Kontrola logu

Zpráva

burrry · #1 Příspěvek od **burrry** » 29 říj 2017 12:41

Dobrý den, poprosím o kontrolu logu, děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-10-2017
Ran by Gabriela (administrator) on DESKTOP-AKNEE8R (29-10-2017 12:35:41)
Running from D:\Gabriela\Desktop
Loaded Profiles: Gabriela (Available Profiles: defaultuser0 & Gabriela)
Platform: Windows 10 Pro Version 1607 14393.1770 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Electronic Arts) D:\FIFA 16\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.13610.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-11] (AVAST Software)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [26814632 2015-07-31] (Microsoft Corporation)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [EADM] => D:\FIFA 16\Origin\Origin.exe [3046264 2017-04-23] (Electronic Arts)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [OV2_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 2\OV2Monitor.exe [231784 2013-01-10] (OLYMPUS IMAGING CORP.)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\MountPoints2: {7887af7b-b630-11e7-9945-40167e694903} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\MountPoints2: {7887af9a-b630-11e7-9945-40167e694903} - "F:\Lenovo_Suite.exe"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{51d18b68-0968-446b-adeb-f70e5c50f941}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: fwxqikqx.default-1503407394199
FF ProfilePath: C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341 [2017-07-23]
FF Extension: (Avast SafePrice) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341\Extensions\sp@avast.com.xpi [2017-06-28]
FF Extension: (Avast Online Security) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341\Extensions\wrc@avast.com.xpi [2017-09-07]
FF ProfilePath: C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199 [2017-10-29]
FF Homepage: Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199 -> hxxps://www.seznam.cz/
FF Extension: (uBlock Origin) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199\Extensions\uBlock0@raymondhill.net.xpi [2017-10-21]
FF Extension: (Avast Online Security) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199\Extensions\wrc@avast.com.xpi [2017-10-11]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-10-29] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-10-29] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-09-16] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-09-16] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] ()
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-11] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-11] (AVAST Software)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-09-16] (NVIDIA Corporation)
S3 Origin Client Service; D:\FIFA 16\Origin\OriginClientService.exe [2146704 2017-04-23] (Electronic Arts)
R2 Origin Web Helper Service; D:\FIFA 16\Origin\OriginWebHelperService.exe [3115928 2017-04-23] (Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2017-08-08] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2017-08-08] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] ()
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [321032 2017-10-11] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-10-11] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-10-11] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57736 2017-10-11] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [47008 2017-10-11] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [147776 2017-10-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110376 2017-10-11] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84416 2017-10-11] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1029872 2017-10-26] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [587168 2017-10-11] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [201352 2017-10-11] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [363440 2017-10-11] (AVAST Software)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_841d56cc807f1f4d\nvlddmkm.sys [15620208 2017-10-09] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-29 02:37 - 2017-10-29 02:37 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-26 07:14 - 2017-10-26 07:14 - 000003938 _____ C:\Windows\System32\Tasks\CCleaner Update
2017-10-19 17:56 - 2017-10-19 17:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-10-19 17:56 - 2017-10-19 17:56 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-19 17:56 - 2017-09-16 18:17 - 000135800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-10-19 17:56 - 2017-07-20 18:21 - 000905504 _____ C:\Windows\system32\vulkan-1.dll
2017-10-19 17:56 - 2017-07-20 18:21 - 000776992 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-10-19 17:56 - 2017-07-20 18:21 - 000578848 _____ C:\Windows\system32\vulkaninfo.exe
2017-10-19 17:56 - 2017-07-20 18:21 - 000477472 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-10-19 17:55 - 2017-10-19 17:55 - 000000000 ____D C:\Windows\LastGood.Tmp
2017-10-19 17:29 - 2017-10-19 17:42 - 000000000 ___HD C:\$WINDOWS.~BT
2017-10-11 08:03 - 2017-10-11 08:03 - 000401488 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-11 07:50 - 2017-10-11 07:50 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-11 07:49 - 2017-09-18 04:27 - 001651552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll
2017-10-11 07:49 - 2017-09-18 04:27 - 000218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2017-10-11 07:49 - 2017-09-18 04:22 - 001470816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2017-10-11 07:49 - 2017-09-18 04:05 - 000497424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-10-11 07:49 - 2017-09-18 04:04 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-10-11 07:49 - 2017-09-18 04:04 - 000918304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-10-11 07:49 - 2017-09-18 04:03 - 000791272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-10-11 07:49 - 2017-09-18 04:02 - 001860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-10-11 07:49 - 2017-09-18 04:00 - 001072248 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 008173672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 004260072 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 001983408 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 000341344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-10-11 07:49 - 2017-09-18 03:55 - 005722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-10-11 07:49 - 2017-09-18 03:55 - 001431240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-10-11 07:49 - 2017-09-18 03:54 - 001980768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 020967840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 006672680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 004023560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 001845512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 001360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 001277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 000981888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-10-11 07:49 - 2017-09-18 03:51 - 000178016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-10-11 07:49 - 2017-09-18 03:49 - 001435896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-10-11 07:49 - 2017-09-18 03:49 - 001412128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-10-11 07:49 - 2017-09-18 03:49 - 001260784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-11 07:49 - 2017-09-18 03:48 - 000117792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-10-11 07:49 - 2017-09-18 03:34 - 000095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2017-10-11 07:49 - 2017-09-18 03:33 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-10-11 07:49 - 2017-09-18 03:33 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2017-10-11 07:49 - 2017-09-18 03:32 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2017-10-11 07:49 - 2017-09-18 03:31 - 006288384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-10-11 07:49 - 2017-09-18 03:31 - 000519168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll
2017-10-11 07:49 - 2017-09-18 03:31 - 000239104 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-10-11 07:49 - 2017-09-18 03:31 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2017-10-11 07:49 - 2017-09-18 03:31 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-10-11 07:49 - 2017-09-18 03:30 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-10-11 07:49 - 2017-09-18 03:30 - 000147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2017-10-11 07:49 - 2017-09-18 03:29 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-10-11 07:49 - 2017-09-18 03:28 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2017-10-11 07:49 - 2017-09-18 03:28 - 000237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-10-11 07:49 - 2017-09-18 03:27 - 004615168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-10-11 07:49 - 2017-09-18 03:27 - 000590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-10-11 07:49 - 2017-09-18 03:27 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-10-11 07:49 - 2017-09-18 03:27 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000283136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-11 07:49 - 2017-09-18 03:26 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-10-11 07:49 - 2017-09-18 03:25 - 002333184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-10-11 07:49 - 2017-09-18 03:25 - 000461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2017-10-11 07:49 - 2017-09-18 03:24 - 007626240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-10-11 07:49 - 2017-09-18 03:24 - 000819200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2017-10-11 07:49 - 2017-09-18 03:24 - 000755200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-10-11 07:49 - 2017-09-18 03:24 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-11 07:49 - 2017-09-18 03:24 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-10-11 07:49 - 2017-09-18 03:23 - 000857600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2017-10-11 07:49 - 2017-09-18 03:23 - 000816640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2017-10-11 07:49 - 2017-09-18 03:23 - 000636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2017-10-11 07:49 - 2017-09-18 03:23 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-10-11 07:49 - 2017-09-18 03:23 - 000287744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2017-10-11 07:49 - 2017-09-18 03:23 - 000238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2017-10-11 07:49 - 2017-09-18 03:22 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2017-10-11 07:49 - 2017-09-18 03:22 - 001137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2017-10-11 07:49 - 2017-09-18 03:20 - 002641920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-10-11 07:49 - 2017-09-18 03:20 - 000343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2017-10-11 07:49 - 2017-09-18 03:19 - 002750976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-10-11 07:49 - 2017-09-18 03:19 - 000549376 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-10-11 07:49 - 2017-09-18 03:19 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2017-10-11 07:49 - 2017-09-18 03:19 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-10-11 07:49 - 2017-09-18 03:18 - 007470592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-10-11 07:49 - 2017-09-18 03:18 - 001145344 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2017-10-11 07:49 - 2017-09-18 03:17 - 003401216 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-10-11 07:49 - 2017-09-18 03:17 - 000641024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-10-11 07:49 - 2017-09-18 03:16 - 004596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2017-10-11 07:49 - 2017-09-18 03:16 - 003520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2017-10-11 07:49 - 2017-09-18 03:15 - 002538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 006474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-10-11 07:49 - 2017-09-18 03:14 - 002997760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-10-11 07:49 - 2017-09-18 03:14 - 002740224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 002682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 002649600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 002483712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 001599488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-10-11 07:49 - 2017-09-18 03:14 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000657408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 001013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-10-11 07:49 - 2017-09-18 03:13 - 000751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2017-10-11 07:49 - 2017-09-18 03:11 - 000783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-10-11 07:49 - 2017-09-18 03:11 - 000450048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2017-10-11 07:49 - 2017-09-15 00:05 - 001302136 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-10-11 07:49 - 2017-09-14 23:59 - 000096064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2017-10-11 07:49 - 2017-09-14 23:52 - 000136032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2017-10-11 07:49 - 2017-09-14 23:49 - 001202936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-10-11 07:49 - 2017-09-14 23:39 - 000512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2017-10-11 07:49 - 2017-09-14 23:39 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2017-10-11 07:49 - 2017-09-14 23:34 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2017-10-11 07:49 - 2017-09-14 23:32 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2017-10-11 07:49 - 2017-09-14 23:32 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-11 07:49 - 2017-09-14 23:31 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB7.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput8.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-11 07:49 - 2017-09-14 23:28 - 000311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-10-11 07:49 - 2017-09-14 23:28 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput.dll
2017-10-11 07:49 - 2017-09-14 23:27 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2017-10-11 07:49 - 2017-09-14 23:26 - 001167360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2017-10-11 07:49 - 2017-09-14 23:26 - 000636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2017-10-11 07:49 - 2017-09-14 23:26 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
2017-10-11 07:49 - 2017-09-14 23:25 - 000529920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-10-11 07:49 - 2017-09-14 23:21 - 000566272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2017-10-11 07:49 - 2017-09-14 23:18 - 003299840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-10-11 07:49 - 2017-09-14 23:17 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tsusbhub.sys
2017-10-11 07:49 - 2017-09-14 23:15 - 003106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-10-11 07:49 - 2017-09-14 03:04 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-11 07:49 - 2017-09-14 03:04 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-10-11 07:49 - 2017-09-14 03:04 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-11 07:49 - 2017-03-04 07:28 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2017-10-11 07:49 - 2017-03-04 07:25 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2017-10-11 07:49 - 2017-03-04 07:24 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-10-11 07:49 - 2017-03-04 07:23 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2017-10-11 07:49 - 2017-03-04 07:18 - 000567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2017-10-11 07:49 - 2017-03-04 07:16 - 000368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2017-10-11 07:49 - 2017-03-04 07:00 - 000862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-10-11 07:49 - 2017-03-04 07:00 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-10-11 07:49 - 2016-08-27 06:12 - 000244816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-10-11 07:48 - 2017-09-18 04:18 - 002414432 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll
2017-10-11 07:48 - 2017-09-18 04:17 - 001564512 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-10-11 07:48 - 2017-09-18 04:17 - 000245600 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2017-10-11 07:48 - 2017-09-18 04:17 - 000136032 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 001408352 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 001054048 _____ (Microsoft Corporation) C:\Windows\system32\AppVPolicy.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000992096 _____ (Microsoft Corporation) C:\Windows\system32\AppVManifest.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000813408 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000779616 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000766304 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000699232 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000513376 _____ (Microsoft Corporation) C:\Windows\system32\TransportDSA.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000412512 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000076128 _____ (Microsoft Corporation) C:\Windows\system32\SyncAppvPublishingServer.exe
2017-10-11 07:48 - 2017-09-18 04:13 - 002170720 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2017-10-11 07:48 - 2017-09-18 04:13 - 001670496 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2017-10-11 07:48 - 2017-09-18 04:13 - 000704352 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2017-10-11 07:48 - 2017-09-18 04:13 - 000567136 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2017-10-11 07:48 - 2017-09-18 04:13 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\AppVShNotify.exe
2017-10-11 07:48 - 2017-09-18 04:13 - 000202592 _____ (Microsoft Corporation) C:\Windows\system32\AppVStreamingUX.dll
2017-10-11 07:48 - 2017-09-18 04:09 - 007780192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-11 07:48 - 2017-09-18 04:09 - 002213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-10-11 07:48 - 2017-09-18 04:09 - 000646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-10-11 07:48 - 2017-09-18 04:09 - 000133984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-11 07:48 - 2017-09-18 04:08 - 002253664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-11 07:48 - 2017-09-18 04:08 - 000998920 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-10-11 07:48 - 2017-09-18 04:05 - 001177688 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-10-11 07:48 - 2017-09-18 04:05 - 000172536 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-11 07:48 - 2017-09-18 04:05 - 000168800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-10-11 07:48 - 2017-09-18 04:04 - 000404832 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-11 07:48 - 2017-09-18 04:02 - 007213464 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-10-11 07:48 - 2017-09-18 04:01 - 002446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-10-11 07:48 - 2017-09-18 04:01 - 000624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-10-11 07:48 - 2017-09-18 04:01 - 000431456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-10-11 07:48 - 2017-09-18 04:01 - 000223072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-11 07:48 - 2017-09-18 03:59 - 022220864 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-10-11 07:48 - 2017-09-18 03:59 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-10-11 07:48 - 2017-09-18 03:58 - 001600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-10-11 07:48 - 2017-09-18 03:58 - 000206688 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2017-10-11 07:48 - 2017-09-18 03:57 - 001566552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-10-11 07:48 - 2017-09-18 03:57 - 001460696 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-10-11 07:48 - 2017-09-18 03:57 - 001415712 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-11 07:48 - 2017-09-18 03:56 - 000057408 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-10-11 07:48 - 2017-09-18 03:36 - 022570496 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-10-11 07:48 - 2017-09-18 03:35 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-10-11 07:48 - 2017-09-18 03:33 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\TransliterationRanker.dll
2017-10-11 07:48 - 2017-09-18 03:32 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-11 07:48 - 2017-09-18 03:32 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\jpninputrouter.dll
2017-10-11 07:48 - 2017-09-18 03:32 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\EmojiDS.dll
2017-10-11 07:48 - 2017-09-18 03:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-11 07:48 - 2017-09-18 03:31 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\RuleBasedDS.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\jpnranker.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000257536 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000196096 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000174592 _____ C:\Windows\system32\IHDS.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\VocabRoamingHandler.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\StaticDictDS.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\chxranker.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 009129984 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\ChsStrokeDS.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 000411136 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000536064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-11 07:48 - 2017-09-18 03:28 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\ChtHkStrokeDS.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000335872 _____ (Microsoft Corporation) C:\Windows\system32\ChsPinyinRanker.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\MtfDecoder.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-10-11 07:48 - 2017-09-18 03:27 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000626176 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\ChxAPDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000480768 _____ (Microsoft Corporation) C:\Windows\system32\msimeChsPinyinMainDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\ChxHAPDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000422400 _____ (Microsoft Corporation) C:\Windows\system32\ChtCangjieDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000410624 _____ (Microsoft Corporation) C:\Windows\system32\ChtQuickDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000336384 _____ (Microsoft Corporation) C:\Windows\system32\jpndecoder.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\chxinputrouter.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000326656 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\dsregcmd.exe
2017-10-11 07:48 - 2017-09-18 03:26 - 000562176 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000481792 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000384000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-10-11 07:48 - 2017-09-18 03:25 - 001914368 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2017-10-11 07:48 - 2017-09-18 03:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-10-11 07:48 - 2017-09-18 03:25 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2017-10-11 07:48 - 2017-09-18 03:25 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll
2017-10-11 07:48 - 2017-09-18 03:24 - 013107712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-10-11 07:48 - 2017-09-18 03:24 - 002103808 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2017-10-11 07:48 - 2017-09-18 03:24 - 001589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2017-10-11 07:48 - 2017-09-18 03:24 - 001584640 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2017-10-11 07:48 - 2017-09-18 03:23 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2017-10-11 07:48 - 2017-09-18 03:22 - 004749824 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-10-11 07:48 - 2017-09-18 03:22 - 003291648 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-10-11 07:48 - 2017-09-18 03:22 - 000883712 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-10-11 07:48 - 2017-09-18 03:22 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2017-10-11 07:48 - 2017-09-18 03:22 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-10-11 07:48 - 2017-09-18 03:21 - 018364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-10-11 07:48 - 2017-09-18 03:20 - 023677952 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-11 07:48 - 2017-09-18 03:20 - 019414016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-10-11 07:48 - 2017-09-18 03:20 - 000937984 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-10-11 07:48 - 2017-09-18 03:20 - 000284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-10-11 07:48 - 2017-09-18 03:19 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2017-10-11 07:48 - 2017-09-18 03:19 - 000519168 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 012204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 008114688 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 008077312 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 000932864 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2017-10-11 07:48 - 2017-09-18 03:17 - 002279424 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-10-11 07:48 - 2017-09-18 03:17 - 001783296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-11 07:48 - 2017-09-18 03:17 - 000779776 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2017-10-11 07:48 - 2017-09-18 03:16 - 004743168 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-11 07:48 - 2017-09-18 03:16 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 006065152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 003202048 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 002800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 002370048 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 001692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 001282048 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 001231360 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 003663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 003615744 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-10-11 07:48 - 2017-09-18 03:14 - 002897408 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 002321408 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 001518080 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-10-11 07:48 - 2017-09-18 03:14 - 001328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 001040896 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000983552 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000971264 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000908800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000650752 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-10-11 07:48 - 2017-09-18 03:13 - 001726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-10-11 07:48 - 2017-09-18 03:13 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-10-11 07:48 - 2017-09-18 03:13 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-10-11 07:48 - 2017-09-18 03:13 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2017-10-11 07:48 - 2017-09-18 03:12 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-10-11 07:48 - 2017-09-18 03:12 - 000532992 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-10-11 07:48 - 2017-09-18 03:12 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-10-11 07:48 - 2017-09-18 03:11 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\trie.dll
2017-10-11 07:48 - 2017-09-18 03:11 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\MTFFuzzyDS.dll
2017-10-11 07:48 - 2017-09-18 03:11 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\MTFSpellcheckDS.dll
2017-10-11 07:48 - 2017-09-15 00:14 - 000119328 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 002233344 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 001227264 _____ (Microsoft Corporation) C:\Windows\system32\AgentService.exe
2017-10-11 07:48 - 2017-09-14 23:39 - 001222144 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CommonBridge.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 001165824 _____ (Microsoft Corporation) C:\Windows\system32\ApplySettingsTemplateCatalog.exe
2017-10-11 07:48 - 2017-09-14 23:39 - 000768512 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.PrinterCustomActions.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 000744960 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 000419328 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CscUnpinTool.exe
2017-10-11 07:48 - 2017-09-14 23:39 - 000298496 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ConfigWrapper.dll
2017-10-11 07:48 - 2017-09-14 23:38 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2010CustomActions.dll
2017-10-11 07:48 - 2017-09-14 23:32 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7.dll
2017-10-11 07:48 - 2017-09-14 23:32 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\dinput8.dll
2017-10-11 07:48 - 2017-09-14 23:32 - 000162304 _____ (Microsoft Corporation) C:\Windows\system32\dinput.dll
2017-10-11 07:48 - 2017-09-14 23:31 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-10-11 07:48 - 2017-09-14 23:31 - 000280576 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2017-10-11 07:48 - 2017-09-14 23:30 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-10-11 07:48 - 2017-09-14 23:29 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-10-11 07:48 - 2017-09-14 23:25 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2017-10-11 07:48 - 2017-09-14 23:25 - 000675328 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2017-10-11 07:48 - 2017-09-14 23:24 - 000981504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2017-10-11 07:48 - 2017-09-14 23:24 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2017-10-11 07:48 - 2017-09-14 23:23 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2017-10-11 07:48 - 2017-09-14 23:22 - 000987648 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2017-10-11 07:48 - 2017-09-14 23:22 - 000820736 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2017-10-11 07:48 - 2017-09-14 23:22 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-10-11 07:48 - 2017-09-14 23:20 - 002852864 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-10-11 07:48 - 2017-09-14 23:19 - 001421824 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-10-11 07:48 - 2017-09-14 23:19 - 000928256 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2017-10-11 07:48 - 2017-09-14 23:18 - 000273920 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2017-10-11 07:48 - 2017-09-14 23:16 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2017-10-11 07:48 - 2017-03-04 08:10 - 000360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-10-11 07:48 - 2017-03-04 07:23 - 001184256 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2017-10-11 07:48 - 2017-03-04 07:11 - 001643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-10-11 07:48 - 2017-03-04 07:07 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-10-11 07:48 - 2017-03-04 07:03 - 000119808 ____R (Microsoft Corporation) C:\Windows\system32\SecureAssessmentHandlers.dll
2017-10-11 07:48 - 2016-08-06 05:16 - 000026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-10-11 07:48 - 2016-08-02 09:13 - 001081856 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2017-10-09 10:16 - 2017-10-09 10:16 - 035934136 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 029028792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 000981616 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 000932976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 000618424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 000507832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 001996912 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438569.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 001615288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438569.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 001076664 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 001013872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 000733808 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 000592824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 040248760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 035322808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 012357696 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 004153784 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 003584440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 023343840 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 019023464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 010184544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 001312216 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 001026600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 000797568 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 000705448 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 000631592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 000592024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-10-09 10:06 - 2017-10-09 10:06 - 013912344 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-10-09 10:06 - 2017-10-09 10:06 - 011804040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-10-09 10:06 - 2017-10-09 10:06 - 003753392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-10-09 09:47 - 2017-10-09 09:47 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-10-09 09:47 - 2017-10-09 09:47 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2017-09-30 12:26 - 2017-10-27 00:23 - 000000000 ____D C:\Program Files\rempl

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-29 12:35 - 2017-08-21 14:09 - 000000000 ____D C:\FRST
2017-10-29 12:35 - 2017-04-14 10:59 - 000000000 ____D C:\Users\Gabriela\AppData\LocalLow\Mozilla
2017-10-29 12:29 - 2017-08-08 23:25 - 000007598 _____ C:\Users\Gabriela\AppData\Local\resmon.resmoncfg
2017-10-29 12:13 - 2017-09-21 12:46 - 000004506 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-29 12:13 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-29 12:13 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-29 11:15 - 2017-08-22 18:13 - 000000000 ____D C:\AdwCleaner
2017-10-29 10:55 - 2016-07-16 12:45 - 000000000 ____D C:\Windows\INF
2017-10-29 10:09 - 2017-04-13 07:03 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-10-29 09:17 - 2017-04-16 16:40 - 000004216 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E921B203-2F95-4B24-A80A-3532FE4CC68F}
2017-10-29 09:14 - 2017-04-13 07:08 - 006054706 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-29 09:14 - 2016-07-16 23:25 - 002782790 _____ C:\Windows\system32\perfh005.dat
2017-10-29 09:14 - 2016-07-16 23:25 - 000805138 _____ C:\Windows\system32\perfc005.dat
2017-10-29 09:10 - 2017-08-22 20:37 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-10-29 09:10 - 2017-04-13 07:51 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-29 09:10 - 2017-04-13 07:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-29 01:39 - 2016-07-16 07:04 - 000524288 _____ C:\Windows\system32\config\BBI
2017-10-27 10:28 - 2017-08-22 14:07 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-27 10:28 - 2017-08-22 14:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-26 20:03 - 2017-04-14 19:32 - 001029872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2017-10-26 09:37 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\AppReadiness
2017-10-26 07:14 - 2017-04-16 11:51 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-10-26 07:14 - 2017-04-16 11:51 - 000000000 ____D C:\Program Files\CCleaner
2017-10-25 12:48 - 2017-04-13 07:04 - 000000000 ____D C:\Users\defaultuser0
2017-10-25 09:00 - 2016-07-16 12:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-20 23:24 - 2017-04-13 07:09 - 000000000 ____D C:\Users\Gabriela
2017-10-19 17:56 - 2017-04-13 07:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-19 17:44 - 2017-04-14 04:08 - 000000000 ____D C:\Users\Gabriela\AppData\Local\Microsoft Help
2017-10-19 17:29 - 2017-07-10 07:22 - 000000036 _____ C:\Windows\progress.ini
2017-10-19 17:29 - 2017-07-10 06:51 - 000000000 ____D C:\Windows10Upgrade
2017-10-19 17:29 - 2017-04-14 03:55 - 000001890 _____ C:\Windows\diagwrn.xml
2017-10-19 17:29 - 2017-04-14 03:55 - 000001890 _____ C:\Windows\diagerr.xml
2017-10-19 17:29 - 2017-04-13 08:03 - 000000000 ____D C:\Windows\Panther
2017-10-19 17:26 - 2017-07-10 06:51 - 000000000 ___HD C:\$GetCurrent
2017-10-18 07:08 - 2016-07-16 12:36 - 000000000 ____D C:\Windows\CbsTemp
2017-10-15 00:17 - 2017-04-13 07:59 - 000000000 ____D C:\Users\Gabriela\AppData\Local\CrashDumps
2017-10-13 12:54 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\rescache
2017-10-12 23:27 - 2016-07-16 12:49 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-10-12 23:27 - 2016-07-16 12:49 - 000177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-11 08:03 - 2017-06-07 08:05 - 000061304 _____ () C:\Windows\system32\Drivers\lpsport.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000587168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000363440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000201352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000147776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000057736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000003994 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-10-11 08:03 - 2017-04-14 19:30 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-11 08:03 - 2017-04-13 07:09 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-11 08:02 - 2017-04-13 07:03 - 000332304 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-11 08:01 - 2016-07-16 12:47 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2017-10-11 08:01 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\system32\oobe
2017-10-11 08:01 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\ShellExperiences
2017-10-11 07:51 - 2017-04-13 10:53 - 000000000 ____D C:\Windows\system32\MRT
2017-10-11 07:50 - 2017-04-13 10:53 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-09 23:48 - 2017-04-13 07:09 - 000000000 ____D C:\Users\Gabriela\AppData\Local\Packages
2017-10-09 10:06 - 2017-01-04 14:02 - 004256264 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-10-09 09:47 - 2017-01-04 09:07 - 000046443 _____ C:\Windows\system32\nvinfo.pb
2017-10-01 12:57 - 2017-04-19 23:36 - 000000000 ____D C:\Users\Gabriela\AppData\Local\ElevatedDiagnostics
2017-09-30 15:54 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\LiveKernelReports

==================== Files in the root of some directories =======

2017-08-16 17:27 - 2017-08-22 19:45 - 000029696 _____ () C:\Users\Gabriela\AppData\Local\MSGBOX.EXE
2017-08-08 23:25 - 2017-10-29 12:29 - 000007598 _____ () C:\Users\Gabriela\AppData\Local\resmon.resmoncfg
2017-04-14 19:52 - 2017-04-14 19:52 - 000000003 _____ () C:\Users\Gabriela\AppData\Local\updater.log
2017-04-14 19:52 - 2017-05-06 19:13 - 000000425 _____ () C:\Users\Gabriela\AppData\Local\UserProducts.xml

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-10-27 11:45

==================== End of FRST.txt ============================

#2 Příspěvek od **Márty84** » 30 říj 2017 03:55

Zdravim

Jde ciste jen o prevenci, nebo je i nejaky problem?

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

burrry · #3 Příspěvek od **burrry** » 30 říj 2017 11:58

Dobrý den, jedná se jen o prevenci a AdwCleaner mi našel 2x PUP. atd, ke smazání, tak jen zda to smazat či ne, děkuji.

# AdwCleaner 7.0.4.0 - Logfile created on Mon Oct 30 10:54:14 2017
# Updated on 2017/27/10 by Malwarebytes
# Database: 10-28-2017.1
# Running on Windows 10 Pro (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.DllKitPRO, DllKitPRO

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [2050 B] - [2017/8/22 17:15:58]
C:/AdwCleaner/AdwCleaner[S0].txt - [2017 B] - [2017/8/22 17:14:35]
C:/AdwCleaner/AdwCleaner[S1].txt - [1145 B] - [2017/9/8 8:6:0]
C:/AdwCleaner/AdwCleaner[S2].txt - [1219 B] - [2017/10/26 6:11:4]
C:/AdwCleaner/AdwCleaner[S3].txt - [1286 B] - [2017/10/26 6:16:10]
C:/AdwCleaner/AdwCleaner[S4].txt - [1354 B] - [2017/10/29 10:15:2]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt ##########

#4 Příspěvek od **Márty84** » 30 říj 2017 14:30

burrry píše:tak jen zda to smazat či ne

Nechte to smazat

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

burrry · #5 Příspěvek od **burrry** » 30 říj 2017 20:43

AdwCleaner jsem to smazal a zde je log z Malware

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 30.10.17
Čas skenování: 19:41
Logovací soubor: ebaf553a-bda1-11e7-ba72-40167e694903.json
Správce: Ano

-Informace o softwaru-
Verze: 3.2.2.2029
Verze komponentů: 1.0.212
Aktualizovat verzi balíku komponent: 1.0.3131
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 14393.1770)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-AKNEE8R\Gabriela

-Shrnutí skenování-
Typ skenování: Vlastní skenování
Výsledek: Dokončeno
Skenované objekty: 402854
Zjištěné hrozby: 2
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 56 min, 3 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 2
CrackTool.KMSPico, C:\PROGRAM FILES\KMSPICO\KMSELDI.EXE, Žádná uživatelská akce, [7804], [103306],1.0.3131
PUP.Optional.AshampooDriverUpdater, C:\PROGRAMDATA\ASHAMPOO\ICO_ASHAMPOO_DEALS.ICO, Žádná uživatelská akce, [2332], [354924],1.0.3131

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

(end)

#6 Příspěvek od **Márty84** » 31 říj 2017 19:34

Nalezy nechte odstranit, pak MBAM odinstalujte.

Dejte nove logy z FRST.

burrry · #7 Příspěvek od **burrry** » 31 říj 2017 21:56

Dobrý večer.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-10-2017
Ran by Gabriela (administrator) on DESKTOP-AKNEE8R (31-10-2017 21:52:23)
Running from D:\Gabriela\Desktop
Loaded Profiles: Gabriela (Available Profiles: defaultuser0 & Gabriela)
Platform: Windows 10 Pro Version 1607 14393.1770 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Electronic Arts) D:\FIFA 16\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-11] (AVAST Software)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [26814632 2015-07-31] (Microsoft Corporation)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [EADM] => D:\FIFA 16\Origin\Origin.exe [3046264 2017-04-23] (Electronic Arts)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\Run: [OV2_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 2\OV2Monitor.exe [231784 2013-01-10] (OLYMPUS IMAGING CORP.)
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\MountPoints2: {7887af7b-b630-11e7-9945-40167e694903} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-553626503-1851697530-1516296009-1001\...\MountPoints2: {7887af9a-b630-11e7-9945-40167e694903} - "F:\Lenovo_Suite.exe"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{51d18b68-0968-446b-adeb-f70e5c50f941}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: fwxqikqx.default-1503407394199
FF ProfilePath: C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341 [2017-07-23]
FF Extension: (Avast SafePrice) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341\Extensions\sp@avast.com.xpi [2017-06-28]
FF Extension: (Avast Online Security) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\g7s5ksur.default-1499529500367-1499529512341\Extensions\wrc@avast.com.xpi [2017-09-07]
FF ProfilePath: C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199 [2017-10-31]
FF Homepage: Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199 -> hxxps://www.seznam.cz/
FF Extension: (uBlock Origin) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199\Extensions\uBlock0@raymondhill.net.xpi [2017-10-21]
FF Extension: (Avast Online Security) - C:\Users\Gabriela\AppData\Roaming\Mozilla\Firefox\Profiles\fwxqikqx.default-1503407394199\Extensions\wrc@avast.com.xpi [2017-10-11]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-10-29] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-10-29] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-09-16] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-09-16] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] ()
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-11] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-11] (AVAST Software)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-09-16] (NVIDIA Corporation)
S3 Origin Client Service; D:\FIFA 16\Origin\OriginClientService.exe [2146704 2017-04-23] (Electronic Arts)
R2 Origin Web Helper Service; D:\FIFA 16\Origin\OriginWebHelperService.exe [3115928 2017-04-23] (Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2017-08-08] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2017-08-08] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] ()
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [321032 2017-10-11] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-10-11] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-10-11] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57736 2017-10-11] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [47008 2017-10-11] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [147776 2017-10-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110376 2017-10-11] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84416 2017-10-11] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1029872 2017-10-26] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [587168 2017-10-11] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [201352 2017-10-11] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [363440 2017-10-11] (AVAST Software)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_841d56cc807f1f4d\nvlddmkm.sys [15620208 2017-10-09] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-30 19:36 - 2017-10-30 19:36 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-26 07:14 - 2017-10-26 07:14 - 000003938 _____ C:\Windows\System32\Tasks\CCleaner Update
2017-10-19 17:56 - 2017-10-19 17:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-10-19 17:56 - 2017-10-19 17:56 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-19 17:56 - 2017-09-16 18:17 - 000135800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-10-19 17:56 - 2017-07-20 18:21 - 000905504 _____ C:\Windows\system32\vulkan-1.dll
2017-10-19 17:56 - 2017-07-20 18:21 - 000776992 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-10-19 17:56 - 2017-07-20 18:21 - 000578848 _____ C:\Windows\system32\vulkaninfo.exe
2017-10-19 17:56 - 2017-07-20 18:21 - 000477472 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-10-19 17:55 - 2017-10-19 17:55 - 000000000 ____D C:\Windows\LastGood.Tmp
2017-10-19 17:29 - 2017-10-19 17:42 - 000000000 ___HD C:\$WINDOWS.~BT
2017-10-11 08:03 - 2017-10-11 08:03 - 000401488 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-11 07:50 - 2017-10-11 07:50 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-11 07:49 - 2017-09-18 04:27 - 001651552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll
2017-10-11 07:49 - 2017-09-18 04:27 - 000218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2017-10-11 07:49 - 2017-09-18 04:22 - 001470816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2017-10-11 07:49 - 2017-09-18 04:05 - 000497424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-10-11 07:49 - 2017-09-18 04:04 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-10-11 07:49 - 2017-09-18 04:04 - 000918304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-10-11 07:49 - 2017-09-18 04:03 - 000791272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-10-11 07:49 - 2017-09-18 04:02 - 001860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-10-11 07:49 - 2017-09-18 04:00 - 001072248 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 008173672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 004260072 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 001983408 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-10-11 07:49 - 2017-09-18 03:59 - 000341344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-10-11 07:49 - 2017-09-18 03:55 - 005722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-10-11 07:49 - 2017-09-18 03:55 - 001431240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-10-11 07:49 - 2017-09-18 03:54 - 001980768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 020967840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 006672680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 004023560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 001845512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 001360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 001277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-10-11 07:49 - 2017-09-18 03:52 - 000981888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-10-11 07:49 - 2017-09-18 03:51 - 000178016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-10-11 07:49 - 2017-09-18 03:49 - 001435896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-10-11 07:49 - 2017-09-18 03:49 - 001412128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-10-11 07:49 - 2017-09-18 03:49 - 001260784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-11 07:49 - 2017-09-18 03:48 - 000117792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-10-11 07:49 - 2017-09-18 03:34 - 000095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2017-10-11 07:49 - 2017-09-18 03:33 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-10-11 07:49 - 2017-09-18 03:33 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2017-10-11 07:49 - 2017-09-18 03:32 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2017-10-11 07:49 - 2017-09-18 03:31 - 006288384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-10-11 07:49 - 2017-09-18 03:31 - 000519168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll
2017-10-11 07:49 - 2017-09-18 03:31 - 000239104 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-10-11 07:49 - 2017-09-18 03:31 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2017-10-11 07:49 - 2017-09-18 03:31 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-10-11 07:49 - 2017-09-18 03:30 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-10-11 07:49 - 2017-09-18 03:30 - 000147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2017-10-11 07:49 - 2017-09-18 03:29 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-10-11 07:49 - 2017-09-18 03:28 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2017-10-11 07:49 - 2017-09-18 03:28 - 000237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-10-11 07:49 - 2017-09-18 03:27 - 004615168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-10-11 07:49 - 2017-09-18 03:27 - 000590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-10-11 07:49 - 2017-09-18 03:27 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-10-11 07:49 - 2017-09-18 03:27 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-10-11 07:49 - 2017-09-18 03:26 - 000283136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-11 07:49 - 2017-09-18 03:26 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-10-11 07:49 - 2017-09-18 03:25 - 002333184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-10-11 07:49 - 2017-09-18 03:25 - 000461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2017-10-11 07:49 - 2017-09-18 03:24 - 007626240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-10-11 07:49 - 2017-09-18 03:24 - 000819200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2017-10-11 07:49 - 2017-09-18 03:24 - 000755200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-10-11 07:49 - 2017-09-18 03:24 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-11 07:49 - 2017-09-18 03:24 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-10-11 07:49 - 2017-09-18 03:23 - 000857600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2017-10-11 07:49 - 2017-09-18 03:23 - 000816640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2017-10-11 07:49 - 2017-09-18 03:23 - 000636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2017-10-11 07:49 - 2017-09-18 03:23 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-10-11 07:49 - 2017-09-18 03:23 - 000287744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2017-10-11 07:49 - 2017-09-18 03:23 - 000238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2017-10-11 07:49 - 2017-09-18 03:22 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2017-10-11 07:49 - 2017-09-18 03:22 - 001137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2017-10-11 07:49 - 2017-09-18 03:20 - 002641920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-10-11 07:49 - 2017-09-18 03:20 - 000343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2017-10-11 07:49 - 2017-09-18 03:19 - 002750976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-10-11 07:49 - 2017-09-18 03:19 - 000549376 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-10-11 07:49 - 2017-09-18 03:19 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2017-10-11 07:49 - 2017-09-18 03:19 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-10-11 07:49 - 2017-09-18 03:18 - 007470592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-10-11 07:49 - 2017-09-18 03:18 - 001145344 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2017-10-11 07:49 - 2017-09-18 03:17 - 003401216 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-10-11 07:49 - 2017-09-18 03:17 - 000641024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-10-11 07:49 - 2017-09-18 03:16 - 004596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2017-10-11 07:49 - 2017-09-18 03:16 - 003520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2017-10-11 07:49 - 2017-09-18 03:15 - 002538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 006474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-10-11 07:49 - 2017-09-18 03:14 - 002997760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-10-11 07:49 - 2017-09-18 03:14 - 002740224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 002682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 002649600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 002483712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 001599488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-10-11 07:49 - 2017-09-18 03:14 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000657408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-10-11 07:49 - 2017-09-18 03:14 - 000542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 001013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-10-11 07:49 - 2017-09-18 03:13 - 000751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2017-10-11 07:49 - 2017-09-18 03:13 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2017-10-11 07:49 - 2017-09-18 03:11 - 000783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-10-11 07:49 - 2017-09-18 03:11 - 000450048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2017-10-11 07:49 - 2017-09-15 00:05 - 001302136 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-10-11 07:49 - 2017-09-14 23:59 - 000096064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2017-10-11 07:49 - 2017-09-14 23:52 - 000136032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2017-10-11 07:49 - 2017-09-14 23:49 - 001202936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-10-11 07:49 - 2017-09-14 23:39 - 000512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2017-10-11 07:49 - 2017-09-14 23:39 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2017-10-11 07:49 - 2017-09-14 23:34 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2017-10-11 07:49 - 2017-09-14 23:32 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2017-10-11 07:49 - 2017-09-14 23:32 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-11 07:49 - 2017-09-14 23:31 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB7.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput8.dll
2017-10-11 07:49 - 2017-09-14 23:30 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-11 07:49 - 2017-09-14 23:28 - 000311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-10-11 07:49 - 2017-09-14 23:28 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput.dll
2017-10-11 07:49 - 2017-09-14 23:27 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2017-10-11 07:49 - 2017-09-14 23:26 - 001167360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2017-10-11 07:49 - 2017-09-14 23:26 - 000636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2017-10-11 07:49 - 2017-09-14 23:26 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
2017-10-11 07:49 - 2017-09-14 23:25 - 000529920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-10-11 07:49 - 2017-09-14 23:21 - 000566272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2017-10-11 07:49 - 2017-09-14 23:18 - 003299840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-10-11 07:49 - 2017-09-14 23:17 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tsusbhub.sys
2017-10-11 07:49 - 2017-09-14 23:15 - 003106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-10-11 07:49 - 2017-09-14 03:04 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-11 07:49 - 2017-09-14 03:04 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-10-11 07:49 - 2017-09-14 03:04 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-11 07:49 - 2017-03-04 07:28 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2017-10-11 07:49 - 2017-03-04 07:25 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2017-10-11 07:49 - 2017-03-04 07:24 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-10-11 07:49 - 2017-03-04 07:23 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2017-10-11 07:49 - 2017-03-04 07:18 - 000567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2017-10-11 07:49 - 2017-03-04 07:16 - 000368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2017-10-11 07:49 - 2017-03-04 07:00 - 000862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-10-11 07:49 - 2017-03-04 07:00 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-10-11 07:49 - 2016-08-27 06:12 - 000244816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-10-11 07:48 - 2017-09-18 04:18 - 002414432 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll
2017-10-11 07:48 - 2017-09-18 04:17 - 001564512 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-10-11 07:48 - 2017-09-18 04:17 - 000245600 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2017-10-11 07:48 - 2017-09-18 04:17 - 000136032 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 001408352 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 001054048 _____ (Microsoft Corporation) C:\Windows\system32\AppVPolicy.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000992096 _____ (Microsoft Corporation) C:\Windows\system32\AppVManifest.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000813408 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000779616 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000766304 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000699232 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000513376 _____ (Microsoft Corporation) C:\Windows\system32\TransportDSA.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000412512 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2017-10-11 07:48 - 2017-09-18 04:14 - 000076128 _____ (Microsoft Corporation) C:\Windows\system32\SyncAppvPublishingServer.exe
2017-10-11 07:48 - 2017-09-18 04:13 - 002170720 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2017-10-11 07:48 - 2017-09-18 04:13 - 001670496 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2017-10-11 07:48 - 2017-09-18 04:13 - 000704352 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2017-10-11 07:48 - 2017-09-18 04:13 - 000567136 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2017-10-11 07:48 - 2017-09-18 04:13 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\AppVShNotify.exe
2017-10-11 07:48 - 2017-09-18 04:13 - 000202592 _____ (Microsoft Corporation) C:\Windows\system32\AppVStreamingUX.dll
2017-10-11 07:48 - 2017-09-18 04:09 - 007780192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-11 07:48 - 2017-09-18 04:09 - 002213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-10-11 07:48 - 2017-09-18 04:09 - 000646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-10-11 07:48 - 2017-09-18 04:09 - 000133984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-11 07:48 - 2017-09-18 04:08 - 002253664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-11 07:48 - 2017-09-18 04:08 - 000998920 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-10-11 07:48 - 2017-09-18 04:05 - 001177688 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-10-11 07:48 - 2017-09-18 04:05 - 000172536 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-11 07:48 - 2017-09-18 04:05 - 000168800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-10-11 07:48 - 2017-09-18 04:04 - 000404832 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-11 07:48 - 2017-09-18 04:02 - 007213464 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-10-11 07:48 - 2017-09-18 04:01 - 002446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-10-11 07:48 - 2017-09-18 04:01 - 000624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-10-11 07:48 - 2017-09-18 04:01 - 000431456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-10-11 07:48 - 2017-09-18 04:01 - 000223072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-11 07:48 - 2017-09-18 03:59 - 022220864 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-10-11 07:48 - 2017-09-18 03:59 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-10-11 07:48 - 2017-09-18 03:58 - 001600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-10-11 07:48 - 2017-09-18 03:58 - 000206688 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2017-10-11 07:48 - 2017-09-18 03:57 - 001566552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-10-11 07:48 - 2017-09-18 03:57 - 001460696 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-10-11 07:48 - 2017-09-18 03:57 - 001415712 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-11 07:48 - 2017-09-18 03:56 - 000057408 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-10-11 07:48 - 2017-09-18 03:36 - 022570496 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-10-11 07:48 - 2017-09-18 03:35 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-10-11 07:48 - 2017-09-18 03:33 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\TransliterationRanker.dll
2017-10-11 07:48 - 2017-09-18 03:32 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-11 07:48 - 2017-09-18 03:32 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\jpninputrouter.dll
2017-10-11 07:48 - 2017-09-18 03:32 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\EmojiDS.dll
2017-10-11 07:48 - 2017-09-18 03:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-11 07:48 - 2017-09-18 03:31 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\RuleBasedDS.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\jpnranker.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000257536 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000196096 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000174592 _____ C:\Windows\system32\IHDS.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\VocabRoamingHandler.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\StaticDictDS.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2017-10-11 07:48 - 2017-09-18 03:30 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\chxranker.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 009129984 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\ChsStrokeDS.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 000411136 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2017-10-11 07:48 - 2017-09-18 03:29 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000536064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-11 07:48 - 2017-09-18 03:28 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\ChtHkStrokeDS.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000335872 _____ (Microsoft Corporation) C:\Windows\system32\ChsPinyinRanker.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\MtfDecoder.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2017-10-11 07:48 - 2017-09-18 03:28 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-10-11 07:48 - 2017-09-18 03:27 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000626176 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\ChxAPDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000480768 _____ (Microsoft Corporation) C:\Windows\system32\msimeChsPinyinMainDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\ChxHAPDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000422400 _____ (Microsoft Corporation) C:\Windows\system32\ChtCangjieDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000410624 _____ (Microsoft Corporation) C:\Windows\system32\ChtQuickDS.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000336384 _____ (Microsoft Corporation) C:\Windows\system32\jpndecoder.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\chxinputrouter.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000326656 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2017-10-11 07:48 - 2017-09-18 03:27 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\dsregcmd.exe
2017-10-11 07:48 - 2017-09-18 03:26 - 000562176 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000481792 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000384000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-10-11 07:48 - 2017-09-18 03:26 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-10-11 07:48 - 2017-09-18 03:25 - 001914368 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2017-10-11 07:48 - 2017-09-18 03:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-10-11 07:48 - 2017-09-18 03:25 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2017-10-11 07:48 - 2017-09-18 03:25 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll
2017-10-11 07:48 - 2017-09-18 03:24 - 013107712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-10-11 07:48 - 2017-09-18 03:24 - 002103808 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2017-10-11 07:48 - 2017-09-18 03:24 - 001589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2017-10-11 07:48 - 2017-09-18 03:24 - 001584640 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2017-10-11 07:48 - 2017-09-18 03:23 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2017-10-11 07:48 - 2017-09-18 03:22 - 004749824 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-10-11 07:48 - 2017-09-18 03:22 - 003291648 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-10-11 07:48 - 2017-09-18 03:22 - 000883712 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-10-11 07:48 - 2017-09-18 03:22 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2017-10-11 07:48 - 2017-09-18 03:22 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-10-11 07:48 - 2017-09-18 03:21 - 018364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-10-11 07:48 - 2017-09-18 03:20 - 023677952 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-11 07:48 - 2017-09-18 03:20 - 019414016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-10-11 07:48 - 2017-09-18 03:20 - 000937984 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-10-11 07:48 - 2017-09-18 03:20 - 000284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-10-11 07:48 - 2017-09-18 03:19 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2017-10-11 07:48 - 2017-09-18 03:19 - 000519168 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 012204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 008114688 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 008077312 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 000932864 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-10-11 07:48 - 2017-09-18 03:18 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2017-10-11 07:48 - 2017-09-18 03:17 - 002279424 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-10-11 07:48 - 2017-09-18 03:17 - 001783296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-11 07:48 - 2017-09-18 03:17 - 000779776 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2017-10-11 07:48 - 2017-09-18 03:16 - 004743168 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-11 07:48 - 2017-09-18 03:16 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 006065152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 003202048 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 002800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 002370048 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 001692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 001282048 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 001231360 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2017-10-11 07:48 - 2017-09-18 03:15 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 003663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 003615744 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-10-11 07:48 - 2017-09-18 03:14 - 002897408 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 002321408 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 001518080 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-10-11 07:48 - 2017-09-18 03:14 - 001328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 001040896 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000983552 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000971264 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000908800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000650752 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2017-10-11 07:48 - 2017-09-18 03:14 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-10-11 07:48 - 2017-09-18 03:13 - 001726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-10-11 07:48 - 2017-09-18 03:13 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-10-11 07:48 - 2017-09-18 03:13 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-10-11 07:48 - 2017-09-18 03:13 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2017-10-11 07:48 - 2017-09-18 03:12 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-10-11 07:48 - 2017-09-18 03:12 - 000532992 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-10-11 07:48 - 2017-09-18 03:12 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-10-11 07:48 - 2017-09-18 03:11 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\trie.dll
2017-10-11 07:48 - 2017-09-18 03:11 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\MTFFuzzyDS.dll
2017-10-11 07:48 - 2017-09-18 03:11 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\MTFSpellcheckDS.dll
2017-10-11 07:48 - 2017-09-15 00:14 - 000119328 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 002233344 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 001227264 _____ (Microsoft Corporation) C:\Windows\system32\AgentService.exe
2017-10-11 07:48 - 2017-09-14 23:39 - 001222144 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CommonBridge.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 001165824 _____ (Microsoft Corporation) C:\Windows\system32\ApplySettingsTemplateCatalog.exe
2017-10-11 07:48 - 2017-09-14 23:39 - 000768512 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.PrinterCustomActions.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 000744960 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll
2017-10-11 07:48 - 2017-09-14 23:39 - 000419328 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CscUnpinTool.exe
2017-10-11 07:48 - 2017-09-14 23:39 - 000298496 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ConfigWrapper.dll
2017-10-11 07:48 - 2017-09-14 23:38 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2010CustomActions.dll
2017-10-11 07:48 - 2017-09-14 23:32 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7.dll
2017-10-11 07:48 - 2017-09-14 23:32 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\dinput8.dll
2017-10-11 07:48 - 2017-09-14 23:32 - 000162304 _____ (Microsoft Corporation) C:\Windows\system32\dinput.dll
2017-10-11 07:48 - 2017-09-14 23:31 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-10-11 07:48 - 2017-09-14 23:31 - 000280576 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2017-10-11 07:48 - 2017-09-14 23:30 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-10-11 07:48 - 2017-09-14 23:29 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-10-11 07:48 - 2017-09-14 23:25 - 000821248 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2017-10-11 07:48 - 2017-09-14 23:25 - 000675328 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2017-10-11 07:48 - 2017-09-14 23:24 - 000981504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2017-10-11 07:48 - 2017-09-14 23:24 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2017-10-11 07:48 - 2017-09-14 23:23 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2017-10-11 07:48 - 2017-09-14 23:22 - 000987648 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2017-10-11 07:48 - 2017-09-14 23:22 - 000820736 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2017-10-11 07:48 - 2017-09-14 23:22 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-10-11 07:48 - 2017-09-14 23:20 - 002852864 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-10-11 07:48 - 2017-09-14 23:19 - 001421824 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-10-11 07:48 - 2017-09-14 23:19 - 000928256 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2017-10-11 07:48 - 2017-09-14 23:18 - 000273920 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2017-10-11 07:48 - 2017-09-14 23:16 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2017-10-11 07:48 - 2017-03-04 08:10 - 000360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-10-11 07:48 - 2017-03-04 07:23 - 001184256 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2017-10-11 07:48 - 2017-03-04 07:11 - 001643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-10-11 07:48 - 2017-03-04 07:07 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-10-11 07:48 - 2017-03-04 07:03 - 000119808 ____R (Microsoft Corporation) C:\Windows\system32\SecureAssessmentHandlers.dll
2017-10-11 07:48 - 2016-08-06 05:16 - 000026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-10-11 07:48 - 2016-08-02 09:13 - 001081856 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2017-10-09 10:16 - 2017-10-09 10:16 - 035934136 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 029028792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 000981616 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 000932976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 000618424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-10-09 10:15 - 2017-10-09 10:15 - 000507832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 001996912 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438569.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 001615288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438569.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 001076664 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 001013872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 000733808 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2017-10-09 10:09 - 2017-10-09 10:09 - 000592824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 040248760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 035322808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 012357696 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 004153784 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-10-09 10:08 - 2017-10-09 10:08 - 003584440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 023343840 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 019023464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 010184544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 001312216 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 001026600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 000797568 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 000705448 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 000631592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-10-09 10:07 - 2017-10-09 10:07 - 000592024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-10-09 10:06 - 2017-10-09 10:06 - 013912344 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-10-09 10:06 - 2017-10-09 10:06 - 011804040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-10-09 10:06 - 2017-10-09 10:06 - 003753392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-10-09 09:47 - 2017-10-09 09:47 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-10-09 09:47 - 2017-10-09 09:47 - 000000669 _____ C:\Windows\system32\nv-vk64.json

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-31 21:52 - 2017-08-21 14:09 - 000000000 ____D C:\FRST
2017-10-31 21:49 - 2017-08-22 20:37 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-10-31 21:49 - 2017-04-14 04:13 - 000000000 ____D C:\Program Files\KMSpico
2017-10-31 21:49 - 2017-04-14 04:11 - 000000000 ____D C:\ProgramData\Ashampoo
2017-10-31 21:49 - 2017-04-13 07:51 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-31 21:49 - 2017-04-13 07:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-31 21:49 - 2017-04-13 07:03 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-10-31 21:48 - 2017-04-14 10:59 - 000000000 ____D C:\Users\Gabriela\AppData\LocalLow\Mozilla
2017-10-31 20:37 - 2017-04-16 16:40 - 000004216 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E921B203-2F95-4B24-A80A-3532FE4CC68F}
2017-10-31 07:56 - 2017-04-13 07:08 - 006134836 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-31 07:56 - 2016-07-16 23:25 - 002823422 _____ C:\Windows\system32\perfh005.dat
2017-10-31 07:56 - 2016-07-16 23:25 - 000817684 _____ C:\Windows\system32\perfc005.dat
2017-10-30 19:31 - 2017-08-22 18:13 - 000000000 ____D C:\AdwCleaner
2017-10-30 19:29 - 2016-07-16 07:04 - 000524288 _____ C:\Windows\system32\config\BBI
2017-10-29 21:06 - 2017-07-08 19:25 - 000000000 ____D C:\Users\Gabriela\AppData\Roaming\Pro Cycling Manager 2017
2017-10-29 12:29 - 2017-08-08 23:25 - 000007598 _____ C:\Users\Gabriela\AppData\Local\resmon.resmoncfg
2017-10-29 12:13 - 2017-09-21 12:46 - 000004506 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-29 12:13 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-29 12:13 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-29 10:55 - 2016-07-16 12:45 - 000000000 ____D C:\Windows\INF
2017-10-27 10:28 - 2017-08-22 14:07 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-27 10:28 - 2017-08-22 14:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-27 00:23 - 2017-09-30 12:26 - 000000000 ____D C:\Program Files\rempl
2017-10-26 20:03 - 2017-04-14 19:32 - 001029872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2017-10-26 09:37 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\AppReadiness
2017-10-26 07:14 - 2017-04-16 11:51 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-10-26 07:14 - 2017-04-16 11:51 - 000000000 ____D C:\Program Files\CCleaner
2017-10-25 12:48 - 2017-04-13 07:04 - 000000000 ____D C:\Users\defaultuser0
2017-10-25 09:00 - 2016-07-16 12:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-20 23:24 - 2017-04-13 07:09 - 000000000 ____D C:\Users\Gabriela
2017-10-19 17:56 - 2017-04-13 07:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-19 17:44 - 2017-04-14 04:08 - 000000000 ____D C:\Users\Gabriela\AppData\Local\Microsoft Help
2017-10-19 17:29 - 2017-07-10 07:22 - 000000036 _____ C:\Windows\progress.ini
2017-10-19 17:29 - 2017-07-10 06:51 - 000000000 ____D C:\Windows10Upgrade
2017-10-19 17:29 - 2017-04-14 03:55 - 000001890 _____ C:\Windows\diagwrn.xml
2017-10-19 17:29 - 2017-04-14 03:55 - 000001890 _____ C:\Windows\diagerr.xml
2017-10-19 17:29 - 2017-04-13 08:03 - 000000000 ____D C:\Windows\Panther
2017-10-19 17:26 - 2017-07-10 06:51 - 000000000 ___HD C:\$GetCurrent
2017-10-18 07:08 - 2016-07-16 12:36 - 000000000 ____D C:\Windows\CbsTemp
2017-10-15 00:17 - 2017-04-13 07:59 - 000000000 ____D C:\Users\Gabriela\AppData\Local\CrashDumps
2017-10-13 12:54 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\rescache
2017-10-12 23:27 - 2016-07-16 12:49 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-10-12 23:27 - 2016-07-16 12:49 - 000177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-11 08:03 - 2017-06-07 08:05 - 000061304 _____ () C:\Windows\system32\Drivers\lpsport.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000587168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000363440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000201352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000147776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000057736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-11 08:03 - 2017-04-14 19:32 - 000003994 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-10-11 08:03 - 2017-04-14 19:30 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-11 08:03 - 2017-04-13 07:09 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-11 08:02 - 2017-04-13 07:03 - 000332304 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-11 08:01 - 2016-07-16 12:47 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2017-10-11 08:01 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\system32\oobe
2017-10-11 08:01 - 2016-07-16 12:47 - 000000000 ____D C:\Windows\ShellExperiences
2017-10-11 07:51 - 2017-04-13 10:53 - 000000000 ____D C:\Windows\system32\MRT
2017-10-11 07:50 - 2017-04-13 10:53 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-09 23:48 - 2017-04-13 07:09 - 000000000 ____D C:\Users\Gabriela\AppData\Local\Packages
2017-10-09 10:06 - 2017-01-04 14:02 - 004256264 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-10-09 09:47 - 2017-01-04 09:07 - 000046443 _____ C:\Windows\system32\nvinfo.pb
2017-10-01 12:57 - 2017-04-19 23:36 - 000000000 ____D C:\Users\Gabriela\AppData\Local\ElevatedDiagnostics

==================== Files in the root of some directories =======

2017-08-16 17:27 - 2017-08-22 19:45 - 000029696 _____ () C:\Users\Gabriela\AppData\Local\MSGBOX.EXE
2017-08-08 23:25 - 2017-10-29 12:29 - 000007598 _____ () C:\Users\Gabriela\AppData\Local\resmon.resmoncfg
2017-04-14 19:52 - 2017-04-14 19:52 - 000000003 _____ () C:\Users\Gabriela\AppData\Local\updater.log
2017-04-14 19:52 - 2017-05-06 19:13 - 000000425 _____ () C:\Users\Gabriela\AppData\Local\UserProducts.xml

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-10-27 11:45

==================== End of FRST.txt ============================

#8 Příspěvek od **Márty84** » 01 lis 2017 11:02

Zkontrolujte velikost adresare plochy, at nema vic nez 200 - 300 MB

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION

Task: C:\Windows\Tasks\update-S-1-5-21-553626503-1851697530-1516296009-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

burrry · #9 Příspěvek od **burrry** » 01 lis 2017 11:42

Dobrý den.

Fix result of Farbar Recovery Scan Tool (x64) Version: 01-11-2017
Ran by Gabriela (01-11-2017 11:39:29) Run:2
Running from D:\Gabriela\Desktop
Loaded Profiles: Gabriela (Available Profiles: defaultuser0 & Gabriela)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION

Task: C:\Windows\Tasks\update-S-1-5-21-553626503-1851697530-1516296009-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
C:\Windows\Tasks\update-S-1-5-21-553626503-1851697530-1516296009-1001.job => moved successfully
C:\Windows\Tasks\update-sys.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 43152286 B
Java, Flash, Steam htmlcache => 131954 B
Windows/system/drivers => 353067 B
Edge => 9728 B
Chrome => 0 B
Firefox => 353277572 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 17516 B
LocalService => 1634 B
NetworkService => 0 B
defaultuser0 => 0 B
Gabriela => 16069000 B

RecycleBin => 0 B
EmptyTemp: => 393.9 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 11:39:45 ====

#10 Příspěvek od **Márty84** » 01 lis 2017 11:50

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/
Stahnete a spustte

Ponechte zatrzitkou pouze u volby Remove disinfection tools

Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak to s pc vypada. Ale jelikoz nebyl zadny problem, melo by byt vse v poradku a mame hotovo

burrry · #11 Příspěvek od **burrry** » 02 lis 2017 06:32

Dobrý den,
vše jsem podle pokynů provedl a PC v pohodě.
Moc děkuji za ochotu a váš čas, jdu přispět na provoz fóra.
Příjemný a pohodový den přeji.

#12 Příspěvek od **Márty84** » 03 lis 2017 11:58

Nemate vubec zac!

Za pripadny prispevek dekujeme

Mejte se a treba zase nekdy

VIRY.CZ

Kontrola logu

Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu