defaultuser0 & Gabriela)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Electronic Arts) D:\FIFA 16\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213832 2017-07-23] (AVAST Software)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [26814632 2015-07-31] (Microsoft Corporation)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [EADM] => D:\FIFA 16\Origin\Origin.exe [3046264 2017-04-23] (Electronic Arts)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [OV2_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 2\OV2Monitor.exe [231784 2013-01-10] (OLYMPUS IMAGING CORP.)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\MountPoints2: {380b215c-2141-11e7-989f-40167e694903} - "H:\Setup.exe"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{cdef9176-437f-4956-9513-56d6355d4cad}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: fwxqikqx.default-1503407394199
FF ProfilePath: C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341 [2017-07-23]
FF Extension: (Avast SafePrice) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341\Extensions\sp@avast.com.xpi [2017-06-29]
FF Extension: (Avast Online Security) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341\Extensions\wrc@avast.com.xpi [2017-06-29]
FF ProfilePath: C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199 [2017-08-22]
FF Homepage: Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199 -> hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_151.dll [2017-08-12] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-12] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] ()
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7430992 2017-07-23] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263312 2017-07-23] (AVAST Software)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-07-19] (NVIDIA Corporation)
S3 Origin Client Service; D:\FIFA 16\Origin\OriginClientService.exe [2146704 2017-04-23] (Electronic Arts)
R2 Origin Web Helper Service; D:\FIFA 16\Origin\OriginWebHelperService.exe [3115928 2017-04-23] (Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889888 2017-08-01] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-08-01] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] ()
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-07-23] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-07-23] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-07-23] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-07-23] (AVAST Software s.r.o.)
S3 aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [91304 2017-04-14] (AVAST Software)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-06-29] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41800 2017-06-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146704 2017-08-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-06-29] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-06-29] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015880 2017-08-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-06-29] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-06-29] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-07-01] (AVAST Software)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_c0f7a2f5b2e4e6e0\nvlddmkm.sys [15668664 2017-08-03] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-22 19:13 - 2017-08-22 19:14 - 000000000 ____D C:\AdwCleaner
2017-08-22 15:07 - 2017-08-22 15:07 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-22 15:07 - 2017-08-22 15:07 - 000000993 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-22 15:07 - 2017-08-22 15:07 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-22 15:07 - 2017-08-22 15:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-21 15:09 - 2017-08-22 20:46 - 000000000 ____D C:\FRST
2017-08-20 07:32 - 2017-08-20 07:34 - 000000000 ___HD C:\$WINDOWS.~BT
2017-08-16 18:27 - 2017-08-22 20:45 - 000029696 _____ C:\Users\Gabriela\AppData\Local\MSGBOX.EXE
2017-08-12 23:11 - 2017-08-12 23:11 - 000000000 ____D C:\Users\Gabriela\AppData\Roaming\Macromedia
2017-08-12 20:05 - 2017-08-12 20:05 - 000000000 ____D C:\Users\Gabriela\AppData\Local\Opera Software
2017-08-12 15:39 - 2017-08-12 15:39 - 000000000 ____D C:\Windows\LastGood.Tmp
2017-08-11 11:32 - 2017-08-11 11:32 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-08-09 20:30 - 2017-08-09 20:30 - 004696960 _____ (PS Media s.r.o.) C:\Windows\SysWOW64\ssins.exe
2017-08-09 20:30 - 2017-08-09 20:30 - 001363456 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2017-08-09 20:30 - 2017-08-09 20:30 - 000359936 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2017-08-09 20:30 - 2017-08-09 20:30 - 000002824 _____ C:\Windows\SysWOW64\ca.pem
2017-08-09 20:30 - 2017-08-09 20:30 - 000002269 _____ C:\Windows\SysWOW64\cert.crt
2017-08-09 20:30 - 2017-08-09 20:30 - 000001679 _____ C:\Windows\SysWOW64\keyfile.key
2017-08-09 20:30 - 2017-08-09 20:30 - 000000079 _____ C:\Windows\SysWOW64\ssinstall-uninstall.bat
2017-08-09 00:32 - 2017-08-09 00:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-08-09 00:31 - 2017-08-09 00:31 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-08-09 00:31 - 2017-07-19 00:38 - 000135800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-08-09 00:31 - 2017-03-10 23:17 - 000536864 _____ C:\Windows\system32\vulkan-1.dll
2017-08-09 00:31 - 2017-03-10 23:17 - 000525600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-08-09 00:31 - 2017-03-10 23:17 - 000254240 _____ C:\Windows\system32\vulkaninfo.exe
2017-08-09 00:31 - 2017-03-10 23:17 - 000233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-08-09 00:25 - 2017-08-22 12:42 - 000007612 _____ C:\Users\Gabriela\AppData\Local\resmon.resmoncfg
2017-08-08 22:19 - 2017-08-01 21:32 - 000133984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-08-08 22:19 - 2017-08-01 21:29 - 000376672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2017-08-08 22:19 - 2017-08-01 21:27 - 000118112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-08-08 22:19 - 2017-08-01 21:22 - 001860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-08-08 22:19 - 2017-08-01 21:22 - 000360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-08-08 22:19 - 2017-08-01 21:21 - 000857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-08-08 22:19 - 2017-08-01 21:20 - 000557408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-08-08 22:19 - 2017-08-01 21:18 - 008169536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-08-08 22:19 - 2017-08-01 21:18 - 004260064 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-08-08 22:19 - 2017-08-01 21:18 - 001983408 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-08-08 22:19 - 2017-08-01 21:18 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-08-08 22:19 - 2017-08-01 21:18 - 000092512 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-08-08 22:19 - 2017-08-01 21:17 - 022220856 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-08-08 22:19 - 2017-08-01 21:17 - 001072248 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-08-08 22:19 - 2017-08-01 21:17 - 000244816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-08-08 22:19 - 2017-08-01 21:13 - 002532192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-08-08 22:19 - 2017-08-01 21:13 - 000387872 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-08-08 22:19 - 2017-08-01 20:58 - 000299008 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2017-08-08 22:19 - 2017-08-01 20:57 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2017-08-08 22:19 - 2017-08-01 20:57 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-08-08 22:19 - 2017-08-01 20:53 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-08-08 22:19 - 2017-08-01 20:52 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-08-08 22:19 - 2017-08-01 20:51 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-08-08 22:19 - 2017-08-01 20:50 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2017-08-08 22:19 - 2017-08-01 20:48 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-08-08 22:19 - 2017-08-01 20:48 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-08-08 22:19 - 2017-08-01 20:47 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-08-08 22:19 - 2017-08-01 20:47 - 000691200 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2017-08-08 22:19 - 2017-08-01 20:46 - 000590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-08-08 22:19 - 2017-08-01 20:46 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-08-08 22:19 - 2017-08-01 20:46 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\Phoneutil.dll
2017-08-08 22:19 - 2017-08-01 20:46 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-08-08 22:19 - 2017-08-01 20:45 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-08-08 22:19 - 2017-08-01 20:45 - 000561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-08-08 22:19 - 2017-08-01 20:45 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-08-08 22:19 - 2017-08-01 20:44 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2017-08-08 22:19 - 2017-08-01 20:43 - 000963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2017-08-08 22:19 - 2017-08-01 20:42 - 006288384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-08-08 22:19 - 2017-08-01 20:38 - 013441536 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-08-08 22:19 - 2017-08-01 20:37 - 013091328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-08-08 22:19 - 2017-08-01 20:35 - 001908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-08-08 22:19 - 2017-08-01 20:32 - 008114688 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-08-08 22:19 - 2017-08-01 20:32 - 004596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2017-08-08 22:19 - 2017-08-01 20:32 - 003401216 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-08-08 22:19 - 2017-08-01 20:29 - 004743680 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-08-08 22:19 - 2017-08-01 20:29 - 002852864 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 008076288 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 004149248 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 002538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 001984000 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-08-08 22:19 - 2017-08-01 20:27 - 000903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-08-08 22:19 - 2017-08-01 20:27 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2017-08-08 22:19 - 2017-08-01 20:26 - 001949696 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll
2017-08-08 22:19 - 2017-08-01 20:26 - 001513472 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-08-08 22:19 - 2017-08-01 20:24 - 003299840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-08-08 22:19 - 2017-08-01 20:24 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-08-08 22:19 - 2017-08-01 19:20 - 002264344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-08-08 22:19 - 2017-08-01 19:20 - 001431232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-08-08 22:19 - 2017-08-01 19:20 - 000781144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-08-08 22:19 - 2017-08-01 19:20 - 000116576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2017-08-08 22:19 - 2017-08-01 19:19 - 001980776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-08-08 22:19 - 2017-08-01 19:19 - 000577976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-08-08 22:19 - 2017-08-01 19:19 - 000339896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2017-08-08 22:19 - 2017-08-01 19:19 - 000266080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2017-08-08 22:19 - 2017-08-01 19:19 - 000120416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2017-08-08 22:19 - 2017-08-01 19:18 - 000139104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2017-08-08 22:19 - 2017-08-01 19:16 - 006665952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-08-08 22:19 - 2017-08-01 19:16 - 004023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-08-08 22:19 - 2017-08-01 19:16 - 001845512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-08-08 22:19 - 2017-08-01 19:15 - 020967840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-08-08 22:19 - 2017-08-01 19:15 - 001360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-08-08 22:19 - 2017-08-01 19:15 - 001277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-08-08 22:19 - 2017-08-01 19:15 - 000981888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-08-08 22:19 - 2017-08-01 19:10 - 000306800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2017-08-08 22:19 - 2017-08-01 19:07 - 005686784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-08-08 22:19 - 2017-08-01 18:59 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tokenbinding.dll
2017-08-08 22:19 - 2017-08-01 18:58 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerUI.dll
2017-08-08 22:19 - 2017-08-01 18:56 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-08-08 22:19 - 2017-08-01 18:56 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2017-08-08 22:19 - 2017-08-01 18:55 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-08-08 22:19 - 2017-08-01 18:54 - 000505856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2017-08-08 22:19 - 2017-08-01 18:54 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-08-08 22:19 - 2017-08-01 18:54 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-08-08 22:19 - 2017-08-01 18:53 - 000557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-08-08 22:19 - 2017-08-01 18:52 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2017-08-08 22:19 - 2017-08-01 18:52 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000306688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2017-08-08 22:19 - 2017-08-01 18:51 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-08-08 22:19 - 2017-08-01 18:51 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2017-08-08 22:19 - 2017-08-01 18:50 - 000431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2017-08-08 22:19 - 2017-08-01 18:50 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-08-08 22:19 - 2017-08-01 18:50 - 000260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Phoneutil.dll
2017-08-08 22:19 - 2017-08-01 18:50 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-08-08 22:19 - 2017-08-01 18:49 - 004615168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-08-08 22:19 - 2017-08-01 18:48 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-08-08 22:19 - 2017-08-01 18:48 - 000267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000787968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000396288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2017-08-08 22:19 - 2017-08-01 18:47 - 000368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2017-08-08 22:19 - 2017-08-01 18:45 - 002333184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-08-08 22:19 - 2017-08-01 18:45 - 001985536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll
2017-08-08 22:19 - 2017-08-01 18:42 - 018364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-08-08 22:19 - 2017-08-01 18:41 - 000248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2017-08-08 22:19 - 2017-08-01 18:40 - 019415040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-08-08 22:19 - 2017-08-01 18:40 - 012187136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-08-08 22:19 - 2017-08-01 18:39 - 007626240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-08-08 22:19 - 2017-08-01 18:39 - 001255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-08-08 22:19 - 2017-08-01 18:38 - 000458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2017-08-08 22:19 - 2017-08-01 18:37 - 012349440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-08-08 22:19 - 2017-08-01 18:37 - 003520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2017-08-08 22:19 - 2017-08-01 18:37 - 002641920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-08-08 22:19 - 2017-08-01 18:37 - 000647168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comuid.dll
2017-08-08 22:19 - 2017-08-01 18:37 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.InkControls.dll
2017-08-08 22:19 - 2017-08-01 18:36 - 007468544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-08-08 22:19 - 2017-08-01 18:35 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2017-08-08 22:19 - 2017-08-01 18:34 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2017-08-08 22:19 - 2017-08-01 18:34 - 000886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-08-08 22:19 - 2017-08-01 18:34 - 000709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2017-08-08 22:19 - 2017-08-01 18:33 - 006031872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-08-08 22:19 - 2017-08-01 18:33 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2017-08-08 22:19 - 2017-08-01 18:32 - 002682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2017-08-08 22:19 - 2017-08-01 18:32 - 002648576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 003664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 000773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-08-08 22:19 - 2017-08-01 18:31 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 000598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 000566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2017-08-08 22:19 - 2017-08-01 18:31 - 000542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 002997248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-08-08 22:19 - 2017-08-01 18:30 - 002482688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 001886720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 001013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 000751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-08-08 22:19 - 2017-08-01 18:30 - 000711168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-08-08 22:19 - 2017-08-01 18:29 - 003106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-08-08 22:19 - 2017-08-01 18:28 - 000783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswdat10.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000616448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrepl40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjtes40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-08-08 22:19 - 2017-08-01 16:15 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjter40.dll
2017-08-08 22:19 - 2017-07-12 08:17 - 000081760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2017-08-08 22:19 - 2017-07-12 08:15 - 002213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-08-08 22:19 - 2017-07-12 08:15 - 000496872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-08-08 22:19 - 2017-07-12 08:12 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-08-08 22:19 - 2017-07-12 08:12 - 001573280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-08-08 22:19 - 2017-07-12 08:09 - 001181024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-08-08 22:19 - 2017-07-12 08:02 - 000402776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-08-08 22:19 - 2017-07-12 08:01 - 000715104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2017-08-08 22:19 - 2017-07-12 08:01 - 000156000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2017-08-08 22:19 - 2017-07-12 08:00 - 000223072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-08-08 22:19 - 2017-07-12 08:00 - 000160608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2017-08-08 22:19 - 2017-07-12 08:00 - 000095584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys
2017-08-08 22:19 - 2017-07-12 07:59 - 000857952 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2017-08-08 22:19 - 2017-07-12 07:59 - 000148832 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2017-08-08 22:19 - 2017-07-12 07:56 - 000277856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2017-08-08 22:19 - 2017-07-12 07:55 - 000607072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2017-08-08 22:19 - 2017-07-12 07:55 - 000111968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2017-08-08 22:19 - 2017-07-12 07:52 - 004312760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-08-08 22:19 - 2017-07-12 07:35 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dabapi.dll
2017-08-08 22:19 - 2017-07-12 07:32 - 000227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\container.dll
2017-08-08 22:19 - 2017-07-12 07:32 - 000068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\frprov.dll
2017-08-08 22:19 - 2017-07-12 07:31 - 000130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll
2017-08-08 22:19 - 2017-07-12 07:31 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll
2017-08-08 22:19 - 2017-07-12 07:30 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshhttp.dll
2017-08-08 22:19 - 2017-07-12 07:29 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-08-08 22:19 - 2017-07-12 07:29 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\httpapi.dll
2017-08-08 22:19 - 2017-07-12 07:25 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2017-08-08 22:19 - 2017-07-12 07:24 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmdisk0101.sys
2017-08-08 22:19 - 2017-07-12 07:24 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll
2017-08-08 22:19 - 2017-07-12 07:23 - 000671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2017-08-08 22:19 - 2017-07-12 07:23 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-08-08 22:19 - 2017-07-12 07:23 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll
2017-08-08 22:19 - 2017-07-12 07:23 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-08-08 22:19 - 2017-07-12 07:23 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2017-08-08 22:19 - 2017-07-12 07:21 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-08-08 22:19 - 2017-07-12 07:21 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2017-08-08 22:19 - 2017-07-12 07:19 - 006474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-08-08 22:19 - 2017-07-12 07:18 - 000525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-08-08 22:19 - 2017-07-12 07:17 - 000552960 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-08-08 22:19 - 2017-07-12 07:15 - 000893440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2017-08-08 22:19 - 2017-07-12 07:15 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll
2017-08-08 22:19 - 2017-07-12 07:14 - 000536064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2017-08-08 22:19 - 2017-07-12 07:13 - 000855040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe
2017-08-08 22:19 - 2017-07-12 07:12 - 002750464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-08-08 22:19 - 2017-07-12 07:11 - 002154496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2017-08-08 22:19 - 2017-07-12 07:10 - 000878592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2017-08-08 22:19 - 2017-07-12 07:10 - 000546304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2017-08-08 22:19 - 2017-07-12 07:09 - 000641024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-08-08 22:19 - 2017-07-12 07:07 - 001572352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-08-08 22:19 - 2017-07-12 07:06 - 000549376 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-08-08 22:19 - 2017-07-12 07:05 - 000565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2017-08-08 22:19 - 2017-07-12 07:03 - 000779776 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2017-08-08 22:19 - 2017-07-12 07:01 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2017-08-08 22:19 - 2017-07-12 07:00 - 002370048 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-08-08 22:19 - 2017-07-12 06:58 - 001130496 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-08-08 22:19 - 2017-07-12 06:58 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-08-08 22:19 - 2017-07-12 04:49 - 000448629 _____ C:\Windows\system32\ApnDatabase.xml
2017-08-08 22:19 - 2017-03-04 08:05 - 000134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2017-08-08 22:19 - 2016-09-07 07:24 - 000057400 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-08-08 22:19 - 2016-08-02 10:13 - 001081856 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2017-08-08 22:18 - 2017-08-01 21:31 - 007780192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-08-08 22:18 - 2017-08-01 21:25 - 000168800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-08-08 22:18 - 2017-08-01 21:21 - 002759712 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-08-08 22:18 - 2017-08-01 21:21 - 000624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-08-08 22:18 - 2017-08-01 21:21 - 000295264 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2017-08-08 22:18 - 2017-08-01 21:21 - 000146784 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2017-08-08 22:18 - 2017-08-01 21:21 - 000124072 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2017-08-08 22:18 - 2017-08-01 21:21 - 000026976 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2017-08-08 22:18 - 2017-08-01 21:20 - 002446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-08-08 22:18 - 2017-08-01 21:20 - 000684344 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-08-08 22:18 - 2017-08-01 21:20 - 000383776 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2017-08-08 22:18 - 2017-08-01 21:20 - 000144736 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-08-08 22:18 - 2017-08-01 21:20 - 000079712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys
2017-08-08 22:18 - 2017-08-01 21:17 - 001600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-08-08 22:18 - 2017-08-01 21:17 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-08-08 22:18 - 2017-08-01 21:13 - 001102176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-08-08 22:18 - 2017-08-01 21:01 - 007218176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-08-08 22:18 - 2017-08-01 20:54 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\tokenbinding.dll
2017-08-08 22:18 - 2017-08-01 20:52 - 022569472 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-08-08 22:18 - 2017-08-01 20:52 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmclr.sys
2017-08-08 22:18 - 2017-08-01 20:48 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-08-08 22:18 - 2017-08-01 20:47 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2017-08-08 22:18 - 2017-08-01 20:47 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2017-08-08 22:18 - 2017-08-01 20:47 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll
2017-08-08 22:18 - 2017-08-01 20:47 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerUI.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000094720 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2017-08-08 22:18 - 2017-08-01 20:46 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2017-08-08 22:18 - 2017-08-01 20:45 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-08-08 22:18 - 2017-08-01 20:45 - 000451072 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2017-08-08 22:18 - 2017-08-01 20:45 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-08-08 22:18 - 2017-08-01 20:45 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2017-08-08 22:18 - 2017-08-01 20:44 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2017-08-08 22:18 - 2017-08-01 20:43 - 000966144 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2017-08-08 22:18 - 2017-08-01 20:43 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-08-08 22:18 - 2017-08-01 20:43 - 000156672 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2017-08-08 22:18 - 2017-08-01 20:42 - 000775168 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-08-08 22:18 - 2017-08-01 20:41 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2017-08-08 22:18 - 2017-08-01 20:40 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-08-08 22:18 - 2017-08-01 20:40 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-08-08 22:18 - 2017-08-01 20:40 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2017-08-08 22:18 - 2017-08-01 20:39 - 009129984 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-08-08 22:18 - 2017-08-01 20:39 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2017-08-08 22:18 - 2017-08-01 20:39 - 000353280 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2017-08-08 22:18 - 2017-08-01 20:39 - 000323072 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2017-08-08 22:18 - 2017-08-01 20:38 - 001589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2017-08-08 22:18 - 2017-08-01 20:36 - 023677440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-08-08 22:18 - 2017-08-01 20:36 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2017-08-08 22:18 - 2017-08-01 20:34 - 001837056 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2017-08-08 22:18 - 2017-08-01 20:33 - 004749824 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-08-08 22:18 - 2017-08-01 20:33 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\windowslivelogin.dll
2017-08-08 22:18 - 2017-08-01 20:33 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2017-08-08 22:18 - 2017-08-01 20:32 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2017-08-08 22:18 - 2017-08-01 20:30 - 002916864 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-08-08 22:18 - 2017-08-01 20:30 - 001643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-08-08 22:18 - 2017-08-01 20:30 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-08-08 22:18 - 2017-08-01 20:30 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2017-08-08 22:18 - 2017-08-01 20:29 - 000874496 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2017-08-08 22:18 - 2017-08-01 20:28 - 002895360 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-08-08 22:18 - 2017-08-01 20:28 - 001490432 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-08-08 22:18 - 2017-08-01 20:27 - 002695680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-08-08 22:18 - 2017-08-01 20:27 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2017-08-08 22:18 - 2017-08-01 20:27 - 000716800 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2017-08-08 22:18 - 2017-08-01 20:26 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2017-08-08 22:18 - 2017-08-01 20:25 - 001726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-08-08 22:18 - 2017-08-01 20:24 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-08-08 22:18 - 2017-08-01 20:24 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-08-08 22:18 - 2017-08-01 20:23 - 003615744 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-08-08 22:18 - 2017-08-01 20:23 - 000886784 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2017-08-08 22:18 - 2017-08-01 18:47 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-08-08 22:18 - 2017-07-12 08:16 - 000646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-08-08 22:18 - 2017-07-12 08:15 - 000101216 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-08-08 22:18 - 2017-07-12 08:14 - 001886896 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-08-08 22:18 - 2017-07-12 08:13 - 002253664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-08-08 22:18 - 2017-07-12 08:02 - 002186592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-08-08 22:18 - 2017-07-12 07:59 - 001100128 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2017-08-08 22:18 - 2017-07-12 07:59 - 000989024 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2017-08-08 22:18 - 2017-07-12 07:59 - 000947040 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2017-08-08 22:18 - 2017-07-12 07:55 - 004674872 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-08-08 22:18 - 2017-07-12 07:25 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcnfs.sys
2017-08-08 22:18 - 2017-07-12 07:24 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\dabapi.dll
2017-08-08 22:18 - 2017-07-12 07:23 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\container.dll
2017-08-08 22:18 - 2017-07-12 07:23 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\frprov.dll
2017-08-08 22:18 - 2017-07-12 07:22 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
2017-08-08 22:18 - 2017-07-12 07:21 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2017-08-08 22:18 - 2017-07-12 07:21 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2017-08-08 22:18 - 2017-07-12 07:20 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2017-08-08 22:18 - 2017-07-12 07:19 - 000488960 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2017-08-08 22:18 - 2017-07-12 07:19 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-08-08 22:18 - 2017-07-12 07:19 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2017-08-08 22:18 - 2017-07-12 07:17 - 000252416 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2017-08-08 22:18 - 2017-07-12 07:16 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2017-08-08 22:18 - 2017-07-12 07:16 - 000142848 _____ (Microsoft Corporation) C:\Windows\system32\profsvcext.dll
2017-08-08 22:18 - 2017-07-12 07:15 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-08-08 22:18 - 2017-07-12 07:13 - 001478656 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2017-08-08 22:18 - 2017-07-12 07:12 - 000970240 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2017-08-08 22:18 - 2017-07-12 07:12 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2017-08-08 22:18 - 2017-07-12 07:12 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
2017-08-08 22:18 - 2017-07-12 07:11 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2017-08-08 22:18 - 2017-07-12 07:10 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2017-08-08 22:18 - 2017-07-12 07:09 - 003291136 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-08-08 22:18 - 2017-07-12 07:08 - 002861056 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2017-08-08 22:18 - 2017-07-12 07:07 - 000954880 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2017-08-08 22:18 - 2017-07-12 07:07 - 000629248 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2017-08-08 22:18 - 2017-07-12 07:06 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-08-08 22:18 - 2017-07-12 07:06 - 000937984 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-08-08 22:18 - 2017-07-12 07:03 - 001692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-08-08 22:18 - 2017-07-12 07:03 - 000826880 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2017-08-08 22:18 - 2017-07-12 07:02 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-08-08 22:18 - 2017-07-12 07:01 - 002279424 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-08-08 22:18 - 2017-07-12 06:59 - 006664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-08-08 22:18 - 2017-07-12 06:59 - 002318336 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-08-08 22:18 - 2017-07-12 06:59 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2017-08-08 22:18 - 2017-07-12 06:58 - 001231872 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-08-08 22:18 - 2017-07-12 06:57 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-08-08 22:18 - 2017-07-12 06:56 - 001826816 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-08-08 22:18 - 2017-03-04 08:57 - 000372432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2017-08-08 22:18 - 2017-03-04 08:16 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2017-08-08 22:18 - 2017-03-04 08:14 - 000588288 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2017-08-08 22:18 - 2017-03-04 08:07 - 000909312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-08-08 22:18 - 2017-03-04 08:05 - 001328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 035853432 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 028969080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000981616 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000932984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000618616 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000507840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-08-03 16:08 - 2017-08-03 16:08 - 000054680 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 040248440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 035323000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 004172224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 003604600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 001996920 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438494.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 001606776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438494.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 001076848 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 001013696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 000733816 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2017-08-03 16:07 - 2017-08-03 16:07 - 000593016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2017-08-03 16:01 - 2017-08-03 16:01 - 012569200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-08-03 16:01 - 2017-08-03 16:01 - 012248048 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-08-03 16:01 - 2017-08-03 16:01 - 010079112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 010588440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 001298728 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 001014408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 000797392 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 000704936 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 000631784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-08-03 16:00 - 2017-08-03 16:00 - 000592032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-08-03 15:59 - 2017-08-03 15:59 - 013783968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-08-03 15:59 - 2017-08-03 15:59 - 011701872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-08-03 15:59 - 2017-08-03 15:59 - 003752696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-08-03 11:44 - 2017-08-03 11:44 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-08-03 11:44 - 2017-08-03 11:44 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2017-07-27 10:55 - 2017-07-27 10:55 - 000003382 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-553626503-1851697530-1516296009-1001
2017-07-23 01:18 - 2017-07-23 01:18 - 000400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-22 20:45 - 2017-04-14 11:59 - 000000000 ____D C:\Users\Gabriela\AppData\LocalLow\Mozilla
2017-08-22 19:25 - 2017-04-13 08:08 - 004183846 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-22 19:25 - 2016-07-17 00:25 - 001834426 _____ C:\Windows\system32\perfh005.dat
2017-08-22 19:25 - 2016-07-17 00:25 - 000512114 _____ C:\Windows\system32\perfc005.dat
2017-08-22 19:18 - 2017-04-13 08:51 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-22 19:18 - 2017-04-13 08:22 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-08-22 19:18 - 2017-04-13 08:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-22 19:18 - 2016-07-16 08:04 - 000262144 _____ C:\Windows\system32\config\BBI
2017-08-22 19:10 - 2017-04-13 08:03 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-08-22 15:32 - 2017-04-16 17:40 - 000004216 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E921B203-2F95-4B24-A80A-3532FE4CC68F}
2017-08-22 15:05 - 2016-07-16 13:45 - 000000000 ____D C:\Windows\INF
2017-08-22 09:12 - 2016-07-16 13:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-22 09:12 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\AppReadiness
2017-08-21 11:54 - 2017-04-13 08:09 - 000000000 ____D C:\Users\Gabriela
2017-08-21 00:53 - 2017-07-02 16:39 - 000000000 ____D C:\Users\Gabriela\AppData\Roaming\vlc
2017-08-20 14:07 - 2017-04-20 00:36 - 000000000 ____D C:\Users\Gabriela\AppData\Local\ElevatedDiagnostics
2017-08-20 14:07 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\NDF
2017-08-20 07:32 - 2017-04-13 09:03 - 000000000 ____D C:\Windows\Panther
2017-08-20 07:31 - 2017-07-10 08:22 - 000000036 _____ C:\Windows\progress.ini
2017-08-20 07:31 - 2017-07-10 07:51 - 000000000 ____D C:\Windows10Upgrade
2017-08-20 07:31 - 2017-04-14 04:55 - 000001890 _____ C:\Windows\diagwrn.xml
2017-08-20 07:31 - 2017-04-14 04:55 - 000001890 _____ C:\Windows\diagerr.xml
2017-08-20 07:28 - 2017-07-10 07:51 - 000000000 ___HD C:\$GetCurrent
2017-08-20 00:53 - 2017-04-13 11:56 - 000544424 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2017-08-20 00:37 - 2017-04-13 08:59 - 000000000 ____D C:\Users\Gabriela\AppData\Local\CrashDumps
2017-08-17 09:45 - 2017-04-16 12:51 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-12 22:33 - 2017-04-14 12:10 - 000000000 ____D C:\Users\Gabriela\AppData\Local\Adobe
2017-08-12 22:33 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-08-12 22:33 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\Macromed
2017-08-12 20:26 - 2017-04-30 15:16 - 000000000 ____D C:\Program Files (x86)\Adobe
2017-08-12 17:05 - 2017-04-14 20:34 - 000004022 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1492194840
2017-08-12 17:05 - 2017-04-14 20:34 - 000001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-08-12 14:12 - 2017-04-13 08:09 - 000000000 ____D C:\Users\Gabriela\AppData\Roaming\Adobe
2017-08-11 21:26 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\LiveKernelReports
2017-08-11 09:59 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\rescache
2017-08-10 01:18 - 2017-04-14 20:32 - 001015880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2017-08-10 01:18 - 2017-04-14 20:32 - 000146704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2017-08-09 18:28 - 2016-07-16 08:04 - 000032768 _____ C:\Windows\system32\config\ELAM
2017-08-09 08:44 - 2017-04-13 08:09 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-08-09 08:43 - 2017-04-13 08:03 - 000332304 _____ C:\Windows\system32\FNTCACHE.DAT
2017-08-09 02:38 - 2016-07-17 00:30 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ___RD C:\Program Files\Windows Defender
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\oobe
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\ShellExperiences
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\Provisioning
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\PolicyDefinitions
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\bcastdvr
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Common Files\System
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-08-09 02:38 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-08-09 01:55 - 2016-07-16 13:36 - 000000000 ____D C:\Windows\CbsTemp
2017-08-09 01:30 - 2017-04-13 11:53 - 000000000 ____D C:\Windows\system32\MRT
2017-08-09 01:29 - 2017-04-13 11:53 - 140394280 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-08-09 00:32 - 2017-04-13 08:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-08-09 00:30 - 2017-04-13 08:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-08-03 16:08 - 2017-03-23 15:40 - 001624152 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-08-03 16:08 - 2017-03-23 15:40 - 000227416 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-08-03 15:59 - 2017-01-04 15:02 - 004255760 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-08-03 11:44 - 2017-01-04 10:07 - 000046463 _____ C:\Windows\system32\nvinfo.pb
2017-07-31 17:14 - 2016-07-16 13:49 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-07-31 17:14 - 2016-07-16 13:49 - 000177648 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-07-27 10:55 - 2017-04-13 08:11 - 000002396 _____ C:\Users\Gabriela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-07-27 10:55 - 2017-04-13 08:11 - 000000000 ___RD C:\Users\Gabriela\OneDrive
2017-07-24 21:04 - 2017-07-08 20:25 - 000000000 ____D C:\Users\Gabriela\AppData\Roaming\Pro Cycling Manager 2017
2017-07-23 01:18 - 2017-06-07 09:05 - 000061304 _____ () C:\Windows\system32\Drivers\lpsport.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.150076550601503
2017-07-23 01:18 - 2017-04-14 20:32 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-07-23 01:18 - 2017-04-14 20:32 - 000003994 _____ C:\Windows\System32\Tasks\Avast Emergency Update

==================== Files in the root of some directories =======

2017-08-16 18:27 - 2017-08-22 20:45 - 000029696 _____ () C:\Users\Gabriela\AppData\Local\MSGBOX.EXE
2017-08-09 00:25 - 2017-08-22 12:42 - 000007612 _____ () C:\Users\Gabriela\AppData\Local\resmon.resmoncfg
2017-04-14 20:52 - 2017-04-14 20:52 - 000000003 _____ () C:\Users\Gabriela\AppData\Local\updater.log
2017-04-14 20:52 - 2017-05-06 20:13 - 000000425 _____ () C:\Users\Gabriela\AppData\Local\UserProducts.xml
2017-04-13 08:21 - 2017-04-13 08:21 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-08-18 10:15

==================== End of FRST.txt ============================

#7 Příspěvek od **Rudy** » 22 srp 2017 20:19

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\MountPoints2: {380b215c-2141-11e7-989f-40167e694903} - "H:\Setup.exe"
C:\Windows\LastGood.Tmp
C:\Windows\system32\ApnDatabase.xml
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\DP45977C.lfl
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {4C088D40-89C1-418D-A9C5-1533966935A7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-01] (Microsoft Corporation) <==== ATTENTION
Task: {5034BA42-AB47-4800-AC3A-2E5BE6776482} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-01] (Microsoft Corporation) <==== ATTENTION
Task: {E0844BFB-B612-4B64-A2EB-6EA326DD5461} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-01] (Microsoft Corporation) <==== ATTENTION
Task: {F5DBF40A-164D-49B5-930D-09E8538A6BBF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-01] (Microsoft Corporation) <==== ATTENTION

EmptyTemp:
End

Uložte do D:\Gabriela\Desktop jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

burrry · #8 Příspěvek od **burrry** » 22 srp 2017 20:38

Fix result of Farbar Recovery Scan Tool (x64) Version: 20-08-2017
Ran by Gabriela (22-08-2017 21:35:01) Run:1
Running from D:\Gabriela\Desktop
Loaded Profiles: Gabriela (Available Profiles: defaultuser0 & Gabriela)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\MountPoints2: {380b215c-2141-11e7-989f-40167e694903} - "H:\Setup.exe"
C:\Windows\LastGood.Tmp
C:\Windows\system32\ApnDatabase.xml
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\DP45977C.lfl
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {4C088D40-89C1-418D-A9C5-1533966935A7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-01] (Microsoft Corporation) <==== ATTENTION
Task: {5034BA42-AB47-4800-AC3A-2E5BE6776482} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-01] (Microsoft Corporation) <==== ATTENTION
Task: {E0844BFB-B612-4B64-A2EB-6EA326DD5461} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-01] (Microsoft Corporation) <==== ATTENTION
Task: {F5DBF40A-164D-49B5-930D-09E8538A6BBF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-01] (Microsoft Corporation) <==== ATTENTION

EmptyTemp:
End
*****************

HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{380b215c-2141-11e7-989f-40167e694903} => key removed successfully
HKLM\Software\Classes\CLSID\{380b215c-2141-11e7-989f-40167e694903} => key not found.
C:\Windows\LastGood.Tmp => moved successfully
C:\Windows\system32\ApnDatabase.xml => moved successfully
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => key removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4C088D40-89C1-418D-A9C5-1533966935A7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C088D40-89C1-418D-A9C5-1533966935A7} => key removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5034BA42-AB47-4800-AC3A-2E5BE6776482} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5034BA42-AB47-4800-AC3A-2E5BE6776482} => key removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Verification => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0844BFB-B612-4B64-A2EB-6EA326DD5461} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0844BFB-B612-4B64-A2EB-6EA326DD5461} => key removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F5DBF40A-164D-49B5-930D-09E8538A6BBF} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F5DBF40A-164D-49B5-930D-09E8538A6BBF} => key removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => key removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 74471635 B
Java, Flash, Steam htmlcache => 29962479 B
Windows/system/drivers => 17272 B
Edge => 2021 B
Chrome => 0 B
Firefox => 202409853 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 28957 B
LocalService => 4082 B
NetworkService => -656 B
defaultuser0 => 128 B
Gabriela => 16093311 B

RecycleBin => 0 B
EmptyTemp: => 308 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 21:35:10 ====

#9 Příspěvek od **Rudy** » 22 srp 2017 21:11

Smazáno. Log je již OK.

burrry · #10 Příspěvek od **burrry** » 22 srp 2017 21:34

Děkuji moc a chtěl bych se ještě zeptat, proč když zapínám PC tak většinou musím 2x. Poprvý mi naskočí modrá obrazovka, tak to vypnu i ze sitě a na podruhý to naskočí.

#11 Příspěvek od **Rudy** » 23 srp 2017 16:02

Modrá obrazovka jako BSOD?

burrry · #12 Příspěvek od **burrry** » 23 srp 2017 17:13

Dobrý den,
nn, je tam napsaná chyba, nějaké číslo, které jsem si když to bylo poprvé sice poznamenal, ale bohužel jsem ho ztratil. Dole mi to nabízí použít F8 nebo enter, ale ani jedno nefunguje.
Do PC se dostanu i tak, že když zmáčknu F8 a dostanu se do NR, tak stačí ho zas opustit a Win naskočí. Dnes se tu spustilo v pohodě, kdyby mi tam při příštím spuštění naskočila zas ta chybová hláška tak jí sem přidám. Podle toho se asi spíš pozná co to může způsobovat.

#13 Příspěvek od **Rudy** » 23 srp 2017 17:14

OK. Otevřte adresář windows\minidump a pokud jsou v něm nějaké soubory, zabalte je do raru a přiložte k vašemu příštímu postu.

burrry · #14 Příspěvek od **burrry** » 23 srp 2017 20:05

Tak se mi to stalo znovu a toto se objeví na monitoru
obnovení
váš PC nebo zařízení je třeba opravit
Požadované zařízení není dostupné nebo nelze připojit
soubor:\Windows\system32\winload.exe
kod chyby 0x000000e

ten soubor minidump, budˇnemám nebo jsem ho nenašel.

#15 Příspěvek od **Rudy** » 23 srp 2017 20:10

Minidump není soubor, tak se jmenuje adresář. V něm (pokud jsou) najdete soubory, které se jmenují např. 100817-1234-56.dmp. Tto soubory potřebuji vidět.

VIRY.CZ

Kontrola logu

Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu